this post was submitted on 02 Apr 2024
17 points (100.0% liked)

Nix / NixOS

1765 readers
8 users here now

Main links

Videos

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] flashgnash@lemm.ee 1 points 7 months ago (1 children)

It looks to me like a way to declaratively install your ssh keys which from what I'm reading sops doesn't appear to do

Am I wrong in taking the conclusion SOPS stores that stuff encrypted at rest, and the only way to use them is either through the SOPS cli, or through whatever tool that wants the secrets implementing their library?

[–] InnerScientist@lemmy.world 1 points 7 months ago (1 children)

Sops-nix decrypts secrets at runtime and allows you to create symlinks to the secret files (/run/secret.d...) so this could be used for ssh keys AFAIK.

[–] flashgnash@lemm.ee 1 points 7 months ago

Ah right didn't realise there was a nix version of it, will have a look