From 9758b8236dcaafb958e6ef4f634d201af0bea80b Mon Sep 17 00:00:00 2001
From: seth <getchoo@tuta.io>
Date: Fri, 2 Feb 2024 14:40:21 -0500
Subject: modules/nixos+darwin: make everything an actual module again

---
 modules/nixos/server/secrets.nix | 23 +++++++++++++++++------
 1 file changed, 17 insertions(+), 6 deletions(-)

(limited to 'modules/nixos/server/secrets.nix')

diff --git a/modules/nixos/server/secrets.nix b/modules/nixos/server/secrets.nix
index 1d572bd..0f38995 100644
--- a/modules/nixos/server/secrets.nix
+++ b/modules/nixos/server/secrets.nix
@@ -1,10 +1,21 @@
-{secretsDir, ...}: {
-  age = {
-    identityPaths = ["/etc/age/key"];
+{
+  config,
+  lib,
+  secretsDir,
+  ...
+}: let
+  cfg = config.server.secrets;
+in {
+  options.server.secrets.enable = lib.mkEnableOption "secrets management";
 
-    secrets = {
-      rootPassword.file = secretsDir + "/rootPassword.age";
-      userPassword.file = secretsDir + "/userPassword.age";
+  config = lib.mkIf cfg.enable {
+    age = {
+      identityPaths = ["/etc/age/key"];
+
+      secrets = {
+        rootPassword.file = secretsDir + "/rootPassword.age";
+        userPassword.file = secretsDir + "/userPassword.age";
+      };
     };
   };
 }
-- 
cgit v1.2.3