Browse Source

git gpg signing on headfull plus imported ssh navi key

master
parent
commit
2aa4e7703e
Signed by: govanify GPG Key ID: DE62E1E2A6145556
4 changed files with 7 additions and 8 deletions
  1. +7
    -5
      common/headfull.nix
  2. +0
    -3
      common/users.nix
  3. BIN
      secrets/id_ed25519
  4. BIN
      secrets/id_ed25519.pub

+ 7
- 5
common/headfull.nix View File

@ -40,15 +40,17 @@
# password, if someone is able to snoop into my user files they will sooner
# or later get the password anyways
# this adds 2 files on top of the gpg install handled by the system, but this
# is a single user system so nobody cares
home-manager.users.govanify = {
home.file.".config/gnupg/key.gpg".source = ./../secrets/key.gpg;
home.file.".config/gnupg/trust.txt".source = ./../secrets/gpg-trust.txt;
};
home.file.".config/ssh/id_ed25519".source = ./../secrets/id_ed25519;
home.file.".config/ssh/id_ed25519.pub".source = ./../secrets/id_ed25519.pub;
programs.git.signing = {
signByDefault = true;
key = "52142D39A7CEF8FA872BCA7FDE62E1E2A6145556";
};
};
}

+ 0
- 3
common/users.nix View File

@ -4,12 +4,9 @@
[ ./../secrets/passwords.nix
];
# Define a user account. Don't forget to set a password with ‘passwd’.
users.users.govanify = {
isNormalUser = true;
extraGroups = [ "wheel" "networkmanager" "audio" ];
# TODO
#openssh.authorizedKeys.keys
};
home-manager.users.govanify = {

BIN
secrets/id_ed25519 View File


BIN
secrets/id_ed25519.pub View File


Loading…
Cancel
Save