-{ flakes, pkgs, lib, config, ... }:
+{ inputs, pkgs, lib, config, ... }:
{
gnupg.keys = {
"Julien Moutinho <julm@sourcephile.fr>" = {
};
} // lib.listToAttrs (
let domain = "sourcephile.fr"; in
- builtins.map (machine: lib.nameValuePair "root@${machine}.${domain}" {
- uid = "root@${machine}.${domain}";
+ builtins.map (host: lib.nameValuePair "root@${host}.${domain}" {
+ uid = "root@${host}.${domain}";
algo = "rsa4096";
expire = "0";
usage = ["cert" "sign"];
- passPath = "machines/${machine}/root/key.pass";
+ passPath = "hosts/${host}/gnupg/root";
subKeys = [
{ algo = "rsa4096"; expire = "0"; usage = ["encrypt"]; }
];
backupRecipients = [""];
-}) (builtins.attrNames flakes.self.nixosConfigurations));
+}) (builtins.attrNames inputs.self.nixosConfigurations));
}