From e8aca66e743d59c884b1cf89a19a51a56b311dda Mon Sep 17 00:00:00 2001
From: Benedikt Peetz <benedikt.peetz@b-peetz.de>
Date: Fri, 10 May 2024 14:47:51 +0200
Subject: fix(hm/conf/gpg): Allow mutable keys and thus remove old keys

---
 hm/soispha/conf/gpg/default.nix | 32 +++++++++-----------------------
 1 file changed, 9 insertions(+), 23 deletions(-)

(limited to 'hm/soispha/conf/gpg/default.nix')

diff --git a/hm/soispha/conf/gpg/default.nix b/hm/soispha/conf/gpg/default.nix
index ffc90ffe..15be872b 100644
--- a/hm/soispha/conf/gpg/default.nix
+++ b/hm/soispha/conf/gpg/default.nix
@@ -2,19 +2,12 @@
   config,
   pkgs,
   ...
-}: let
-  gpg-agent = {
-    enable = true;
-    enableZshIntegration = true;
-    enableScDaemon = true; # smartcards and such things
-    pinentryPackage = pkgs.pinentry-tty;
-  };
-in {
+}: {
   programs.gpg = {
     enable = true;
     homedir = "${config.xdg.dataHome}/gnupg/onlykey";
-    mutableKeys = false;
-    mutableTrust = false;
+    mutableKeys = true;
+    mutableTrust = true;
 
     settings = {
       default-key = "Benedikt Peetz <benedikt.peetz@b-peetz.de>";
@@ -22,25 +15,18 @@ in {
     };
 
     publicKeys = [
-      {
-        source = ./keys/key_1;
-        trust = "ultimate";
-      }
       {
         source = ./keys/key_2;
-        trust = "ultimate";
-      }
-      {
-        source = ./keys/key_3;
-        trust = "full";
-      }
-      {
-        source = ./keys/key_4;
         trust = "full";
       }
     ];
   };
   services = {
-    inherit gpg-agent;
+    gpg-agent = {
+      enable = true;
+      enableZshIntegration = true;
+      enableScDaemon = true; # smartcards and such things
+      pinentryPackage = pkgs.pinentry-tty;
+    };
   };
 }
-- 
cgit 1.4.1