modules/age: Init

author: Benedikt Peetz <benedikt.peetz@b-peetz.de> 2025-05-16 18:10:15 +0200
committer: Benedikt Peetz <benedikt.peetz@b-peetz.de> 2025-05-16 18:10:15 +0200
commit: 09630d91bc5e0ee8d082aa470761352d2d149eba (patch)
tree: 1fb54623e66911777956c51483bea9f975556b58
parent: pkgs/stamp: Add `coreutils` dependency (diff)
download: nixos-config-09630d91bc5e0ee8d082aa470761352d2d149eba.zip
2 files changed, 26 insertions, 0 deletions
diff --git a/modules/by-name/ag/age/module.nix b/modules/by-name/ag/age/module.nix
new file mode 100644
index 00000000..9de1f076
--- /dev/null
+++ b/modules/by-name/ag/age/module.nix
@@ -0,0 +1,25 @@
+{
+  config,
+  lib,
+  modules,
+  pkgs,
+  ...
+}: let
+  cfg = config.soispha.age;
+in {
+  options.soispha.age = {
+    enable = lib.mkEnableOption "secret management with age";
+  };
+
+  imports = [
+    modules.agenix.nixosModules.default
+  ];
+
+  config = lib.mkIf cfg.enable {
+    arg = {
+      # TODO(@bpeetz): Set once <https://github.com/ryantm/agenix/pull/317/files> is merged. <2025-05-16>
+      # enable = true;
+      ageBin = lib.getExe pkgs.rage;
+    };
+  };
+}
diff --git a/modules/common/default.nix b/modules/common/default.nix
index 19fbd591..08a46acf 100644
--- a/modules/common/default.nix
+++ b/modules/common/default.nix
@@ -16,6 +16,7 @@
   ...
 }: {
   soispha = {
+    age.enable = true;
     boot.enable = true;
     cleanup.enable = true;
     documentation.enable = true;
author	Benedikt Peetz <benedikt.peetz@b-peetz.de>	2025-05-16 18:10:15 +0200
committer	Benedikt Peetz <benedikt.peetz@b-peetz.de>	2025-05-16 18:10:15 +0200
commit	09630d91bc5e0ee8d082aa470761352d2d149eba (patch)
tree	1fb54623e66911777956c51483bea9f975556b58
parent	pkgs/stamp: Add `coreutils` dependency (diff)
download	nixos-config-09630d91bc5e0ee8d082aa470761352d2d149eba.zip