jalr/nixos-configuration
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add sops instructions

Browse source
This commit is contained in:
Jakob Lechner 2023-02-22 22:39:07 +00:00
parent 374ac7a749
commit 233810ebd7
No known key found for this signature in database
GPG key ID: 996082EFB5906C10
1 changed files with 13 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

13
README.md
View file

@ -13,6 +13,19 @@ This installs nixos on host `somehost`:
nix-shell -p nixUnstable --run 'nixos-install --flake https://gitlab.jalr.de/jalr/nixos-configuration#somehost --no-channel-copy' nix-shell -p nixUnstable --run 'nixos-install --flake https://gitlab.jalr.de/jalr/nixos-configuration#somehost --no-channel-copy'
``` ```
### setting up sops
Get the host key and convert it.
```bash
ssh-keyscan -t ed25519 $host | ssh-to-age
```
Then add the key to `.sops.yaml`
If the key changed, you might want to run
```bash
sops updatekeys hosts/$host/secrets.yaml
```
## nix repl ## nix repl
start an interactive environment for evaluating Nix expressions start an interactive environment for evaluating Nix expressions