Add sops.nix to every host

2026-05-17 02:41:04 +02:00 · 2026-05-17 02:41:04 +02:00 · 679f815d60
commit 679f815d60
parent 408bbe2de2
27 changed files with 91 additions and 21 deletions
--- a/config/hosts/forgejo/default.nix
+++ b/config/hosts/forgejo/default.nix
@ -5,5 +5,6 @@
    ./forgejo.nix
    ./redis.nix
    ./nginx.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/forgejo/sops.nix
+++ b/config/hosts/forgejo/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/jellyfin/default.nix
+++ b/config/hosts/jellyfin/default.nix
@ -5,5 +5,6 @@
    ./hardware-configuration.nix
    ./jellyfin.nix
    ./nginx.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/jellyfin/sops.nix
+++ b/config/hosts/jellyfin/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/keycloak/default.nix
+++ b/config/hosts/keycloak/default.nix
@ -4,5 +4,6 @@
    ./configuration.nix
    ./keycloak.nix
    ./nginx.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/keycloak/sops.nix
+++ b/config/hosts/keycloak/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/lifeline/default.nix
+++ b/config/hosts/lifeline/default.nix
@ -3,5 +3,6 @@
  imports = [
    ./configuration.nix
    ./hardware-configuration.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/lifeline/sops.nix
+++ b/config/hosts/lifeline/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/mail-1/default.nix
+++ b/config/hosts/mail-1/default.nix
@ -3,5 +3,6 @@
  imports = [
    ./configuration.nix
    ./simple-nixos-mailserver.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/mail-1/sops.nix
+++ b/config/hosts/mail-1/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/mastodon/default.nix
+++ b/config/hosts/mastodon/default.nix
@ -5,5 +5,6 @@
    ./mastodon.nix
    ./opensearch.nix
    ./nginx.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/mastodon/sops.nix
+++ b/config/hosts/mastodon/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/mastodon/yarn.patch
+++ b/config/hosts/mastodon/yarn.patch
@ -1,21 +0,0 @@
 diff --git a/.yarnrc.yml b/.yarnrc.yml
 --- a/.yarnrc.yml
 +++ b/.yarnrc.yml
@@ -1 +1,6 @@
 nodeLinker: node-modules
 +
 +approvedGitRepositories:
 +  - "**"
 +
 +enableScripts: true
 diff --git a/yarn.lock b/yarn.lock
 --- a/yarn.lock
 +++ b/yarn.lock
@@ -2,6 +2,6 @@
 # Manual changes might be lost - proceed with caution!
 __metadata:
 -  version: 8
 +  version: 9
   cacheKey: 10c0
--- a/config/hosts/matrix/default.nix
+++ b/config/hosts/matrix/default.nix
@ -8,5 +8,6 @@
    ./matrix-authentication-service.nix
    ./matrix-synapse.nix
    ./nginx.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/matrix/sops.nix
+++ b/config/hosts/matrix/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/metrics-nekomesh/default.nix
+++ b/config/hosts/metrics-nekomesh/default.nix
@ -6,5 +6,6 @@
    ./neo4j.nix
    ./prometheus.nix
    ./nginx.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/metrics-nekomesh/sops.nix
+++ b/config/hosts/metrics-nekomesh/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/metrics/default.nix
+++ b/config/hosts/metrics/default.nix
@ -5,5 +5,6 @@
    ./grafana.nix
    ./prometheus.nix
    ./nginx.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/metrics/sops.nix
+++ b/config/hosts/metrics/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/nextcloud/default.nix
+++ b/config/hosts/nextcloud/default.nix
@ -4,5 +4,6 @@
    ./configuration.nix
    ./hardware-configuration.nix
    ./nextcloud.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/nextcloud/sops.nix
+++ b/config/hosts/nextcloud/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/searx/default.nix
+++ b/config/hosts/searx/default.nix
@ -4,5 +4,6 @@
    ./configuration.nix
    ./nginx.nix
    ./searx.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/searx/sops.nix
+++ b/config/hosts/searx/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/torrent/default.nix
+++ b/config/hosts/torrent/default.nix
@ -7,5 +7,6 @@
    ./radarr.nix
    ./sonarr.nix
    ./nginx.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/torrent/sops.nix
+++ b/config/hosts/torrent/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }
--- a/config/hosts/valkyrie/default.nix
+++ b/config/hosts/valkyrie/default.nix
@ -5,5 +5,6 @@
    ./nginx.nix
    ./containers/uptime-kuma
    ./services.nix
    ./sops.nix
  ];
 }
--- a/config/hosts/valkyrie/sops.nix
+++ b/config/hosts/valkyrie/sops.nix
@ -0,0 +1,6 @@
 { ... }:
 {
  sops = {
    defaultSopsFile = ./secrets.yaml;
  };
 }