fix: isolate secret

2025-06-19 15:06:00 -04:00 · 2025-06-19 15:06:00 -04:00 · 62c440f78a
commit 62c440f78a
parent dc8b13736b
2 changed files with 9 additions and 7 deletions
--- a/configurations/nixos/tofu/default.nix
+++ b/configurations/nixos/tofu/default.nix
@ -16,6 +16,14 @@ in
    self.nixosModules.default
    "${modulesPath}/virtualisation/lxc-container.nix"
  ];
  sops.secrets = {
    otfenv = {
      owner = "otf";
      group = "otf";
      mode = "0550";
    };
  };
  services = {
    tty-ips.enable = true;
    otf = {
--- a/modules/nixos/common/sops.nix
+++ b/modules/nixos/common/sops.nix
@ -11,12 +11,6 @@
  ];
  sops = {
    defaultSopsFile = ../../../secrets.yaml;
-    secrets = {
+
      otfenv = {
        owner = "otf";
        group = "otf";
        mode = "0550";
      };
    };
  };
 }