Handling Secrets in NixOS: An Overview (git-crypt, agenix, sops-nix, and when to use them)
Handling Secrets in NixOS: An Overview (git-crypt, agenix, sops-nix, and when to use them)
There are a number of different approaches available for NixOS users to handle secrets. The most popular tend to be git-crypt, agenix and sops-nix. But which one should you use? To hopefully help you in answering this question for yourself, here is an overview of a few common use cases and what I th...
cross-posted from: https://lemmy.world/post/8269080
Someone on another website asked me whether it makes sense to use
agenixorsops-nixto encrypt secrets for NixOS configurations.I realized that I hadn't seen a good overview article of the different approaches to secret handling in NixOS and when each one is appropriate to use, so I put down all of my knowledge and opinions in this post 🤞