From f268ce005b0bb654c457d6de44b5e242d6891b1f Mon Sep 17 00:00:00 2001
From: kalipso <kalipso@c3d2.de>
Date: Wed, 26 Jun 2024 12:26:25 +0200
Subject: [PATCH] [durruti] fix sops key ownership

---
 machines/durruti/configuration.nix | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/machines/durruti/configuration.nix b/machines/durruti/configuration.nix
index 6e0dc13f..b635e051 100644
--- a/machines/durruti/configuration.nix
+++ b/machines/durruti/configuration.nix
@@ -4,8 +4,16 @@ with lib;
 
 {
   sops.defaultSopsFile = ./secrets.yaml;
-  sops.secrets.ep3bsDb = {};
-  sops.secrets.ep3bsMail = {};
+
+  sops.secrets.ep3bsDb = {
+    owner = config.service.ep3-bs.user;
+    key = "ep3bsDb";
+  };
+
+  sops.secrets.ep3bsMail = {
+    owner = config.service.ep3-bs.user;
+    key = "ep3bsMail";
+  };
 
   boot.isContainer = true;
   networking = {