SebastianStork/nixos-config
1
0
Fork 0
mirror of https://github.com/SebastianStork/nixos-config.git synced 2026-01-21 17:31:34 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Make use of sops templates

Browse source
This commit is contained in:
SebastianStork 2024-06-26 17:21:09 +02:00
parent e2261da99b
commit 8805183553
4 changed files with 41 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

24
modules/system/wlan.nix
View file

@ -8,9 +8,23 @@
options.myConfig.wlan.enable = lib.mkEnableOption "";
config = lib.mkIf config.myConfig.wlan.enable {
sops.secrets = {
"iwd/WLAN-233151" = { };
"iwd/Fairphone4" = { };
sops = {
secrets = {
"wlan/WLAN-233151/key" = { };
"wlan/Fairphone4/key" = { };
};
templates =
let
mkPskFile = key: ''
[Security]
Passphrase=${key}
'';
in
{
"iwd/WLAN-233151.psk".content = mkPskFile "${config.sops.placeholder."wlan/WLAN-233151/key"}";
"iwd/Fairphone4.psk".content = mkPskFile "${config.sops.placeholder."wlan/Fairphone4/key"}";
};
};
networking.wireless.iwd = {
@ -24,8 +38,8 @@
};
systemd.tmpfiles.rules = [
"C /var/lib/iwd/WLAN-233151.psk 0600 root root - ${config.sops.secrets."iwd/WLAN-233151".path}"
"C /var/lib/iwd/Fairphone4.psk 0600 root root - ${config.sops.secrets."iwd/Fairphone4".path}"
"C /var/lib/iwd/WLAN-233151.psk 0600 root root - ${config.sops.templates."iwd/WLAN-233151.psk".path}"
"C /var/lib/iwd/Fairphone4.psk 0600 root root - ${config.sops.templates."iwd/Fairphone4.psk".path}"
];
environment.systemPackages = [ pkgs.iwgtk ];