From 7822c8684eeb8091c9ca2ce76a38b0244fcc4899 Mon Sep 17 00:00:00 2001
From: Kj Tsanaktsidis <kjtsanaktsidis@groq.com>
Date: Fri, 12 Sep 2025 18:36:29 +1000
Subject: some gpg

---
 kj-laptop01/home.nix | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

(limited to 'kj-laptop01/home.nix')

diff --git a/kj-laptop01/home.nix b/kj-laptop01/home.nix
index 0ece086..3e99f05 100644
--- a/kj-laptop01/home.nix
+++ b/kj-laptop01/home.nix
@@ -10,6 +10,14 @@
 
   programs.home-manager.enable = true;
 
+  # Install packages
+  home.packages = with pkgs; [
+    htop
+    git
+    zellij
+    tmux
+  ];
+
   # Configure sops for home-manager
   sops = {
     age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
@@ -18,6 +26,10 @@
       kj_id_ed25519 = {
         path = "${config.home.homeDirectory}/.ssh/id_ed25519";
       };
+      kj_gpg_private_key = {
+        path = "${config.home.homeDirectory}/.gnupg/private-key.asc";
+        mode = "0600";
+      };
     };
   };
 
@@ -92,4 +104,20 @@
     enable = true;
     enableZshIntegration = true;
   };
+
+  programs.gpg = {
+    enable = true;
+    homedir = "${config.home.homeDirectory}/.gnupg";
+  };
+  services.gpg-agent = {
+    enable = true;
+    defaultCacheTtl = 1800;
+    maxCacheTtl = 7200;
+    pinentryFlavor = "curses";
+  };
+  home.activation.importGpgPrivateKey = config.lib.dag.entryAfter ["writeBoundary"] ''
+    export GNUPGHOME="${config.programs.gpg.homedir}"
+    $DRY_RUN_CMD ${pkgs.gnupg}/bin/gpg --batch --import "${config.sops.secrets.kj_gpg_private_key.path}"
+    echo "GPG private key imported from sops secret"
+  '';
 }
-- 
cgit v1.2.3