feat: add sops-nix for secret management

Signed-off-by: Lander Van den Bulcke <landervandenbulcke@gmail.com>
2024-08-27 22:15:15 +02:00 · 2024-08-27 22:15:15 +02:00 · 8ed9999148
commit 8ed9999148
parent f8771af1aa
2 changed files with 47 additions and 1 deletions
--- a/flake.lock
+++ b/flake.lock
@ -105,11 +105,49 @@
        "type": "github"
      }
    },
+    "nixpkgs-stable": {
+      "locked": {
+        "lastModified": 1721524707,
+        "narHash": "sha256-5NctRsoE54N86nWd0psae70YSLfrOek3Kv1e8KoXe/0=",
+        "owner": "NixOS",
+        "repo": "nixpkgs",
+        "rev": "556533a23879fc7e5f98dd2e0b31a6911a213171",
+        "type": "github"
+      },
+      "original": {
+        "owner": "NixOS",
+        "ref": "release-24.05",
+        "repo": "nixpkgs",
+        "type": "github"
+      }
+    },
    "root": {
      "inputs": {
        "home-manager": "home-manager",
        "lix-module": "lix-module",
-        "nixpkgs": "nixpkgs"
+        "nixpkgs": "nixpkgs",
+        "sops-nix": "sops-nix"
+      }
+    },
+    "sops-nix": {
+      "inputs": {
+        "nixpkgs": [
+          "nixpkgs"
+        ],
+        "nixpkgs-stable": "nixpkgs-stable"
+      },
+      "locked": {
+        "lastModified": 1723501126,
+        "narHash": "sha256-N9IcHgj/p1+2Pvk8P4Zc1bfrMwld5PcosVA0nL6IGdE=",
+        "owner": "Mic92",
+        "repo": "sops-nix",
+        "rev": "be0eec2d27563590194a9206f551a6f73d52fa34",
+        "type": "github"
+      },
+      "original": {
+        "owner": "Mic92",
+        "repo": "sops-nix",
+        "type": "github"
      }
    },
    "systems": {
--- a/flake.nix
+++ b/flake.nix
@ -10,6 +10,12 @@
      inputs.nixpkgs.follows = "nixpkgs";
    };

+    # Secrets
+    sops-nix = {
+      url = "github:Mic92/sops-nix";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
+
    # Home manager
    home-manager.url = "github:nix-community/home-manager/release-24.05";
    home-manager.inputs.nixpkgs.follows = "nixpkgs";
@ -19,6 +25,7 @@
    self,
    nixpkgs,
    lix-module,
+    sops-nix,
    home-manager,
    ...
  } @ inputs: let
@ -32,6 +39,7 @@
        # > Our main nixos configuration file <
        modules = [
 	  lix-module.nixosModules.default
+	  sops-nix.nixosModules.sops
 	  ./nixos/configuration.nix
 	];
      };