From 55b11aa36dee1967db73f952a15f661ea1b9e974 Mon Sep 17 00:00:00 2001 From: Gene Liverman Date: Sat, 10 Jan 2026 13:45:07 -0500 Subject: [PATCH] Added nix-auth https://github.com/numtide/nix-auth - this is slick! --- flake.lock | 92 +++++++++++++++++++- flake.nix | 5 ++ modules/hosts/common/default.nix | 1 + modules/hosts/home-manager-only/secrets.yaml | 8 +- 4 files changed, 101 insertions(+), 5 deletions(-) diff --git a/flake.lock b/flake.lock index 8505b45..0e871d2 100644 --- a/flake.lock +++ b/flake.lock @@ -159,6 +159,24 @@ "type": "github" } }, + "flake-parts": { + "inputs": { + "nixpkgs-lib": "nixpkgs-lib" + }, + "locked": { + "lastModified": 1767609335, + "narHash": "sha256-feveD98mQpptwrAEggBQKJTYbvwwglSbOv53uCfH9PY=", + "owner": "hercules-ci", + "repo": "flake-parts", + "rev": "250481aafeb741edfe23d29195671c19b36b6dca", + "type": "github" + }, + "original": { + "owner": "hercules-ci", + "repo": "flake-parts", + "type": "github" + } + }, "flake-utils": { "locked": { "lastModified": 1652776076, @@ -304,6 +322,28 @@ "type": "github" } }, + "nix-auth": { + "inputs": { + "flake-parts": "flake-parts", + "nixpkgs": [ + "nixpkgs" + ], + "treefmt-nix": "treefmt-nix" + }, + "locked": { + "lastModified": 1768013255, + "narHash": "sha256-PNuQh6yJ+z/vaRGWWp2grc7BfJxErrfzgsgUCrb+Tsg=", + "owner": "numtide", + "repo": "nix-auth", + "rev": "c253f81593f3fa6a3e70161132ca7e30ec045e0f", + "type": "github" + }, + "original": { + "owner": "numtide", + "repo": "nix-auth", + "type": "github" + } + }, "nix-darwin": { "inputs": { "nixpkgs": [ @@ -454,6 +494,21 @@ "type": "github" } }, + "nixpkgs-lib": { + "locked": { + "lastModified": 1765674936, + "narHash": "sha256-k00uTP4JNfmejrCLJOwdObYC9jHRrr/5M/a/8L2EIdo=", + "owner": "nix-community", + "repo": "nixpkgs.lib", + "rev": "2075416fcb47225d9b68ac469a5c4801a9c4dd85", + "type": "github" + }, + "original": { + "owner": "nix-community", + "repo": "nixpkgs.lib", + "type": "github" + } + }, "nixpkgs-unstable": { "locked": { "lastModified": 1767026758, @@ -471,6 +526,22 @@ } }, "nixpkgs_2": { + "locked": { + "lastModified": 1767364772, + "narHash": "sha256-fFUnEYMla8b7UKjijLnMe+oVFOz6HjijGGNS1l7dYaQ=", + "owner": "nixos", + "repo": "nixpkgs", + "rev": "16c7794d0a28b5a37904d55bcca36003b9109aaa", + "type": "github" + }, + "original": { + "owner": "nixos", + "ref": "nixpkgs-unstable", + "repo": "nixpkgs", + "type": "github" + } + }, + "nixpkgs_3": { "locked": { "lastModified": 1766885793, "narHash": "sha256-P6RVkrM9JLCW6xBjSwHfgTOQ1JwBUma5xe5LI8xAPC0=", @@ -538,12 +609,13 @@ "flox": "flox", "genebean-omp-themes": "genebean-omp-themes", "home-manager": "home-manager", + "nix-auth": "nix-auth", "nix-darwin": "nix-darwin", "nix-flatpak": "nix-flatpak", "nix-homebrew": "nix-homebrew", "nixos-cosmic": "nixos-cosmic", "nixos-hardware": "nixos-hardware", - "nixpkgs": "nixpkgs_2", + "nixpkgs": "nixpkgs_3", "nixpkgs-unstable": "nixpkgs-unstable", "simple-nixos-mailserver": "simple-nixos-mailserver", "sops-nix": "sops-nix" @@ -630,6 +702,24 @@ "repo": "sops-nix", "type": "github" } + }, + "treefmt-nix": { + "inputs": { + "nixpkgs": "nixpkgs_2" + }, + "locked": { + "lastModified": 1767801790, + "narHash": "sha256-QfX6g3Wj2vQe7oBJEbTf0npvC6sJoDbF9hb2+gM5tf8=", + "owner": "numtide", + "repo": "treefmt-nix", + "rev": "778a1d691f1ef45dd68c661715c5bf8cbf131c80", + "type": "github" + }, + "original": { + "owner": "numtide", + "repo": "treefmt-nix", + "type": "github" + } } }, "root": "root", diff --git a/flake.nix b/flake.nix index dc6800b..4f54ef7 100644 --- a/flake.nix +++ b/flake.nix @@ -33,6 +33,11 @@ inputs.nixpkgs.follows = "nixpkgs"; }; + nix-auth = { + url = "github:numtide/nix-auth"; + inputs.nixpkgs.follows = "nixpkgs"; + }; + # Controls system level software and settings including fonts on macOS nix-darwin = { url = "github:lnl7/nix-darwin/nix-darwin-25.11"; diff --git a/modules/hosts/common/default.nix b/modules/hosts/common/default.nix index a8e8059..497e06c 100644 --- a/modules/hosts/common/default.nix +++ b/modules/hosts/common/default.nix @@ -27,6 +27,7 @@ in { htop httpie hub + inputs.nix-auth.packages.${system}.default jq lazydocker lazygit diff --git a/modules/hosts/home-manager-only/secrets.yaml b/modules/hosts/home-manager-only/secrets.yaml index 359fd50..7fdcb6f 100644 --- a/modules/hosts/home-manager-only/secrets.yaml +++ b/modules/hosts/home-manager-only/secrets.yaml @@ -1,5 +1,5 @@ local_git_config: ENC[AES256_GCM,data:7zJpT5px88Y/9S/ZR3dRZQmALdVS1aR/1qpKDYzfSAG7bTHutIXztBi93xH+iuId2blWZ7DVjRZPTLgbsxzPBGMVnwDMCTOfLPhTwbSGI6XfKXvYyl9TXNiw1qxn1zhIAia7zt2J/dBt63JMVByXaVohpHr0/9cKZio/cuI=,iv:k55B7Pe70M+enpMP+toVjyEkdIsuNnA5hRUe5Kgq5pE=,tag:6sChtIN2POPiK2zYweqTTA==,type:str] -local_private_env: ENC[AES256_GCM,data:cxf2ohVinqniNHhqeQ15u1fJ13uuP0f+eZsg4tc2FSQnSK0YFu0y45HyixBSK9Qp1/oU36dcdSknSarlLfkq,iv:+oGglosRs9dRZBgs18+el3xL5E1SKgQdwC7totpZFsU=,tag:U3/bNQKUcWgW3vcumpoJdw==,type:str] +local_private_env: ENC[AES256_GCM,data:bUDiSzNaLDLBCM9SosCA/79utc+rqht3BqWOqgGAoc/E1YPfiCsqSOgMSRaYnACc9ubpozEGbsSSwxhq/p+4,iv:opwNCd3hAVJdXLiVbGh5FVuv0Uwnfns6QGrRKHGOtiE=,tag:Dun7sZC9RyxXiTlAPRMV6Q==,type:str] sops: age: - recipient: age1ueus0ucmvqhgkw3vyc8zxaq0qjc84cfrcuqpheppem68s4a2vq0qw376yc @@ -11,7 +11,7 @@ sops: aTV4a1QvaThld3g0aGt3Z3JvaWFtcFEK1zvoJDUDSwSmSJ5YyFUjNCP9qoj/7Uv5 MusGUeYe+IdBz413voyT0PgsGmlKNEjfxjzsF0DRKAw5a/n0EY9cOg== -----END AGE ENCRYPTED FILE----- - lastmodified: "2025-08-13T12:53:10Z" - mac: ENC[AES256_GCM,data:zi3fQVrWcxKVxjXKpQqKLi/4tjB6hWSCQkK8YXZLKr6ZToX4/1CLaKmluRMHZElv3FW/LIFQw5ayIWqTBhaootRWfWyNcVePpDjxe4WpK866IqXTZJN9e/TCvvJ27JMOt91/hFU+U9KwyuXg/0zvaDoQdiPGha6TQVQmzZ45evA=,iv:PLkXmqHaDj4Gp8tUNL6XmcVbpchUnuXvMTy5Pc+nywE=,tag:HkYMccaGycj0Wz8dEME54A==,type:str] + lastmodified: "2026-01-10T18:40:37Z" + mac: ENC[AES256_GCM,data:JfaHXsdnJNyrUEL8WyhH4ht8PO4ifQguvf0YLjmpMFbr1Mih+e/+DtQTPO9M2U/vrH7rFCk1UiZQhNZD3kY6S5LUqvHYvQwbf81zNXpGtAr/lQVT+bIJeqfRdJXkIGIZscu16Lmqm0WM6lmugfrIteNATYr9Qc4mDn2UApl5YXc=,iv:bC0XJUwgytnHefMPGsmdY5EkMTRmF5GcakjEIlIeNvs=,tag:JZ0k1y9J7StXKG3GeyGhfg==,type:str] unencrypted_suffix: _unencrypted - version: 3.10.2 + version: 3.11.0