feat: adds opnix, mennos-laptop-w as host and cleans up secrets

Signed-off-by: Menno van Leeuwen <menno@vleeuwen.me>

config/home-manager/packages/common/hosts/mennos-laptop.nix

@@ -1,4 +0,0 @@
-{ pkgs-unstable, ... }:
-{
-  home.packages = with pkgs-unstable; [ ];
-}

config/home-manager/packages/common/packages.nix

@@ -9,8 +9,8 @@
   imports =
     if hostname == "mennos-gamingpc" then
       [ ./hosts/mennos-gamingpc.nix ]
-    else if hostname == "mennos-laptop" then
-      [ ./hosts/mennos-laptop.nix ]
+    else if hostname == "mennos-laptop-w" then
+      [ ./hosts/mennos-laptop-w.nix ]
     else if hostname == "mennos-server" then
       [ ./hosts/mennos-server.nix ]
     else if hostname == "dotfiles-test" then
@@ -33,6 +33,7 @@
       nixfmt-rfc-style
       wget
       fastfetch
+      _1password-cli
 
       # Package management
       devbox

config/home-manager/packages/common/secrets.nix

@@ -0,0 +1,29 @@
+{ config, hostname, ... }:
+{
+  config.programs.onepassword-secrets = {
+    enable = true;
+    tokenFile = "${config.home.homeDirectory}/.op_sat";
+    secrets = {
+      mennos2025Pem = {
+        reference = "op://Dotfiles/Fallback SSH Key/private key";
+        path = ".ssh/mennos-2025.pem";
+        mode = "0600";
+      };
+      mennos2025Pub = {
+        reference = "op://Dotfiles/Fallback SSH Key/public key";
+        path = ".ssh/mennos-2025.pub";
+        mode = "0644";
+      };
+      workWgVPn = {
+        reference = "op://Dotfiles/Wireguard VPN Config/config";
+        path = ".config/wireguard/work-vpn.conf";
+        mode = "0600";
+      };
+      authorizedKeysForHost = {
+        reference = "op://Dotfiles/Authorized Keys/${hostname}";
+        path = ".ssh/authorized_keys";
+        mode = "0644";
+      };
+    };
+  };
+}

config/home-manager/packages/server/packages.nix

@@ -2,8 +2,5 @@
 {
   home.packages = with pkgs; [
     ddrescue
-
-    # 1Password CLI
-    _1password-cli
   ];
 }