TARDIS Project

User Tools

Site Tools

Trace:
howto:specific:nix_hosts

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
howto:specific:nix_hosts [2023/08/25 23:05] tcmalhowto:specific:nix_hosts [2024/11/13 12:52] (current) merlin
Line 63: Line 63:
   - ''nix flake update'' - Update all inputs   - ''nix flake update'' - Update all inputs
   - ''nix flake lock --update-input <name>'' - Update a specific input, ie ''crane''   - ''nix flake lock --update-input <name>'' - Update a specific input, ie ''crane''
 +
 +==== Secret Encryption & agenix ====
 +
 +[[https://github.com/FiloSottile/age|age]] is an encryption tool & format to encrypt data using public keys.
 +[[https://github.com/ryantm/agenix|agenix]] integrates this into nix so that our secrets are both versioned & private.
 +
 +=== Example usage (editing a secret file): ===
 +
 +
 +
 +<code>
 +nix develop # Downloads & installs tools we use for our nix configs, including agenix
 +cd secrets
 +export EDITOR vi # Or your editor of choice
 +agenix -e [secret file].age -i [Path to the tardis root SSH key]
 +</code>
 +
howto/specific/nix_hosts.1693004758.txt.gz · Last modified: 2023/08/25 23:05 by tcmal