gpg: apply nixfmt

format

@@ -24,7 +24,6 @@ find . -name '*.nix' \
   ! -path ./modules/manual.nix \
   ! -path ./modules/misc/news.nix \
   ! -path ./modules/programs/bash.nix \
-  ! -path ./modules/programs/gpg.nix \
   ! -path ./modules/programs/ssh.nix \
   ! -path ./modules/programs/zsh.nix \
   ! -path ./modules/services/gpg-agent.nix \

modules/programs/gpg.nix

@@ -6,9 +6,7 @@ let
   cfg = config.programs.gpg;
 
   mkKeyValue = key: value:
-    if isString value
+    if isString value then "${key} ${value}" else optionalString value key;
-    then "${key} ${value}"
-    else optionalString value key;
 
   cfgText = generators.toKeyValue {
     inherit mkKeyValue;
@@ -22,7 +20,7 @@ let
 
   primitiveType = types.oneOf [ types.str types.bool ];
 
-  publicKeyOpts = { config, ...}: {
+  publicKeyOpts = { config, ... }: {
     options = {
       text = mkOption {
         type = types.nullOr types.str;
@@ -40,7 +38,18 @@ let
       };
 
       trust = mkOption {
-        type = types.nullOr (types.enum ["unknown" 1 "never" 2 "marginal" 3 "full" 4 "ultimate" 5]);
+        type = types.nullOr (types.enum [
+          "unknown"
+          1
+          "never"
+          2
+          "marginal"
+          3
+          "full"
+          4
+          "ultimate"
+          5
+        ]);
         default = null;
         apply = v:
           if isString v then
@@ -51,7 +60,8 @@ let
               full = 4;
               ultimate = 5;
             }.${v}
-          else v;
+          else
+            v;
         description = ''
           The amount of trust you have in the key ownership and the care the
           owner puts into signing other keys. The available levels are
@@ -85,13 +95,12 @@ let
     };
 
     config = {
-      source = mkIf (config.text != null)
+      source =
-        (pkgs.writeText "gpg-pubkey" config.text);
+        mkIf (config.text != null) (pkgs.writeText "gpg-pubkey" config.text);
     };
   };
 
-  importTrustBashFunctions =
+  importTrustBashFunctions = let gpg = "${cfg.package}/bin/gpg";
-    let gpg = "${cfg.package}/bin/gpg";
   in ''
     function gpgKeyId() {
       ${gpg} --show-key --with-colons "$1" \
@@ -110,14 +119,13 @@ let
     }
   '';
 
-  keyringFiles =
+  keyringFiles = let
-    let
     gpg = "${cfg.package}/bin/gpg";
 
     importKey = { source, trust, ... }: ''
       ${gpg} --import ${source}
-        ${optionalString (trust != null) ''
+      ${optionalString (trust != null)
-          importTrust "${source}" ${toString trust}''}
+      ''importTrust "${source}" ${toString trust}''}
     '';
 
     importKeys = concatMapStringsSep "\n" importKey cfg.publicKeys;
@@ -135,8 +143,7 @@ let
     fi
   '';
 
-in
+in {
-{
   options.programs.gpg = {
     enable = mkEnableOption "GnuPG";
 
@@ -145,11 +152,13 @@ in
       default = pkgs.gnupg;
       defaultText = literalExpression "pkgs.gnupg";
       example = literalExpression "pkgs.gnupg23";
-      description = "The Gnupg package to use (also used the gpg-agent service).";
+      description =
+        "The Gnupg package to use (also used the gpg-agent service).";
     };
 
     settings = mkOption {
-      type = types.attrsOf (types.either primitiveType (types.listOf types.str));
+      type =
+        types.attrsOf (types.either primitiveType (types.listOf types.str));
       example = literalExpression ''
         {
           no-comments = false;
@@ -167,7 +176,8 @@ in
     };
 
     scdaemonSettings = mkOption {
-      type = types.attrsOf (types.either primitiveType (types.listOf types.str));
+      type =
+        types.attrsOf (types.either primitiveType (types.listOf types.str));
       example = literalExpression ''
         {
           disable-ccid = true;
@@ -182,9 +192,10 @@ in
 
     homedir = mkOption {
       type = types.path;
-      example = literalExpression "\"\${config.xdg.dataHome}/gnupg\"";
+      example = literalExpression ''"''${config.xdg.dataHome}/gnupg"'';
       default = "${config.home.homeDirectory}/.gnupg";
-      defaultText = literalExpression "\"\${config.home.homeDirectory}/.gnupg\"";
+      defaultText =
+        literalExpression ''"''${config.home.homeDirectory}/.gnupg"'';
       description = "Directory to store keychains and configuration.";
     };
 
