agenix: init environment-secrets

hosts/dumpyourvms/dumpyourvms.nix

@@ -1,4 +1,4 @@
-{ config, pkgs, lib, ... }:
+{ config, pkgs, lib, self, ... }:
 with lib;
 let
   psCfg = config.pub-solar;
@@ -10,7 +10,12 @@ in
   ];
 
   config = {
-    pub-solar.x-os.keyfile = "/etc/nixos/hosts/dumpyourvms/secrets/keyfile.bin";
+    age.secrets.environment-secrets = {
+      file = "${self}/secrets/environment-secrets.age";
+      mode = "700";
+      owner = "teutat3s";
+    };
+
     pub-solar.virtualisation.enable = true;
 
     # fix backlight for keyboard and brightness, adjust function key binding

secrets/secrets.nix

@@ -6,4 +6,5 @@ let
 in
 {
   "example-secret.age".publicKeys = allKeys;
+  "environment-secrets.age".publicKeys = allKeys;
 }

users/teutat3s/session-variables.nix

@@ -6,7 +6,7 @@ in
 {
   home-manager = pkgs.lib.setAttrByPath [ "users" psCfg.user.name ] {
     home.sessionVariables = {
-      DRONE_SERVER = "https://drone.greenbaum.cloud";
+      DRONE_SERVER = "https://ci.b12f.io";
     };
   };
 }

users/teutat3s/zshrc.nix

@@ -83,4 +83,5 @@ pkgs:
   complete -o nospace -C ${pkgs.waypoint}/bin/waypoint waypoint
   complete -C '${pkgs.awscli2}/bin/aws_completer' ${pkgs.awscli2}/bin/aws
 
+  source /run/secrets/environment-secrets
 ''