-
Over the past few weeks, I've been working on a replacement for the shell script `agenix` tool, written in Rust. I've published it at https://github.com/cole-h/agenix-rs/.
I really like how `sops-n…
-
Hey, I'm using your config as a template for my own but I have some submodules that have some secrets I want to encrypt within the file (and they must be available at runtime because it's being ran wi…
-
Since `/etc/ssh/` is on the tmpfs, the VM generates a new ssh key-pair every time is gets rebooted.
I tried to create a virtiofsd share for `/etc/ssh` to keep the keys on the host system, but that ma…
-
If the GPG private key used for decrypting secrets is missing, the boot just hangs after "setting up secrets". Is this intentional?
-
Sometimes, `expose-key` script (https://github.com/profianinc/infrastructure/blob/996aa9b00bf5ff8e6abf487c1ecfaba4f176b158/lib/scripts.nix#L2-L6) run at `ExecStartPre` https://github.com/profianinc/in…
-
Without a module for home-manager, I am unable to fully replace `sops-nix` (or `agenix`) with `secrix`.
Would be nice if there was a flake output: `homeManagerModules.secrix` that defined options s…
-
I just followed the tutorial and tried setting up wifi for my nixos install using nix-sops and it seems to work just fine when I make a `nixos-rebuild switch`.
However, when I reboot, for some rea…
-
I've tried adding peerix to my current config:
```
jedha = nixpkgs.lib.nixosSystem {
inherit system;
pkgs = nixpkgsFinal;
modules = [
…
-
I want to move from the docker deployment to the Nix-deployment. I'm handling my secrets in NixOs with [ragenix](https://github.com/yaxitech/ragenix). But I'm having a hard time to figure out how to u…
-
Hi there!
Thanks for this project, I'm trying to add support for the rage YubiKey plugin.
What I've tried so far:
`home.nix` configuration:
```nix
{
homeage = {
pkg = pkgs.rage;
…