chore | add sops info, update smtp info

This commit is contained in:
Don Harper 2026-02-25 23:01:00 -06:00
parent 77b747b3c0
commit ac0530def0

View file

@ -178,7 +178,7 @@ in {
lsof lsof
lsscsi lsscsi
nix-bash-completions nix-bash-completions
nixfmt-classic nixfmt
pkg-config pkg-config
podman podman
poppler-utils poppler-utils
@ -188,6 +188,52 @@ in {
udiskie udiskie
]; ];
sops = {
age.keyFile = "/home/don/.config/sops/age/keys.txt";
defaultSopsFile = ../../secrets.yaml;
# defaultSymlinkPath = "/run/user/1000/secrets";
# defaultSecretsMountPoint = "/run/user/1000/secrets.d";
secrets = {
"users/root_password" = {
owner = "root";
mode = "0400";
};
"users/root_sshauth" = {
owner = "root";
mode = "0400";
path = "/etc/ssh/authorized_keys.d/root";
};
"users/don_password" = {
owner = "don";
mode = "0400";
};
"users/don_sshauth" = {
owner = "don";
mode = "0400";
path = "/etc/ssh/authorized_keys.d/don";
};
"users/vicky_password" = {
owner = "don";
mode = "0400";
};
"users/vicky_sshauth" = {
owner = "don";
mode = "0400";
path = "/etc/ssh/authorized_keys.d/vicky";
};
"smtp/smtp_password" = {
owner = "root";
mode = "0444";
};
"tailscale/ts_api" = {
owner = "root";
mode = "0400";
};
};
};
programs = { programs = {
dconf = {enable = true;}; dconf = {enable = true;};
mtr = {enable = true;}; mtr = {enable = true;};
@ -239,12 +285,12 @@ in {
accounts = { accounts = {
default = { default = {
auth = true; auth = true;
tls = true; tls = false;
port = 587; port = 587;
from = "don@donharper.org"; from = "don@donharper.org";
host = "smtp.smtp2go.com"; host = "smtp.smtp2go.com";
user = "donharper.org"; user = "duckunix";
passwordeval = "cat /home/don/.smtp_password.txt"; passwordeval = "cat ${config.sops.secrets."smtp/smtp_password".path}";
}; };
}; };
}; };