From 8ed99991480d7c6f74a5148cf23fc89e38677b96 Mon Sep 17 00:00:00 2001
From: Lander Van den Bulcke <landervandenbulcke@gmail.com>
Date: Tue, 27 Aug 2024 22:15:15 +0200
Subject: [PATCH] feat: add sops-nix for secret management

Signed-off-by: Lander Van den Bulcke <landervandenbulcke@gmail.com>
---
 flake.lock | 40 +++++++++++++++++++++++++++++++++++++++-
 flake.nix  |  8 ++++++++
 2 files changed, 47 insertions(+), 1 deletion(-)

diff --git a/flake.lock b/flake.lock
index b65ebbf..f09eb8d 100644
--- a/flake.lock
+++ b/flake.lock
@@ -105,11 +105,49 @@
         "type": "github"
       }
     },
+    "nixpkgs-stable": {
+      "locked": {
+        "lastModified": 1721524707,
+        "narHash": "sha256-5NctRsoE54N86nWd0psae70YSLfrOek3Kv1e8KoXe/0=",
+        "owner": "NixOS",
+        "repo": "nixpkgs",
+        "rev": "556533a23879fc7e5f98dd2e0b31a6911a213171",
+        "type": "github"
+      },
+      "original": {
+        "owner": "NixOS",
+        "ref": "release-24.05",
+        "repo": "nixpkgs",
+        "type": "github"
+      }
+    },
     "root": {
       "inputs": {
         "home-manager": "home-manager",
         "lix-module": "lix-module",
-        "nixpkgs": "nixpkgs"
+        "nixpkgs": "nixpkgs",
+        "sops-nix": "sops-nix"
+      }
+    },
+    "sops-nix": {
+      "inputs": {
+        "nixpkgs": [
+          "nixpkgs"
+        ],
+        "nixpkgs-stable": "nixpkgs-stable"
+      },
+      "locked": {
+        "lastModified": 1723501126,
+        "narHash": "sha256-N9IcHgj/p1+2Pvk8P4Zc1bfrMwld5PcosVA0nL6IGdE=",
+        "owner": "Mic92",
+        "repo": "sops-nix",
+        "rev": "be0eec2d27563590194a9206f551a6f73d52fa34",
+        "type": "github"
+      },
+      "original": {
+        "owner": "Mic92",
+        "repo": "sops-nix",
+        "type": "github"
       }
     },
     "systems": {
diff --git a/flake.nix b/flake.nix
index 2ed4318..da24f2a 100644
--- a/flake.nix
+++ b/flake.nix
@@ -10,6 +10,12 @@
       inputs.nixpkgs.follows = "nixpkgs";
     };
 
+    # Secrets
+    sops-nix = {
+      url = "github:Mic92/sops-nix";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
+
     # Home manager
     home-manager.url = "github:nix-community/home-manager/release-24.05";
     home-manager.inputs.nixpkgs.follows = "nixpkgs";
@@ -19,6 +25,7 @@
     self,
     nixpkgs,
     lix-module,
+    sops-nix,
     home-manager,
     ...
   } @ inputs: let
@@ -32,6 +39,7 @@
         # > Our main nixos configuration file <
         modules = [
 	  lix-module.nixosModules.default
+	  sops-nix.nixosModules.sops
 	  ./nixos/configuration.nix
 	];
       };