From 442f639e614fa9d85916e1878b80ecd047cc2591 Mon Sep 17 00:00:00 2001
From: blake <me@blakedheld.xyz>
Date: Wed, 8 Oct 2025 18:54:36 -0500
Subject: [PATCH] 113 current  2025-10-08 18:12:42  25.05.20251006.20c4598 
 6.12.50                          *

---
 flake.nix                                  |  2 +-
 modules/homelab/nginx-proxy.nix            |  2 ++
 modules/homelab/services/gitea/default.nix |  1 +
 modules/system/sops.nix                    | 10 +++++-----
 users/blake/blake.nix                      |  2 +-
 5 files changed, 10 insertions(+), 7 deletions(-)

diff --git a/flake.nix b/flake.nix
index 51df4e2..7cc42a3 100644
--- a/flake.nix
+++ b/flake.nix
@@ -1,6 +1,6 @@
 # flake for blakes nixos config
 # define new devices in outputs
-# generation: 112 current  2025-10-08 18:03:32  25.05.20251006.20c4598  6.12.50                          *
+# generation: 113 current  2025-10-08 18:12:42  25.05.20251006.20c4598  6.12.50                          *
 {
   description = "blakes nix config";
   inputs = {
diff --git a/modules/homelab/nginx-proxy.nix b/modules/homelab/nginx-proxy.nix
index def1ed9..d8b1fa4 100644
--- a/modules/homelab/nginx-proxy.nix
+++ b/modules/homelab/nginx-proxy.nix
@@ -27,10 +27,12 @@ in
         restartUnits = [ "nginx.service" ];
         owner = "nginx";
         group = "nginx";
+        neededForUsers = true;
       };
       "ssl_blakedheld_key" = {
         owner = "nginx";
         group = "nginx";
+        neededForUsers = true;
       };
     };
   };
diff --git a/modules/homelab/services/gitea/default.nix b/modules/homelab/services/gitea/default.nix
index 280542f..ff9b3ad 100644
--- a/modules/homelab/services/gitea/default.nix
+++ b/modules/homelab/services/gitea/default.nix
@@ -101,6 +101,7 @@ in
       "gitea_database_password" = {
         owner = "gitea";
         group = "gitea";
+        neededForUsers = true;
       };
     };
 
diff --git a/modules/system/sops.nix b/modules/system/sops.nix
index 5fa451f..c7c5804 100644
--- a/modules/system/sops.nix
+++ b/modules/system/sops.nix
@@ -16,11 +16,11 @@ in
       defaultSopsFile = ../../secrets/secrets.yaml;
       defaultSopsFormat = "yaml";
       age.keyFile = "/home/blake/.config/sops/age/keys.txt";
-#        "blake_passwd" = lib.mkIf config.users.blake.enable { 
-#          owner = "root";
-#          group = "root";
-#          neededForUsers = true;
-#        };
+        "blake_passwd" = lib.mkIf config.users.blake.enable { 
+          owner = "root";
+          group = "root";
+          neededForUsers = true;
+        };
       };
     };
 }
diff --git a/users/blake/blake.nix b/users/blake/blake.nix
index 6f53096..c07228e 100644
--- a/users/blake/blake.nix
+++ b/users/blake/blake.nix
@@ -24,7 +24,7 @@ in
       uid = 1000;
       shell = pkgs.zsh;
       group = "blake";
-#      hashedPasswordFile = config.sops.secrets."blake_passwd".path;
+      hashedPasswordFile = config.sops.secrets."blake_passwd".path;
       openssh.authorizedKeys.keys = [
         "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBK0AGJfZGyqW8/krvQV+PL7axcDW/EnKyHy9M8wryQx klefki"
         "ecdsa-sha2-nistp384 AAAAE2VjZHNhLXNoYTItbmlzdHAzODQAAAAIbmlzdHAzODQAAABhBPdC9cCX8awvA19Ri65fvbYjZYe8X1Ef+nOZAIv92AS6u4SkJYqOvPYfqRHXORNDpbzjTV6nackyCKvV5EO4niv4MFIgdkEQwuVHcYX32/dOsWdDoeXBT/l2sFFM7JESwQ== blake@zygarde"