mirrors/sops-nix
1
0
Fork 0
mirror of https://github.com/Mic92/sops-nix.git synced 2024-12-14 11:57:52 +00:00
Code Activity

use gnupg binary also now for ssh rsa keys

Browse source 
With the last sops bump, our gpg keys are no longer detected by sops without it
This commit is contained in:
Jörg Thalheim 2024-03-14 14:29:58 +01:00 committed by Jörg Thalheim
parent 85d13d5aa4
commit fa8035c073
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
modules/sops/default.nix
View file

@ -312,7 +312,7 @@ in {
}]) cfg.secrets)
);
sops.environment.SOPS_GPG_EXEC = lib.mkIf (cfg.gnupg.home != null) (lib.mkDefault "${pkgs.gnupg}/bin/gpg");
sops.environment.SOPS_GPG_EXEC = lib.mkIf (cfg.gnupg.home != null || cfg.gnupg.sshKeyPaths != []) (lib.mkDefault "${pkgs.gnupg}/bin/gpg");
# When using sysusers we no longer be started as an activation script because those are started in initrd while sysusers is started later.
systemd.services.sops-install-secrets = lib.mkIf (regularSecrets != { } && sysusersEnabled) {