From c1ec0f5e1db30adc984a3d1669928b86ea70d482 Mon Sep 17 00:00:00 2001
From: Danilo Reyes <CaptainJawZ@protonmail.com>
Date: Wed, 20 Aug 2025 14:28:57 -0600
Subject: [PATCH] encrypting drives

---
 hosts/server/hardware-configuration.nix      | 16 ++++++----------
 hosts/workstation/hardware-configuration.nix |  4 ++--
 2 files changed, 8 insertions(+), 12 deletions(-)

diff --git a/hosts/server/hardware-configuration.nix b/hosts/server/hardware-configuration.nix
index 1a30d4e..2d6d934 100644
--- a/hosts/server/hardware-configuration.nix
+++ b/hosts/server/hardware-configuration.nix
@@ -16,35 +16,31 @@
       };
     };
     initrd = {
-      secrets."/keyfile" = /etc/keyfile;
+      # secrets."/keyfile" = /etc/keyfile;
       luks.devices = {
         nvme = {
           device = "/dev/disk/by-uuid/af72f45c-cf7c-4e7d-8eab-2a95ab754921";
-          keyFile = "/keyfile";
+          # keyFile = "/keyfile";
           preLVM = true;
         };
-        # WHEN MIGRATING THE DISKS
-        # remember to delete this keyfile
-        # and replace it with the one on miniserver
-        # or move the keyfile
         disk1 = {
           device = "/dev/disk/by-uuid/a9b0f346-7e38-40a6-baf6-3ad80cafc842";
-          keyFile = "/keyfile";
+          # keyFile = "/keyfile";
           preLVM = true;
         };
         disk2 = {
           device = "/dev/disk/by-uuid/0ed12b83-4c56-4ba8-b4ea-75a9e927d771";
-          keyFile = "/keyfile";
+          # keyFile = "/keyfile";
           preLVM = true;
         };
         disk3 = {
           device = "/dev/disk/by-uuid/8cd728f6-0d5b-4cea-8f7d-01aad11192c1";
-          keyFile = "/keyfile";
+          # keyFile = "/keyfile";
           preLVM = true;
         };
         disk4 = {
           device = "/dev/disk/by-uuid/7fcac808-491f-4846-a4a9-a34cc77cb43d";
-          keyFile = "/keyfile";
+          # keyFile = "/keyfile";
           preLVM = true;
         };
       };
diff --git a/hosts/workstation/hardware-configuration.nix b/hosts/workstation/hardware-configuration.nix
index c525cc8..838d116 100644
--- a/hosts/workstation/hardware-configuration.nix
+++ b/hosts/workstation/hardware-configuration.nix
@@ -75,7 +75,7 @@ in
     };
     initrd = {
       verbose = false;
-      secrets."/keyfile" = /etc/keyfile;
+      # secrets."/keyfile" = /etc/keyfile;
       availableKernelModules = [
         "xhci_pci"
         "ahci"
@@ -88,7 +88,7 @@ in
         let
           decryptLuks = uuid: {
             device = getUUID uuid;
-            keyFile = "/keyfile";
+            # keyFile = "/keyfile";
             preLVM = true;
           };
         in