Commit b66dba7
Changed files (3)
modules
core
secret
modules/core/vaultix.nix
@@ -1,10 +0,0 @@
-topArgs: {
- flake.modules.nixos.core = {config, ...}: let
- hostName = config.networking.hostName;
- hostMeta = topArgs.config.flake.meta.host.hosts.${hostName};
- in {
- imports = [topArgs.inputs.vaultix.nixosModules.default];
-
- vaultix.settings.hostPubkey = hostMeta.hostPubKey;
- };
-}
modules/flake/vaultix/picokey.pub → modules/secret/picokey.pub
File renamed without changes
modules/flake/vaultix/vaultix.nix → modules/secret/vaultix.nix
@@ -3,6 +3,7 @@
config,
lib,
withSystem,
+ den,
...
}: {
flake-file.inputs.vaultix.url = "github:milieuim/vaultix";
@@ -18,4 +19,12 @@
# Need upstream fix
extraPackages = withSystem "x86_64-linux" ({pkgs, ...}: [pkgs.age-plugin-fido2-hmac]);
};
+ den.default.includes = [den.aspects.secret];
+
+ den.aspects.secret = {host, ...}: {
+ nixos = {
+ imports = [inputs.vaultix.nixosModules.default];
+ vaultix.settings.hostPubkey = host.pubkey;
+ };
+ };
}