pkg/sops-nix
1
0
Fork 0
mirror of https://github.com/Mic92/sops-nix.git synced 2026-02-22 21:05:44 +08:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

feat(nix-darwin): add requirePcscd option for consistency

Browse source 
Add the requirePcscd option to the nix-darwin module for consistency
with NixOS and home-manager modules. On macOS, CryptoTokenKit typically
handles YubiKey communication automatically, but this option is provided
for API consistency.
This commit is contained in:
Ryota 2026-01-17 02:15:56 +00:00
parent 33119dd52c
commit b96d73924b
No known key found for this signature in database
GPG key ID: 5370567CADB11F6C
1 changed files with 16 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

16
modules/nix-darwin/default.nix
View file

@ -316,6 +316,22 @@ in
List of plugins to use for sops decryption. List of plugins to use for sops decryption.
''; '';
}; };
# Options for hardware key support (YubiKey, FIDO2, etc.)
requirePcscd = lib.mkOption {
type = lib.types.bool;
default = false;
description = ''
Whether pcscd (PC/SC Smart Card Daemon) is required for age decryption.
Enable this when using hardware key plugins like age-plugin-yubikey
or age-plugin-fido2-hmac.
On macOS, the system's built-in smart card services (CryptoTokenKit)
typically handle YubiKey communication automatically. This option
is provided for consistency with Linux but may not require additional
configuration on macOS.
'';
};
}; };
gnupg = { gnupg = {