From 5a273213f6bba8df2ed757f471d7787cfe44a9bd Mon Sep 17 00:00:00 2001 From: colin Date: Fri, 30 Dec 2022 03:49:31 +0000 Subject: [PATCH] sops: remove sops.age.sshKeyPaths override: sops gets this from openssh config already --- hosts/common/secrets.nix | 4 ---- 1 file changed, 4 deletions(-) diff --git a/hosts/common/secrets.nix b/hosts/common/secrets.nix index ff087d026..811e32bd6 100644 --- a/hosts/common/secrets.nix +++ b/hosts/common/secrets.nix @@ -33,10 +33,6 @@ # You can avoid this by adding a string to the full path instead, i.e. # sops.defaultSopsFile = "/root/.sops/secrets/example.yaml"; sops.defaultSopsFile = ../../secrets/universal.yaml; - # This will automatically import SSH keys as age keys - sops.age.sshKeyPaths = [ - "/etc/ssh/host_keys/ssh_host_ed25519_key" - ]; sops.gnupg.sshKeyPaths = []; # disable RSA key import # This is using an age key that is expected to already be in the filesystem # sops.age.keyFile = "/home/colin/.ssh/age.pub";