From acbbb8a37a3fb3650556866fc905279de1df0fc0 Mon Sep 17 00:00:00 2001
From: Zuckerberg <zuckerberg@neet.dev>
Date: Sat, 25 Mar 2023 15:49:07 -0600
Subject: [PATCH] encrypted samba vault with gocryptfs

---
 common/pc/mount-samba.nix | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/common/pc/mount-samba.nix b/common/pc/mount-samba.nix
index ae44651..db7f2ba 100644
--- a/common/pc/mount-samba.nix
+++ b/common/pc/mount-samba.nix
@@ -1,6 +1,6 @@
 # mounts the samba share on s0 over tailscale
 
-{ config, lib, ... }:
+{ config, lib, pkgs, ... }:
 
 let
   cfg = config.services.mount-samba;
@@ -32,5 +32,11 @@ in {
     };
 
     age.secrets.smb-secrets.file = ../../secrets/smb-secrets.age;
+
+    # Encrypted Vault
+    environment.shellAliases = {
+      vault_unlock = "${pkgs.gocryptfs}/bin/gocryptfs /mnt/private/.vault/ /mnt/vault/";
+      vault_lock = "umount /mnt/vault/";
+    };
   };
 }
\ No newline at end of file