Configure SSH to use 1Password's ssh-agent

Author: ethnt

modules/profiles/home/gnupg/default.nix

@@ -45,8 +45,8 @@
   home.file.".gnupg/gpg-agent.conf".source = ./gpg-agent.conf;
 
   # This has to be set here, even though gpg-agent in nix-darwin should be able to set it
-  home.sessionVariables.SSH_AUTH_SOCK =
-    "$(${lib.getExe' pkgs.gnupg "gpgconf"} --list-dirs agent-ssh-socket)";
+  # home.sessionVariables.SSH_AUTH_SOCK =
+  #   "$(${lib.getExe' pkgs.gnupg "gpgconf"} --list-dirs agent-ssh-socket)";
 
   programs.fish.functions = let
     gpg = lib.getExe' config.programs.gpg.package "gpg";

modules/profiles/home/ssh/default.nix

@@ -0,0 +1,19 @@
+{
+  # programs.ssh = {
+  #   enable = true;
+  #   extraConfig = ''
+  #     IdentityAgent "~/Library/Group Containers/2BUA8C4S2C.com.1password/t/agent.sock"
+  #   '';
+  # };
+
+  xdg.configFile."../.ssh/config".text = ''
+    Host *
+      IdentityAgent "~/Library/Group Containers/2BUA8C4S2C.com.1password/t/agent.sock"
+  '';
+
+  xdg.configFile."1Password/ssh/agent.toml".text = ''
+    [[ssh-keys]]
+    item = "Personal"
+    vault = "Private"
+  '';
+}

modules/suites/home.nix

@@ -16,6 +16,7 @@ with profiles;
     paths.default
     navi.default
     rippkgs.default
+    ssh.default
     starship.default
     tmux.default
     tools.common