add sops module

2025-10-05 11:04:24 -05:00
parent a741884642
commit c6e2c781de
1 changed files with 22 additions and 0 deletions
--- a/modules/system/sops.nix
+++ b/modules/system/sops.nix
@@ -0,0 +1,22 @@
+{ pkgs, config, lib, inputs ... }:
+
+{
+  imports =[ inputs.sops-nix.nixosModules.sops ];
+
+  options = {
+    modules.system.sops.enable = lib.mkEnableOption "enables ssh";
+  };
+
+  config = lib.mkIf config.modules.system.sops.enable {
+    # enable and configure sops for secrets
+    sops.defaultSopsFile = ../../secrets/secrets.yaml;
+    sops.defaultSopsFormat = "yaml";
+  
+    sops.age.keyFile = "/home/blake/.config/sops/age/keys.txt";
+
+    sops.secrets.example-key = { };
+    sops.secrets."tailscale_authkey" = {
+      owner = "root";
+    };
+  };
+}