Prepare for hashicorp vault

modules/core.nix

@@ -23,13 +23,16 @@
                 enable = lib.mkEnableOption "enable crow";
                 home.enable = lib.mkEnableOption "enable home configuration";
             };
+            vault = {
+                enable = lib.mkEnableOption "enable vault";
+            };
         };
     };
     
     config = {
         system.stateVersion = "24.05";
         time.timeZone = "America/New_York";
-	nix.settings.experimental-features = ["flakes" "nix-command"];
+        nix.settings.experimental-features = ["flakes" "nix-command"];
 
         users = {
             enable = lib.mkDefault true;
@@ -37,6 +40,9 @@
                 enable = lib.mkDefault true;
                 home.enable = lib.mkDefault true;
             };
+            vault = {
+                enable = lib.mkDefault false;
+            };
         };
 
         fonts.packages = with pkgs; [

modules/users/default.nix

@@ -1,6 +1,7 @@
 {config, ...}: {
     imports = [
         ./crow
+        ./vault
     ];
 
     config.home-manager = {

modules/users/vault/default.nix

@@ -0,0 +1,5 @@
+{lib, config, ...}: {
+    imports = [
+        ./user.nix
+    ];
+}

modules/users/vault/user.nix

@@ -0,0 +1,7 @@
+{ lib, config, ...}: {
+    config.users.users.vault = lib.mkIf config.users.vault.enable {
+        isNormalUser = true;
+        initialPassword = "changeme";
+        extraGroups = [];
+    };
+}

modules/vault/default.nix

@@ -0,0 +1,11 @@
+{ inputs, pkgs, lib, config, ...}: {
+    
+    options.vault.enable = lib.mkEnableOption "enables hashicorp vault services";
+
+    config = {
+        services.vault = lib.mkIf config.vault.enable {
+            enable = true;
+            address = "localhost:8200";
+        };
+    };
+}