From 1bc34518e1c0f84e4370a473669a5aea41ebf60a Mon Sep 17 00:00:00 2001
From: Jan-Bulthuis <git@bulthuis.dev>
Date: Fri, 30 May 2025 15:11:22 +0200
Subject: [PATCH] Added deployment key to root account

---
 modules/home/utilities/secrets.nix | 2 +-
 profiles/nixos/base.nix            | 9 +++++++++
 profiles/nixos/vm.nix              | 7 -------
 3 files changed, 10 insertions(+), 8 deletions(-)

diff --git a/modules/home/utilities/secrets.nix b/modules/home/utilities/secrets.nix
index d9cddc1..672570f 100644
--- a/modules/home/utilities/secrets.nix
+++ b/modules/home/utilities/secrets.nix
@@ -34,6 +34,6 @@ in
     sops.defaultSopsFile = cfg.defaultFile;
     sops.age.sshKeyPaths = [ "${config.home.homeDirectory}/.config/sops/sops_ed25519_key" ];
     sops.secrets = cfg.secrets;
-    modules.impermanence.directories = [ ".config/" ];
+    modules.impermanence.directories = [ ".config/sops" ];
   };
 }
diff --git a/profiles/nixos/base.nix b/profiles/nixos/base.nix
index 915001a..87ccd19 100644
--- a/profiles/nixos/base.nix
+++ b/profiles/nixos/base.nix
@@ -22,6 +22,15 @@ in
       impermanence.directories = [
         "/var/lib/nixos"
       ];
+
+      secrets = {
+        enable = true;
+        secrets = {
+          "ssh-keys/deploy-priv" = {
+            path = "/root/.ssh/id_ed25519";
+          };
+        };
+      };
     };
 
     # Localization
diff --git a/profiles/nixos/vm.nix b/profiles/nixos/vm.nix
index 0b3df04..c86dba5 100644
--- a/profiles/nixos/vm.nix
+++ b/profiles/nixos/vm.nix
@@ -29,13 +29,6 @@ in
           zfs rollback -r tank/root@blank
         '';
       };
-      secrets = {
-        enable = true;
-        secrets = {
-          "ssh-keys/deploy/private-key" = { };
-          "ssh-keys/deploy/public-key" = { };
-        };
-      };
       ssh.enable = true;
     };