Add secret management

This commit is contained in:
GHOSCHT 2023-11-11 15:33:30 +01:00
parent 8a981440bc
commit a899f33fda
4 changed files with 38 additions and 8 deletions

View file

@ -27,7 +27,7 @@
# Enable the X11 windowing system. # Enable the X11 windowing system.
# services.xserver.enable = true; # services.xserver.enable = true;
programs.ssh.startAgent = true; # programs.ssh.startAgent = true;
# Enable the KDE Plasma Desktop Environment. # Enable the KDE Plasma Desktop Environment.
services.xserver.displayManager.sddm.enable = true; services.xserver.displayManager.sddm.enable = true;

View file

@ -14,6 +14,8 @@
../../modules/virtualization/docker.nix ../../modules/virtualization/docker.nix
../../modules/virtualization/qemu.nix ../../modules/virtualization/qemu.nix
../../modules/programs/games.nix ../../modules/programs/games.nix
../../modules/secrets/gnome-keyring.nix
../../modules/secrets/gpg.nix
# ../../modules/services/easyeffects.nix # ../../modules/services/easyeffects.nix
]; ];
@ -39,16 +41,13 @@
extraBackends = [unstable.utsushi]; extraBackends = [unstable.utsushi];
}; };
}; };
services.udev.packages = [unstable.utsushi]; services.udev.packages = [unstable.utsushi];
# hyprland.enable = true; # Desktops
kde.enable = true; hyprland.enable = false;
kde.enable = false;
awesome.enable = true; awesome.enable = true;
# home-manager.users.${vars.user} = {
# services.kdeconnect.enable = true;
# };
nixpkgs.config.librewolf.enablePlasmaBrowserIntegration = true;
programs.kdeconnect.enable = true; programs.kdeconnect.enable = true;
environment = { environment = {
systemPackages = with pkgs; systemPackages = with pkgs;

View file

@ -0,0 +1,11 @@
{
config,
lib,
pkgs,
vars,
...
}: {
security.pam.services.${vars.user}.enableGnomeKeyring = true;
services.gnome.gnome-keyring.enable = true;
programs.seahorse.enable = true;
}

20
modules/secrets/gpg.nix Normal file
View file

@ -0,0 +1,20 @@
{
config,
lib,
pkgs,
vars,
...
}: {
home-manager.users.${vars.user} = {
programs.gpg = {
enable = true;
};
services.gpg-agent = {
enable = true;
enableSshSupport = true;
enableFishIntegration = true;
enableZshIntegration = true;
pinentryFlavor = "gnome3";
};
};
}