firefox: fix up sandboxing of ssh/sops
This commit is contained in:
parent
ab4bbc2224
commit
b59be8338a
|
@ -305,8 +305,9 @@ in
|
||||||
# TODO: find a way to not expose ~/.ssh to firefox
|
# TODO: find a way to not expose ~/.ssh to firefox
|
||||||
# - unlock sops at login?
|
# - unlock sops at login?
|
||||||
fs.".ssh" = lib.mkIf cfg.addons.browserpass-extension.enable {};
|
fs.".ssh" = lib.mkIf cfg.addons.browserpass-extension.enable {};
|
||||||
|
fs."private/.ssh" = lib.mkIf cfg.addons.browserpass-extension.enable {};
|
||||||
# fs.".ssh/id_ed25519" = lib.mkIf cfg.addons.browserpass-extension.enable {};
|
# fs.".ssh/id_ed25519" = lib.mkIf cfg.addons.browserpass-extension.enable {};
|
||||||
fs.".config/sops" = lib.mkIf cfg.addons.browserpass-extension.enable {};
|
fs.".config/sops".dir = lib.mkIf cfg.addons.browserpass-extension.enable {};
|
||||||
fs."private/knowledge/secrets/accounts" = lib.mkIf cfg.addons.browserpass-extension.enable {};
|
fs."private/knowledge/secrets/accounts" = lib.mkIf cfg.addons.browserpass-extension.enable {};
|
||||||
};
|
};
|
||||||
})
|
})
|
||||||
|
|
Loading…
Reference in New Issue
Block a user