nix-home-manager/modules/secrets.nix

# Generate age key
# $ mkdir -p ~/.config/sops/age
# $ age-keygen -o ~/.config/sops/age/keys.txt
# Copy Public Key
# $ age-keygen -y ~/.config/sops/age/keys.txt
# Add it to .sops.yaml and update keys
# $ sops updatekeys secrets/secrets.enc.yaml

{ config, lib, pkgs, ... }:

{
  environment.systemPackages = with pkgs; [
    sops
    age
  ];

  sops = {
    #defaultSopsFile = ./../secrets/secrets.enc.yaml;
    age.keyFile = "/home/wieerwill/.config/sops/age/keys.txt";
  };

  #sops.secrets.git-email = {
  #  owner = "wieerwill";
  #  path = "/home/wieerwill/.config/git-email";
  #};
}