configure Password via Colmena

configs/container_config.nix

@@ -1,9 +1,18 @@
-{ modulesPath, pkgs, lib, inputs, ... }: {
+{ modulesPath, pkgs, lib, inputs, config, ... }: {
   imports = [
     (modulesPath + "/virtualisation/proxmox-lxc.nix")
     inputs.sops-nix.nixosModules.sops
   ];
 
+  # set up secret key
+  sops = {
+    age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
+    defaultSopsFile = ../secrets/all/secrets.yaml;
+    secrets.initial_password_clara = {
+      neededForUsers = true;
+    };
+  };
+
   time.timeZone = "Europe/Berlin";
 
   # we want at least a possibility to download stuff, monitor activity and sudo
@@ -25,7 +34,7 @@
   # default user with sudo
   users.users.clara = {
     isNormalUser = true;
-    initialPassword = "123456";
+    hashedPasswordFile = config.sops.secrets.initial_password_clara.path;
     extraGroups = [ "sudo" "wheel" ];
     shell = pkgs.zsh;
   };