summaryrefslogtreecommitdiff
path: root/secrets.nix
diff options
context:
space:
mode:
Diffstat (limited to 'secrets.nix')
-rw-r--r--secrets.nix22
1 files changed, 22 insertions, 0 deletions
diff --git a/secrets.nix b/secrets.nix
new file mode 100644
index 0000000..2e435a5
--- /dev/null
+++ b/secrets.nix
@@ -0,0 +1,22 @@
+{lib, ...}: {
+ config = {
+ age.secrets = {
+ secret0.file = ./secrets/secret0.age;
+ secret1.file = ./secrets/secret1.age;
+ secret2.file = ./secrets/secret2.age;
+ };
+ pub-keys = {
+ ssh = {
+ andromeda = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJy2VD362wUcu0lKj2d6OIU8dbAna0Lu/NaAYIj8gdIA andromeda@lenovo";
+ lenovo = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHG4eqsLTq2os2mxfwhys3BpVnowcJrqt2CbRFzN2pJb root@lenovo";
+ };
+ };
+ };
+ options = {
+ pub-keys.ssh = lib.mkOption {
+ type = lib.types.attrsOf lib.types.str;
+ default = {};
+ description = "set of public keys as `name = key`";
+ };
+ };
+}
generated by cgit v1.3 (git 2.53.0) at 2026-05-07 04:02:01 +0000