modules/sops/garage/default.nix at brr

mrsnowy.dev / dotfiles

fork

My dotfiles for my nixos machines and infra

fork

dotfiles / modules / sops / garage / default.nix

at brr 31 lines 541 B view raw

wrap content

MrSnowy man ive been not commiting for quite some time jolly goshy 6w ago

78ae23f9

 1{
 2  sops.secrets = {
 3    "garage/rpc_secret" = {
 4      mode = "0440";
 5      group = "sops_garage";
 6      sopsFile = ./default.yaml;
 7    };
 8
 9    "garage/admin_token" = {
10      mode = "0440";
11      group = "sops_garage";
12      sopsFile = ./default.yaml;
13    };
14
15    "garage/metrics_token" = {
16      mode = "0440";
17      group = "sops_garage";
18      sopsFile = ./default.yaml;
19    };
20  };
21
22  users.groups = {
23    sops_garage = { };
24  };
25
26  systemd.services = {
27    garage.serviceConfig.SupplementaryGroups = [
28      "sops_garage"
29    ];
30  };
31}

Configure Feed

Configure Feed