[water7] feat: Add sops + age secret handling, still wip

I'm kinda lost, but we'll get there lol soon forgejo secrets will be fixed!

Signed-off-by: SindreKjelsrud <sindre@kjelsrud.dev>

hosts/water7/configuration.nix

@@ -7,7 +7,8 @@
 {
   imports = [
     ./hardware-configuration.nix
-    inputs.home-manager.nixosModules.default	
+    inputs.home-manager.nixosModules.default
+    inputs.sops-nix.nixosModules.sops
   ];
 
 	nix.settings.experimental-features = [ "nix-command" "flakes" ];
@@ -95,7 +96,12 @@
 	home-manager = {
 		extraSpecialArgs = { inherit inputs; };
 		users = {
-			"sid" = import ./home.nix;
+			sid = {
+  			imports = [
+  			  ./home.nix
+  				inputs.sops-nix.homeManagerModules.sops
+  			];
+			};
 		};
 	};
 

hosts/water7/home.nix

@@ -1,4 +1,4 @@
-{ config, pkgs, inputs, ... }:
+{ config, pkgs, inputs, lib, ... }:
 
 {
   # Home Manager needs a bit of information about you and the paths it should
@@ -22,8 +22,16 @@
     pinentry-curses
     hyprpaper
     inputs.zen-browser.packages."x86_64-linux".default
+    sops
+    age
   ];
 
+  sops = {
+    defaultSopsFile = "../../.sops.yaml";
+    defaultSopsFormat = "yaml";
+    age.keyFile = "/home/sid/.config/sops/age/keys.txt";
+  };
+
   # Home Manager is pretty good at managing dotfiles. The primary way to manage
   # plain files is through 'home.file'.
   home.file = {