m3tam3re/nixos-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
3e8c95944c89c234e988c3990883f8e30f019538
nixos-config/home/base/secrets/secrets.nix

25 lines
649 B
Nix
Raw Normal View History

feat: create new home/ directory structure for profile-based config New structure: - home/base/ - Always loaded (shell, cli-tools, secrets) - home/coding/ - Profile-independent dev tooling (editor, lsp, git, agents) - home/profiles/ - Freely combinable profiles (gaming, media) - home/desktop/ - Desktop-only (wm, apps, theme) - home/server/ - Minimal server stub Migration sources: - home/features/cli/ → home/base/{shell,cli-tools,secrets} - home/features/desktop/hyprland,wayland,rofi → home/desktop/wm/ - home/features/desktop/obsidian,office,webapps,crypto → home/desktop/apps/ - home/features/desktop/fonts,theme,wallpapers → home/desktop/theme/ - gaming.nix split → home/profiles/gaming/{steam,gamescope} - media.nix split → home/profiles/media/{obs,ffmpeg,yt-dlp,kdenlive,handbrake} Option namespaces updated: - features.cli.* → base.shell.* / base.cliTools.* / base.secrets - features.desktop.* → desktop.wm.* / desktop.apps.* / desktop.theme.* - features.desktop.gaming → profiles.gaming.* - features.desktop.media → profiles.media.* Verified: nix flake check passes (warnings only)
2026-04-26 10:37:03 +02:00
# Password store and secrets management via pass-wayland with OTP and import extensions.
{
config,
lib,
pkgs,
...
}:
with lib; let
cfg = config.base.secrets;
in {
fix: make base modules enabled by default; document lazylib→lazygit - All base/* modules now use (mkEnableOption "...") // { default = true; } so they activate automatically when imported — no explicit .enable = true required in host configs - packages.nix: add comment documenting that lazylib does not exist in nixpkgs; lazygit is the correct and intended package - zellij-ps.nix: clarify that cli.zellij-ps namespace is intentional — it is the home-manager module convention from m3ta-nixpkgs - nix flake check passes (warnings are pre-existing)
2026-04-26 12:16:44 +02:00
# Enabled by default — base modules are always-on.
options.base.secrets.enable = (mkEnableOption "enable secrets management") // {default = true;};
feat: create new home/ directory structure for profile-based config New structure: - home/base/ - Always loaded (shell, cli-tools, secrets) - home/coding/ - Profile-independent dev tooling (editor, lsp, git, agents) - home/profiles/ - Freely combinable profiles (gaming, media) - home/desktop/ - Desktop-only (wm, apps, theme) - home/server/ - Minimal server stub Migration sources: - home/features/cli/ → home/base/{shell,cli-tools,secrets} - home/features/desktop/hyprland,wayland,rofi → home/desktop/wm/ - home/features/desktop/obsidian,office,webapps,crypto → home/desktop/apps/ - home/features/desktop/fonts,theme,wallpapers → home/desktop/theme/ - gaming.nix split → home/profiles/gaming/{steam,gamescope} - media.nix split → home/profiles/media/{obs,ffmpeg,yt-dlp,kdenlive,handbrake} Option namespaces updated: - features.cli.* → base.shell.* / base.cliTools.* / base.secrets - features.desktop.* → desktop.wm.* / desktop.apps.* / desktop.theme.* - features.desktop.gaming → profiles.gaming.* - features.desktop.media → profiles.media.* Verified: nix flake check passes (warnings only)
2026-04-26 10:37:03 +02:00
config = mkIf cfg.enable {
programs.password-store = {
enable = true;
package =
pkgs.pass-wayland.withExtensions
(exts: [exts.pass-otp exts.pass-import]);
settings = {PASSWORD_STORE_DIR = "$XDG_DATA_HOME/password-store";};
};
home.packages = [pkgs.pinentry-gnome3];
};
}
Reference in New Issue Copy Permalink