testing out sops a lil bit more

.sops.yaml

@@ -4,6 +4,6 @@ keys:
 creation_rules:
   - path_regex: secrets/[^/]+\.(yaml|json|env|ini)$
     key_groups:
-      - age:
+      - pgp:
         - *cry
         - *idk

hosts/lolcathost/default.nix

@@ -1,4 +1,9 @@
-{...}: {
+{
+  root,
+  config,
+  pkgs,
+  ...
+}: {
   imports = [
     ./hardware.nix
   ];
@@ -17,6 +22,38 @@
     libinput.enable = true;
   };
 
+  # users = {
+  #   users = {
+  #     # literally me fr (personal account)
+  #     ilovecry = {
+  #       isNormalUser = true;
+  #       extraGroups = ["wheel"];
+  #       shell = pkgs.bash;
+  #       # hashedPasswordFile = config.sops.secrets.ilovecryPassword.path;
+  #     };
+  #   };
+  # };
+
+  # sops = {
+  #   defaultSopsFile = /${root}/secrets/user.yaml;
+  #   # age.sshKeyPaths = ["/etc/ssh/ssh_host_ed25519_key"];
+  #   secrets = {
+  #     "hashedPassword" = {
+  #       neededForUsers = true;
+  #     };
+  #     "ilovecryPassword" = {
+  #       neededForUsers = true;
+  #     };
+  #     # "gitlab/oauth_token" = {};
+  #     # "tailscale/authkey" = {};
+  #     # "guest_accounts.json" = {};
+  #     # "npmrc" = {
+  #     #   owner = "youruser";
+  #     #   path = "/home/youruser/.npmrc";
+  #     # };
+  #   };
+  # };
+
   # DO NOT MODIFY
   system.stateVersion = "24.05"; # Did you read the comment?
 }