diff --git a/hosts/common/graphical/default.nix b/hosts/common/graphical/default.nix index a587cbd..2b0e081 100644 --- a/hosts/common/graphical/default.nix +++ b/hosts/common/graphical/default.nix @@ -14,9 +14,15 @@ programs.nm-applet.enable = true; # A bit confusing but this is required for the home-manager spotifyd :/ - age.secrets.spotify_pass = { - file = ../../../secrets/spotify_pass.age; - owner = config.users.users.daniel.name; + age.secrets = { + spotify_pass = { + file = ../../../secrets/spotify_pass.age; + owner = config.users.users.daniel.name; + }; + age_identity = { + file = ../../../secrets/age_identity.age; + owner = config.users.users.daniel.name; + }; }; fonts.fonts = with pkgs; [ diff --git a/secrets/age_identity.age b/secrets/age_identity.age new file mode 100644 index 0000000..5b04b32 Binary files /dev/null and b/secrets/age_identity.age differ diff --git a/secrets/secrets.nix b/secrets/secrets.nix index 27833ee..9302bfa 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -23,4 +23,5 @@ in { "dungflix_bucket_account_key.age".publicKeys = users ++ [system2 system4]; "dungflix_crypt_remote_obscured_pass.age".publicKeys = users ++ [system2 system4]; "dungflix_crypt_remote_pass.age".publicKeys = users ++ [system2 system4]; + "age_identity.age".publicKeys = users ++ [system1 system3]; } diff --git a/users/daniel/configs/desktop/default.nix b/users/daniel/configs/desktop/default.nix index 77ec58d..4b3d2e4 100644 --- a/users/daniel/configs/desktop/default.nix +++ b/users/daniel/configs/desktop/default.nix @@ -1,4 +1,4 @@ -{ +{config, ...}: { imports = [ # ./i3 # ./i3status-rust @@ -6,4 +6,11 @@ ./spotify ./rofi ]; + + + home.file = { + ".age/age.txt" = { + source = config.lib.file.mkOutOfStoreSymlink "/run/agenix/age_identity"; + }; + }; } diff --git a/users/daniel/default.nix b/users/daniel/default.nix index c98d98b..d7711c0 100644 --- a/users/daniel/default.nix +++ b/users/daniel/default.nix @@ -22,6 +22,7 @@ }; cliPackages = with pkgs; [ + age direnv elixir_1_14 elixir_ls