113 current 2025-10-08 18:12:42 25.05.20251006.20c4598 6.12.50 *

2025-10-08 18:54:36 -05:00
parent 17056706da
commit 442f639e61
5 changed files with 10 additions and 7 deletions
--- a/flake.nix
+++ b/flake.nix
@@ -1,6 +1,6 @@
 # flake for blakes nixos config
 # define new devices in outputs
-# generation: 112 current  2025-10-08 18:03:32  25.05.20251006.20c4598  6.12.50                          *
+# generation: 113 current  2025-10-08 18:12:42  25.05.20251006.20c4598  6.12.50                          *
 {
  description = "blakes nix config";
  inputs = {
--- a/modules/homelab/nginx-proxy.nix
+++ b/modules/homelab/nginx-proxy.nix
@@ -27,10 +27,12 @@ in
        restartUnits = [ "nginx.service" ];
        owner = "nginx";
        group = "nginx";
+        neededForUsers = true;
      };
      "ssl_blakedheld_key" = {
        owner = "nginx";
        group = "nginx";
+        neededForUsers = true;
      };
    };
  };
--- a/modules/homelab/services/gitea/default.nix
+++ b/modules/homelab/services/gitea/default.nix
@@ -101,6 +101,7 @@ in
      "gitea_database_password" = {
        owner = "gitea";
        group = "gitea";
+        neededForUsers = true;
      };
    };

--- a/modules/system/sops.nix
+++ b/modules/system/sops.nix
@@ -16,11 +16,11 @@ in
      defaultSopsFile = ../../secrets/secrets.yaml;
      defaultSopsFormat = "yaml";
      age.keyFile = "/home/blake/.config/sops/age/keys.txt";
-#        "blake_passwd" = lib.mkIf config.users.blake.enable { 
-#          owner = "root";
-#          group = "root";
-#          neededForUsers = true;
-#        };
+        "blake_passwd" = lib.mkIf config.users.blake.enable { 
+          owner = "root";
+          group = "root";
+          neededForUsers = true;
+        };
      };
    };
 }
--- a/users/blake/blake.nix
+++ b/users/blake/blake.nix
@@ -24,7 +24,7 @@ in
      uid = 1000;
      shell = pkgs.zsh;
      group = "blake";
-#      hashedPasswordFile = config.sops.secrets."blake_passwd".path;
+      hashedPasswordFile = config.sops.secrets."blake_passwd".path;
      openssh.authorizedKeys.keys = [
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBK0AGJfZGyqW8/krvQV+PL7axcDW/EnKyHy9M8wryQx klefki"
        "ecdsa-sha2-nistp384 AAAAE2VjZHNhLXNoYTItbmlzdHAzODQAAAAIbmlzdHAzODQAAABhBPdC9cCX8awvA19Ri65fvbYjZYe8X1Ef+nOZAIv92AS6u4SkJYqOvPYfqRHXORNDpbzjTV6nackyCKvV5EO4niv4MFIgdkEQwuVHcYX32/dOsWdDoeXBT/l2sFFM7JESwQ== blake@zygarde"