add gpg auto-unlock

2022-08-08 21:16:45 -03:00 · 2022-08-08 21:16:45 -03:00 · c5e919a2dc
commit c5e919a2dc
parent a8a8be5a59
4 changed files with 75 additions and 0 deletions
--- a/user/gpg.nix
+++ b/user/gpg.nix
@ -0,0 +1,42 @@
+{ config, pkgs, lib, ... }: {
+  config = {
+    services.gpg-agent = {
+      enable = true;
+      defaultCacheTtl = 604800;
+      maxCacheTtl = 604800;
+      pinentryFlavor = "gtk2";
+      extraConfig = ''
+        allow-preset-passphrase
+        allow-loopback-pinentry
+        pinentry-mode loopback
+      '';
+    };
+    systemd.user.services = {
+      gpg_unlock = {
+        Unit = {
+          Description = "Unlock gpg keyring";
+          PartOf = [ "graphical-session.target" ];
+          After = [ "graphical-session.target" ];
+        };
+        Service = {
+          ExecStart = "${pkgs._gpg-unlock}/bin/_gpg-unlock";
+        };
+      };
+    };
+    systemd.user.timers = {
+      gpg_unlock = {
+        Unit = {
+          Description = "Unlock gpg keyring";
+          PartOf = [ "graphical-session.target" ];
+          After = [ "graphical-session.target" ];
+        };
+        Timer = {
+          OnBootSec = "30";
+          OnUnitActiveSec = "30";
+          Unit = "gpg_unlock.service";
+        };
+      };
+    };
+
+  };
+}