Christoph Schmatzler
1d8a0c660c
- Centralize home-manager _module.args in profiles/nixos.nix via sharedModules - Add lib/secrets.nix with mkSyncthingSecrets helper for DRY secret definitions - Move syncthing device IDs to lib/constants.nix - Standardize hostname handling (Darwin hosts now use hostname arg) - Add missing networking.hostName to tahani - Fix redundant string interpolations
26 lines
518 B
Nix
26 lines
518 B
Nix
{
|
|
mkSyncthingSecrets = {
|
|
hostname,
|
|
user,
|
|
isDarwin,
|
|
}: let
|
|
homeDir =
|
|
if isDarwin
|
|
then "/Users/${user}"
|
|
else "/home/${user}";
|
|
in {
|
|
"${hostname}-syncthing-cert" = {
|
|
sopsFile = ../secrets/${hostname}-syncthing-cert;
|
|
format = "binary";
|
|
owner = user;
|
|
path = "${homeDir}/.config/syncthing/cert.pem";
|
|
};
|
|
"${hostname}-syncthing-key" = {
|
|
sopsFile = ../secrets/${hostname}-syncthing-key;
|
|
format = "binary";
|
|
owner = user;
|
|
path = "${homeDir}/.config/syncthing/key.pem";
|
|
};
|
|
};
|
|
}
|