From b8f11db00e56bdbe72d28227c389a09e486f2217 Mon Sep 17 00:00:00 2001
From: Alan Pearce
Date: Thu, 23 May 2019 10:54:02 +0200
Subject: Split nitrokey and GnuPG setup

---
 modules/programs/gnupg.nix | 40 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 40 insertions(+)
 create mode 100644 modules/programs/gnupg.nix

(limited to 'modules/programs')

diff --git a/modules/programs/gnupg.nix b/modules/programs/gnupg.nix
new file mode 100644
index 0000000..af50078
--- /dev/null
+++ b/modules/programs/gnupg.nix
@@ -0,0 +1,40 @@
+{ config, pkgs, lib, ... }:
+
+{ programs.ssh.startAgent = false;
+
+  programs.gnupg = {
+    agent = {
+      enable = true;
+      enableSSHSupport = true;
+    };
+    dirmngr.enable = true;
+  };
+
+  services.keybase.enable = true;
+  services.kbfs.enable = true;
+  environment.variables.NIX_SKIP_KEYBASE_CHECKS = "1";
+
+  services.tor = {
+    enable = true;
+    client = {
+      enable = true;
+      socksListenAddress = "9050 IPv6Traffic";
+    };
+    torsocks = {
+      enable = true;
+    };
+  };
+  systemd.services.tor.wantedBy = lib.mkForce [];
+  systemd.timers.tor = {
+    description = "Delayed startup of Tor";
+    wantedBy = [ "timers.target" ];
+    timerConfig = {
+      OnActiveSec = "1 min";
+    };
+  };
+
+  environment.systemPackages = with pkgs; [
+    gnupg
+    keybase-gui
+  ];
+}
-- 
cgit 1.4.1