Secrets Management - Githubissues

aspauldingcode / .dotfiles

A Universal .dotfiles Configuration with Nix Flakes - over-engineered by Alex Spaulding.

2 stars 0 forks source link

Secrets Management #150

Open aspauldingcode opened 1 month ago

aspauldingcode commented 1 month ago

Figure out how to declarative define passwords, APIs, logins, identities, etc. without sharing that with the world

aspauldingcode commented 1 month ago

Use agenix. I've installed to flake.nix.

Reference Secrets in Configuration: Use the decrypted secret paths in your NixOS configuration where needed. For example, to set a user's password from a secret:
{
users.users.alex = {
isNormalUser = true;
passwordFile = config.age.secrets.secret1.path;
};
}