NixOS Artifacts Agenix

nixos-artifacts-agenix is a backend for nixos-artifacts that uses agenix for age-based encryption of secrets.

New to nixos-artifacts? See Getting Started for the framework basics, or What is NixOS Artifacts for an overview of concepts.

Choose Your Context

— NixOS

Machine-level secrets for system services. Decrypts automatically using host SSH keys.

Get Started → —

— Home Manager

User-level secrets for applications. Requires identity path configuration.

Get Started → —

What This Project Provides

NixOS module — Reads encrypted artifacts as age secrets at runtime
Home Manager module — Manages user-level secrets with identity paths
CLI backend — Serializes/deserializes artifacts using age encryption

Documentation Overview

Getting Started with NixOS
Getting Started with Home Manager
What is nixos-artifacts-agenix — Concepts and comparison
Deep Dive
- NixOS configuration — Full module reference
- Home Manager configuration — Full module reference
Directory Layout — Storage structure
Key Management — Key types, rotation, troubleshooting
Options
- NixOS
- Home Manager