15 lines
320 B
Nix
15 lines
320 B
Nix
{ inputs, ... }:
|
|
{
|
|
imports = [
|
|
inputs.sops-nix.nixosModules.sops
|
|
];
|
|
|
|
sops = {
|
|
defaultSopsFile = ./secrets/secrets.yaml;
|
|
age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
|
|
secrets.password.neededForUsers = true;
|
|
secrets.ts_auth_key = { };
|
|
};
|
|
|
|
security.sudo.wheelNeedsPassword = false;
|
|
}
|