sops: split hosts

3 files changed, 13 insertions, 5 deletions

diff --git a/modules/core/security/sops.nix b/modules/core/security/sops.nix
index 0bb1f6d..8a68acf 100644
--- a/modules/core/security/sops.nix
+++ b/modules/core/security/sops.nix
@@ -5,7 +5,6 @@
   ];
 
   sops = {
-    defaultSopsFile = ../../../secrets/secrets.yaml;
     gnupg.sshKeyPaths = [ ];
 
     age = {
diff --git a/modules/desktop/default.nix b/modules/desktop/default.nix
index 9d0345f..8cbba05 100644
--- a/modules/desktop/default.nix
+++ b/modules/desktop/default.nix
@@ -1,3 +1,7 @@
+{ config, ... }:
 {
-  sops.secrets.openai_api_key.owner = "ebisu";
+  sops = {
+    defaultSopsFile = ../../secrets/${config.networking.hostName}.yaml;
+    secrets.openai_api_key.owner = "ebisu";
+  };
 }
diff --git a/modules/server/sops.nix b/modules/server/sops.nix
index 1c12ca5..186ec3e 100644
--- a/modules/server/sops.nix
+++ b/modules/server/sops.nix
@@ -1,6 +1,11 @@
+{ config, ... }:
 {
-  sops.secrets = {
-    "ghcr/user" = { };
-    "ghcr/password" = { };
+  sops = {
+    defaultSopsFile = ../../secrets/${config.networking.hostName}.yaml;
+
+    secrets = {
+      "ghcr/user" = { };
+      "ghcr/password" = { };
+    };
   };
 }