sync

hosts/common/default.nix

@@ -6,6 +6,29 @@
     ./sops.nix
    ] ++ (builtins.attrValues outputs.nixosModules);
 
+###dotfiles path variable
+ options._dotfiles = lib.mkOption {
+    type = lib.types.str;
+    default = "${inputs.self}/home-manager/dotfiles";
+    description = "Path to the dotfiles in this repository";
+  };
+
+###secrets path variable
+ options._secrets = lib.mkOption {
+    type = lib.types.str;
+    default = "/run/user/1000/secrets/";
+    description = "Path to the Secrets runtime";
+  };
+
+
+###secretstore path variable
+ options._secretstore = lib.mkOption {
+    type = lib.types.str;
+    default = "${inputs.self}/secrets/";
+    description = "Path to the Secrets storage";
+  };
+
+config = {
   system.stateVersion = "22.11";
 
   home-manager = {
@@ -14,8 +37,6 @@
               sharedModules = [
                 inputs.sops-nix.homeManagerModules.sops
               ];
-
-
   };
 
   nixpkgs = {
@@ -34,5 +55,5 @@
   nix.extraOptions = ''
     experimental-features = nix-command flakes
   '';
-
+};
 }

hosts/common/sops.nix

@@ -5,7 +5,8 @@
   ];
 
   sops = {
-  defaultSopsFile = ./secrets.yaml;
+  # defaultSopsFile = ./secrets.yaml;
+  defaultSopsFile = "${config._secretsstore}/host-secrets.yaml"
   age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
 #   secrets.discogs_json = { 
 #   mode = "0440";