dotfiles/modules/nixos/sops/default.nix

{ flake, config, ... }:
let
  inherit (flake.config.people)
    user0
    user2
    ;
  inherit (flake.config.machines)
    devices
    ;
  hostname = config.networking.hostName;
  jupiter = devices.jupiter.name;
  ceres = devices.ceres.name;
  saturn = devices.saturn.name;
  callisto = devices.callisto.name;

  userLogic =
    if hostname == jupiter then
      user0
    else if hostname == ceres then
      user0
    else if hostname == saturn then
      user2
    else
      "";
in
{
  sops = {
    defaultSopsFile = ../../../secrets/secrets.yaml;
    validateSopsFiles = false;
    age = {
      keyFile = "/var/lib/sops-nix/key.txt";
      generateKey = false;
    };
    secrets =
      if hostname == callisto then
        { }
      else
        {
          "ssh/private" = {
            path = "/home/${userLogic}/.ssh/id_ed25519";
            owner = userLogic;
          };
          "ssh/public" = {
            path = "/home/${userLogic}/.ssh/id_ed25519.pub";
            owner = userLogic;
          };
          "ssh/hosts" = {
            path = "/home/${userLogic}/.ssh/known_hosts";
            owner = userLogic;
          };
          # "claude-api-key" = {
          #   path = "/home/${user0}/.config/zed/claude-api-key";
          #   owner = user0;
          # };
        };
  };
}
feat: added user2 and refactored to accommodate 2025-01-28 22:21:31 -06:00			`{ flake, config, ... }:`
			`let`
			`inherit (flake.config.people)`
feat: expanded all lists 2025-01-08 19:06:14 -06:00			`user0`
feat: added user2 and refactored to accommodate 2025-01-28 22:21:31 -06:00			`user2`
feat: expanded all lists 2025-01-08 19:06:14 -06:00			`;`
feat: added user2 and refactored to accommodate 2025-01-28 22:21:31 -06:00			`inherit (flake.config.machines)`
			`devices`
			`;`
			`hostname = config.networking.hostName;`
feat: changed naming convention for devices 2025-02-17 18:52:02 -06:00			`jupiter = devices.jupiter.name;`
			`ceres = devices.ceres.name;`
			`saturn = devices.saturn.name;`
			`callisto = devices.callisto.name;`
feat: added user2 and refactored to accommodate 2025-01-28 22:21:31 -06:00
			`userLogic =`
feat: changed naming convention for devices 2025-02-17 18:52:02 -06:00			`if hostname == jupiter then`
feat: added user2 and refactored to accommodate 2025-01-28 22:21:31 -06:00			`user0`
feat: changed naming convention for devices 2025-02-17 18:52:02 -06:00			`else if hostname == ceres then`
feat: server test 2025-01-30 13:40:42 -06:00			`user0`
feat: changed naming convention for devices 2025-02-17 18:52:02 -06:00			`else if hostname == saturn then`
feat: added user2 and refactored to accommodate 2025-01-28 22:21:31 -06:00			`user2`
			`else`
			`"";`
			`in`
			`{`
feat: cleaned up some stuff 2024-10-11 17:38:05 -05:00			`sops = {`
refactor: cleaned up nixos and home dirs 2025-02-06 14:27:52 -06:00			`defaultSopsFile = ../../../secrets/secrets.yaml;`
feat: cleaned up some stuff 2024-10-11 17:38:05 -05:00			`validateSopsFiles = false;`
			`age = {`
			`keyFile = "/var/lib/sops-nix/key.txt";`
			`generateKey = false;`
			`};`
feat: added other user themes 2025-01-31 01:49:36 -06:00			`secrets =`
feat: changed naming convention for devices 2025-02-17 18:52:02 -06:00			`if hostname == callisto then`
feat: added other user themes 2025-01-31 01:49:36 -06:00			`{ }`
			`else`
			`{`
			`"ssh/private" = {`
			`path = "/home/${userLogic}/.ssh/id_ed25519";`
			`owner = userLogic;`
			`};`
			`"ssh/public" = {`
			`path = "/home/${userLogic}/.ssh/id_ed25519.pub";`
			`owner = userLogic;`
			`};`
			`"ssh/hosts" = {`
			`path = "/home/${userLogic}/.ssh/known_hosts";`
			`owner = userLogic;`
			`};`
			`# "claude-api-key" = {`
			`# path = "/home/${user0}/.config/zed/claude-api-key";`
			`# owner = user0;`
			`# };`
			`};`
feat: cleaned up some stuff 2024-10-11 17:38:05 -05:00			`};`
			`}`