50 lines
1.4 KiB
Nix
50 lines
1.4 KiB
Nix
{ config, hostname, ... }:
|
|
{
|
|
config.programs.onepassword-secrets = {
|
|
enable = true;
|
|
tokenFile = "${config.home.homeDirectory}/.op_sat";
|
|
secrets = {
|
|
mennos2025Pem = {
|
|
reference = "op://Dotfiles/Fallback SSH Key/private key";
|
|
path = ".ssh/mennos-2025.pem";
|
|
mode = "0600";
|
|
};
|
|
mennos2025Pub = {
|
|
reference = "op://Dotfiles/Fallback SSH Key/public key";
|
|
path = ".ssh/mennos-2025.pub";
|
|
mode = "0644";
|
|
};
|
|
workWgVPn = {
|
|
reference = "op://Dotfiles/Wireguard VPN Config/config";
|
|
path = ".config/wireguard/work-vpn.conf";
|
|
mode = "0600";
|
|
};
|
|
authorizedKeysForHost = {
|
|
reference = "op://Dotfiles/Authorized Keys/${hostname}";
|
|
path = ".ssh/authorized_keys";
|
|
mode = "0644";
|
|
};
|
|
personalSshConf = {
|
|
reference = "op://Dotfiles/SSH Configs/personal";
|
|
path = ".ssh/config.d/personal.conf";
|
|
mode = "0644";
|
|
};
|
|
workDevSshConf = {
|
|
reference = "op://Dotfiles/SSH Configs/work-dev";
|
|
path = ".ssh/config.d/work-dev.conf";
|
|
mode = "0644";
|
|
};
|
|
workProdSshConf = {
|
|
reference = "op://Dotfiles/SSH Configs/work-prod";
|
|
path = ".ssh/config.d/work-prod.conf";
|
|
mode = "0644";
|
|
};
|
|
tradawarePem = {
|
|
reference = "op://Dotfiles/Tradaware TransIP PEM/pem";
|
|
path = ".config/tradaware.pem";
|
|
mode = "0600";
|
|
};
|
|
};
|
|
};
|
|
}
|