Superredstone/nixos

mirror of https://github.com/Superredstone/nixos.git synced 2026-03-07 12:28:02 +01:00

Files

History

Superredstone 73d75446e4 fix(secrets): use correct key

2026-03-05 21:39:56 +01:00

..

default.sops.yaml

fix(secrets): use correct key

2026-03-05 21:39:56 +01:00

README.md

docs(secrets): fix wrong instructions

2026-03-05 21:39:14 +01:00

README.md

Secrets

Add a new machine

Obtain an age identity

nix run nixpkgs#ssh-to-age -- \
  -private-key \
  -i /etc/ssh/ssh_host_ed25519_key \
  -o $HOME/.config/sops/age/keys.txt

Obtain age recipient for the machine

cat /etc/ssh/ssh_host_ed25519_key.pub | nix run nixpkgs#ssh-to-age

Paste obtained key into .sops.yaml
Re-encrypt old files

sops updatekeys secrets/default.sops.yaml