diff --git a/nix/homes/rafiq/darwin.nix b/nix/homes/rafiq/darwin.nix deleted file mode 100644 index 873dbcd..0000000 --- a/nix/homes/rafiq/darwin.nix +++ /dev/null @@ -1,21 +0,0 @@ -{ lib, ... }: -let - inherit (lib.modules) mkIf; -in -{ - flake.modules.homeManager.rafiq = - { - pkgs, - config, - hostName, - hostConfig, - ... - }: - mkIf (pkgs.system == "aarch64-darwin" || pkgs.system == "x86_64-darwin") { - home.file."Library/Application Support/aichat/config.yaml".text = '' - model: gemini:gemini-2.0-flash - clients: - - type: gemini - ''; - }; -} diff --git a/nix/modules/system/secrets.nix b/nix/modules/system/secrets.nix index 7b75ed1..fa2913c 100644 --- a/nix/modules/system/secrets.nix +++ b/nix/modules/system/secrets.nix @@ -30,21 +30,6 @@ in ''; }; }; - flake.modules.darwin.default = - { config, ... }: - { - imports = [ inputs.sops-nix.darwinModules.sops ]; - config = { - sops = { - age.sshKeyPaths = [ "${config.users.users.${username}.home}/.ssh/id_ed25519" ]; - secrets."keys/gemini".sopsFile = secrets + "/keys.yaml"; - }; - environment.shellInit = # sh - '' - export GEMINI_API_KEY=$(sudo cat ${config.sops.secrets."keys/gemini".path}) - ''; - }; - }; flake.modules.homeManager.default.persistDirs = [ ".config/sops/age" ]; perSystem = { pkgs, ... }: diff --git a/nix/modules/system/sudo.nix b/nix/modules/system/sudo.nix index ec974cc..55b32ee 100644 --- a/nix/modules/system/sudo.nix +++ b/nix/modules/system/sudo.nix @@ -8,12 +8,9 @@ in nix.settings.trusted-users = [ "@wheel" ]; users.users.${cfg.admin.username}.extraGroups = [ "wheel" ]; }; - flake.modules.darwin.default.security = { - sudo.extraConfig = "%admin ALL = (ALL) NOPASSWD: ALL"; - pam.services.sudo_local = { - enable = true; - reattach = true; - touchIdAuth = true; - }; + flake.modules.darwin.default.security.pam.services.sudo_local = { + enable = true; + reattach = true; + touchIdAuth = true; }; }