refactor: ran deadnix

2025-04-25 16:08:30 +02:00 · 2023-11-16 15:53:15 +01:00 · 2023-11-16 15:53:15 +01:00 · 2fae2a695b
commit 2fae2a695b
parent d863cf6688
17 changed files with 20 additions and 142 deletions
--- a/users/rouven/modules/accounts/default.nix
+++ b/users/rouven/modules/accounts/default.nix
@ -1,14 +1,14 @@
-{ pkgs, lib, ... }:
+{ config, pkgs, ... }:
 let
  gpg-default-key = "116987A8DD3F78FF8601BF4DB95E8FE6B11C4D09";
 in
 {
-  sops.secrets = {
-    "email/rfive" = { };
-    "email/tu-dresden" = { };
-    "email/ifsr" = { };
-    "email/agdsn" = { };
-    "email/google" = { };
+  age.secrets = {
+    "mail/rfive".file = ../../../../secrets/rouven/mail/rfive.age;
+    "mail/tu-dresden".file = ../../../../secrets/rouven/mail/tu-dresden.age;
+    "mail/ifsr".file = ../../../../secrets/rouven/mail/ifsr.age;
+    "mail/agdsn".file = ../../../../secrets/rouven/mail/agdsn.age;
+    "mail/google".file = ../../../../secrets/rouven/mail/google.age;
  };
  programs = {
    aerc = {
@ -56,7 +56,7 @@ in
      gpg.key = gpg-default-key;
      realName = "Rouven Seifert";
      userName = address;
-      passwordCommand = "${pkgs.coreutils}/bin/cat $XDG_RUNTIME_DIR/secrets/email/rfive";
+      passwordCommand = "${pkgs.coreutils}/bin/cat ${config.age.secrets."mail/rfive".path}";
      imap = {
        host = "mail.rfive.de";
        port = 993;
--- a/users/rouven/modules/default.nix
+++ b/users/rouven/modules/default.nix
@ -2,13 +2,13 @@
 {
  imports = [
    ./accounts
+    # ./age
    ./foot
    ./git
    ./gpg
    ./helix
    ./wayland
    ./mpv
-    ./sops
    ./spotify
    ./ssh
    ./theme
--- a/users/rouven/modules/sops/default.nix
+++ b/users/rouven/modules/sops/default.nix
@ -1,8 +0,0 @@
-{ config, ... }:
-{
-  sops = {
-    age.sshKeyPaths = [ "/home/${config.home.username}/.ssh/id_ed25519" ];
-    age.generateKey = false;
-    defaultSopsFile = ../../../../secrets/${config.home.username}.yaml;
-  };
-}
--- a/users/rouven/modules/spotify/default.nix
+++ b/users/rouven/modules/spotify/default.nix
@ -1,15 +1,17 @@
 { config, pkgs, ... }:
 {
  home.packages = [ pkgs.spotify-tui ];
-  sops.secrets."spotify" = { };
+  age.secrets.spotify = {
+    file = ../../../../secrets/rouven/spotify.age;
+  };
  services.spotifyd = {
    enable = true;
    settings = {
      global = {
        username = config.accounts.email.accounts."gmail".address;
-        password_cmd = "${pkgs.coreutils}/bin/cat $XDG_RUNTIME_DIR/secrets/spotify";
+        password_cmd = "${pkgs.coreutils}/bin/cat ${config.age.secrets.spotify.path}";
      };
    };
  };
-  systemd.user.services.spotifyd.Unit.After = [ "sops-nix.service" ];
+  systemd.user.services.spotifyd.Unit.After = [ "agenix.service" ];
 }
--- a/users/rouven/modules/ssh/default.nix
+++ b/users/rouven/modules/ssh/default.nix
@ -1,11 +1,8 @@
 { ... }:
 let
-  git = "/run/user/1000/secrets/ssh/git/private";
+  git = "~/.ssh/git";
 in
 {
-  sops.secrets = {
-    "ssh/git/private" = { };
-  };
  programs.ssh = rec {
    enable = true;
    compression = true;