@@ -236,7 +247,8 @@ in
       personal-cipher-preferences = mkDefault "AES256 AES192 AES";
       personal-digest-preferences = mkDefault "SHA512 SHA384 SHA256";
       personal-compress-preferences = mkDefault "ZLIB BZIP2 ZIP Uncompressed";
-      default-preference-list = mkDefault "SHA512 SHA384 SHA256 AES256 AES192 AES ZLIB BZIP2 ZIP Uncompressed";
+      default-preference-list = mkDefault
+        "SHA512 SHA384 SHA256 AES256 AES192 AES ZLIB BZIP2 ZIP Uncompressed";
       cert-digest-algo = mkDefault "SHA512";
       s2k-digest-algo = mkDefault "SHA512";
       s2k-cipher-algo = mkDefault "AES256";
@@ -258,9 +270,7 @@ in
     };
 
     home.packages = [ cfg.package ];
-    home.sessionVariables = {
+    home.sessionVariables = { GNUPGHOME = cfg.homedir; };
-      GNUPGHOME = cfg.homedir;
-    };
 
     home.file."${cfg.homedir}/gpg.conf".text = cfgText;
 
@@ -268,23 +278,22 @@ in
 
     # Link keyring if keys are not mutable
     home.file."${cfg.homedir}/pubring.kbx" =
-      mkIf (!cfg.mutableKeys && cfg.publicKeys != []) {
+      mkIf (!cfg.mutableKeys && cfg.publicKeys != [ ]) {
         source = "${keyringFiles}/pubring.kbx";
       };
 
-    home.activation = mkIf (cfg.publicKeys != []) {
+    home.activation = mkIf (cfg.publicKeys != [ ]) {
-      importGpgKeys =
+      importGpgKeys = let
-        let
         gpg = "${cfg.package}/bin/gpg";
 
         importKey = { source, trust, ... }:
           # Import mutable keys
-            optional cfg.mutableKeys ''
+          optional cfg.mutableKeys
-              $DRY_RUN_CMD ${gpg} $QUIET_ARG --import ${source}''
+          "$DRY_RUN_CMD ${gpg} $QUIET_ARG --import ${source}"
 
           # Import mutable trust
-            ++ optional (trust != null && cfg.mutableTrust) ''
+          ++ optional (trust != null && cfg.mutableTrust)
-              $DRY_RUN_CMD importTrust "${source}" ${toString trust}'';
+          ''$DRY_RUN_CMD importTrust "${source}" ${toString trust}'';
 
         anyTrust = any (k: k.trust != null) cfg.publicKeys;
 
@@ -292,8 +301,7 @@ in
 
         # If any key/trust should be imported then create the block. Otherwise
         # leave it empty.
-          block = concatStringsSep "\n" (
+        block = concatStringsSep "\n" (optional (importKeys != "") ''
-            optional (importKeys != "") ''
           export GNUPGHOME=${escapeShellArg cfg.homedir}
           if [[ ! -v VERBOSE ]]; then
             QUIET_ARG="--quiet"
@@ -304,9 +312,8 @@ in
           ${importKeys}
           unset GNUPGHOME QUIET_ARG keyId importTrust
         '' ++ optional (!cfg.mutableTrust && anyTrust) ''
-              install -m 0700 ${keyringFiles}/trustdb.gpg "${cfg.homedir}/trustdb.gpg"''
+          install -m 0700 ${keyringFiles}/trustdb.gpg "${cfg.homedir}/trustdb.gpg"'');
-          );
+      in lib.hm.dag.entryAfter [ "linkGeneration" ] block;
-        in lib.hm.dag.entryAfter ["linkGeneration"] block;
     };
   };
 }