diff --git a/modules/nixos/services/firefly/default.nix b/modules/nixos/services/firefly/default.nix index 12887fb..f5741fe 100644 --- a/modules/nixos/services/firefly/default.nix +++ b/modules/nixos/services/firefly/default.nix @@ -36,28 +36,30 @@ in }; }; }; - sops = - let - sopsPath = secret: { - path = "${service.sops.path0}/${service.name}-${secret}"; - owner = service.name; - mode = "600"; - }; - in - { - secrets = builtins.listToAttrs ( - map - (secret: { - name = "${service.name}-${secret}"; - value = sopsPath secret; - }) - [ - "key" - "pass" - ] - ); - }; }; + + sops = + let + sopsPath = secret: { + path = "${service.sops.path0}/${service.name}-${secret}"; + owner = service.name; + mode = "600"; + }; + in + { + secrets = builtins.listToAttrs ( + map + (secret: { + name = "${service.name}-${secret}"; + value = sopsPath secret; + }) + [ + "key" + "pass" + ] + ); + }; + fileSystems."/var/lib/${service.name}" = { device = service.paths.path0; fsType = "none";