2 files changed, 7 insertions, 0 deletions

diff --git a/modules/server/networking/tor.nix b/modules/server/networking/tor.nix
index 05e7fb7..ab3dc9f 100644
--- a/modules/server/networking/tor.nix
+++ b/modules/server/networking/tor.nix
@@ -1,3 +1,4 @@
+{ config, ... }:
 {
   services = {
     caddy.virtualHosts."fuwnme4wbs5x36jjf2usedw2zscozwhazykhyfkjsmudtb7egs3mb7yd.onion".extraConfig = "reverse_proxy localhost:8084";
@@ -9,6 +10,7 @@
       relay.onionServices = {
         "fuwn.me" = {
           version = 3;
+          secretKey = config.sops.secrets."fuwnme_onion_secret_key".path;
 
           map = [
             {
diff --git a/modules/server/sops.nix b/modules/server/sops.nix
index 8c2549a..a2b5e78 100644
--- a/modules/server/sops.nix
+++ b/modules/server/sops.nix
@@ -9,6 +9,11 @@
       tailscale_authentication_key = { };
       finnhub_token = { };
       caddy_environment_file = { };
+
+      fuwnme_onion_secret_key = {
+        format = "binary";
+        sopsFile = "${self}/secrets/fuwnme_hs_ed25519_secret_key.bin";
+      };
     };
   };
 }