From 1b60568c2c5022b72722be8e06f071bb4494d25c Mon Sep 17 00:00:00 2001
From: sajenim <its.jassy@pm.me>
Date: Mon, 1 Apr 2024 10:00:19 +0800
Subject: [PATCH] set storage mode for rekey

---
 nixos/common/global/age.nix | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/nixos/common/global/age.nix b/nixos/common/global/age.nix
index a81202e..c73d109 100644
--- a/nixos/common/global/age.nix
+++ b/nixos/common/global/age.nix
@@ -19,6 +19,8 @@ in
     rekey.hostPubkey = ../../${hostname}/ssh_host_ed25519_key.pub;
     # Where we store the rekeyed secrets
     rekey.cacheDir = "/var/tmp/agenix-rekey/\"$UID\"";
+    # All rekeyed secrets for each host will be collected in a derivation which copies them to the nix store when it is built
+    rekey.storageMode = "derivation";
   };
   # Required to persist `/var/tmp/agenix-rekey`
   environment.persistence."/persist".directories = [