| 20 Jun 2023 |
 gigahawk | 
Download image.png | 06:28:46 |
| gigahawk | what are the system keys supposed to be? | 06:28:56 |
| gigahawk | should I just be treating an ssh key associated with the root account as the system key? | 06:29:22 |
| gigahawk | * should I just be treating an ssh key associated with the root account (i.e. under /root/.ssh/) as the system key? | 06:29:38 |
| gigahawk | seems if i build my system config the decryption works fine, is the host key only used by default during nixos-rebuild etc. | 06:42:27 |
| gigahawk | * seems if i build my system config the decryption works fine, is the host key only used by default during nixos-rebuild etc? | 06:42:29 |
| gigahawk | ah, if I have a secret using only my user key it doesn't work, what's the point of the user key then? Just so I can edit and rekey secrets? | 06:45:30 |
 uep | yep | 10:06:26 |
| 21 Jun 2023 |
|  Basil joined the room. | 20:12:51 |
| 25 Jun 2023 |
|  kadawee joined the room. | 15:36:06 |
| 26 Jun 2023 |
|  MartiniMoe joined the room. | 16:37:12 |
| MartiniMoe | Hi there,
I was thinking that with agenix I could add for example my ssh private keys to my nixos config. But I can’t an option in nixos or in home-manager to add ssh keys to the ssh agent. Can I only copy them and have to add them still manually? | 17:45:06 |
 ryantm | You should be able to use agenix's options to do that. Set the path equal to your user's .SSH for https://github.com/ryantm/agenix#agesecretsnamepath | 19:00:22 |
| ryantm | * You should be able to use agenix's options to do that. Set the path equal to your user's .ssh directory https://github.com/ryantm/agenix#agesecretsnamepath | 19:00:45 |
| Basil left the room. | 19:48:18 |
| MartiniMoe | In reply to @ryantm:matrix.org
You should be able to use agenix's options to do that. Set the path equal to your user's .ssh directory https://github.com/ryantm/agenix#agesecretsnamepath Thanks, but then it’s not added to my ssh agent, right? | 19:55:44 |
| 27 Jun 2023 |
|  yaya joined the room. | 11:50:40 |
 /madonius[er|he] | Redacted or Malformed Event | 20:18:34 |
| ryantm | ssh agent configuration would be separate, yeah. | 20:20:01 |
| /madonius[er|he] | Hi, nevermind I this did not fix things :/
I keep getting a error: The option age' does not exist. Definition values:` | 20:33:38 |
| /madonius[er|he] | inputs = {
nixpkgs.url = "github:nixos/nixpkgs/nixos-23.05";
home-manager.url = "github:nix-community/home-manager/release-23.05";
agenix.url = "github:ryantm/agenix";
sops-nix.url = "github:Mic92/sops-nix";
};
outputs = { self,
nixpkgs, home-manager, agenix, sops-nix, ...
}:{
| 20:33:57 |
| /madonius[er|he] | * Hi, nevermind I this did not fix things :/
I keep getting a error: The option 'age' does not exist. Definition values:\ | 20:34:11 |
| /madonius[er|he] | the sops-nix integration works, no problem | 20:34:41 |
 cole-h | It would help if you posted your entire flake. Ideally as a gist or using some other paste service. | 20:35:47 |
| /madonius[er|he] | Sure: https://md.darmstadt.ccc.de/IZG9P7ZJTy6XFZ7uxpWJtQ# | 20:38:59 |
| cole-h | What is that modules = [ in shoemaker...? Looks highly suspicious. Just add agenix.nixosModules.default to your imports list right above it. | 20:41:18 |
 oddlama | Looks like a confusion of lib.nixosSystem's modules parameter with colmena's imports (which does the same but are named differently) | 20:45:50 |
| /madonius[er|he] | In reply to @cole-h:matrix.org
What is that modules = [ in shoemaker...? Looks highly suspicious. Just add agenix.nixosModules.default to your imports list right above it. yeah that was a residue of me trying around | 20:47:48 |
| cole-h | (nit, but imports is not colmena specific -- it is part of the NixOS module system, which colmena heavily leverages) | 20:47:52 |
| cole-h | In reply to @madonius:entropia.de
yeah that was a residue of me trying around Then if you move the module into your system's imports, does that resolve the issue? | 20:50:04 |
