From a663a2df003bc328db99b0c250cbafd82d6a28d8 Mon Sep 17 00:00:00 2001 From: Sakooooo <78461130+Sakooooo@users.noreply.github.com> Date: Thu, 31 Aug 2023 13:48:46 +0400 Subject: [PATCH] setup building blocks for sops --- secrets/.gitignore | 2 ++ secrets/.sops.yaml | 0 secrets/encrypted/.gitkeep | 0 secrets/secrets.nix | 6 ++++++ 4 files changed, 8 insertions(+) create mode 100644 secrets/.gitignore create mode 100644 secrets/.sops.yaml create mode 100644 secrets/encrypted/.gitkeep create mode 100644 secrets/secrets.nix diff --git a/secrets/.gitignore b/secrets/.gitignore new file mode 100644 index 00000000..a12e04c7 --- /dev/null +++ b/secrets/.gitignore @@ -0,0 +1,2 @@ +unencrypted/* +**/unencrypted diff --git a/secrets/.sops.yaml b/secrets/.sops.yaml new file mode 100644 index 00000000..e69de29b diff --git a/secrets/encrypted/.gitkeep b/secrets/encrypted/.gitkeep new file mode 100644 index 00000000..e69de29b diff --git a/secrets/secrets.nix b/secrets/secrets.nix new file mode 100644 index 00000000..71912fc2 --- /dev/null +++ b/secrets/secrets.nix @@ -0,0 +1,6 @@ +{lib}: + +lib.mapAttrs' (name: v: (lib.nameValuePair name { + sopsFile = ./encrypted + "/${name}"; + format = "binary"; +})) (builtins.readDir ./encrypted)