diff --git a/.sops.yaml b/.sops.yaml index efb8d18..d1a3e0c 100644 --- a/.sops.yaml +++ b/.sops.yaml @@ -2,9 +2,11 @@ keys: - &primary age1e8wfn0vmwv506n060hzqkwhsekykynl9tpatnm2swhew30kmuyest0slhv - &envy age1ssqyqn2wpk6z0wz9cf2uer2292362ngah8epy29r9qpnsfghly3sh40vcj + - &parents age1z5h7chprx4smzksfft74depvdsq35zuq66xzgsmutj92sgq3x3cqs4sxrn creation_rules: - path_regex: secrets/secrets.yaml$ key_groups: - age: - *primary - *envy + - *parents diff --git a/hosts/parents/default.nix b/hosts/parents/default.nix index 7b13e67..6ad264c 100644 --- a/hosts/parents/default.nix +++ b/hosts/parents/default.nix @@ -29,8 +29,8 @@ inputs.nixpkgs.lib.nixosSystem { sops = { defaultSopsFile = ../../secrets/secrets.yaml; defaultSopsFormat = "yaml"; - age.keyFile = "/home/annika/.config/sops/age/keys.txt"; - age.sshKeyPaths = [ "/home/annika/.ssh/id_ed25519" ]; + age.keyFile = "/keys.txt"; + # age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ]; }; time.timeZone = "America/New_York"; diff --git a/modules/nixos/users/moosetheory.nix b/modules/nixos/users/moosetheory.nix new file mode 100644 index 0000000..f362295 --- /dev/null +++ b/modules/nixos/users/moosetheory.nix @@ -0,0 +1,32 @@ +{ config, lib, pkgs, ... }: +{ + sops.secrets.annika_password.neededForUsers = true; + + users.users.moosetheory = { + isNormalUser = true; + home = "/home/moosetheory"; + description = "David Merris"; + extraGroups = [ "networkmanager" "wheel" "libvirtd" ]; + openssh.authorizedKeys.keys = [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIG9NhsAOBwWBdBeenfaPoRtqQrAIgg7E5m4sKYQU9cFx annika@kim" ]; + hashedPasswordFile = config.sops.secrets.annika_password.path; + }; + home-manager.users.moosetheory = { + programs = { + direnv = { + enable = true; + enableBashIntegration = true; + nix-direnv.enable = true; + }; + bash = { + enable = true; + shellAliases = { + s = "kitten ssh"; + la = "ls -a"; + ll = "ls -l"; + lal = "ls -la"; + cls = "clear && ls"; + }; + }; + }; + }; +}