From 325823918bb6219edb4445bfb7a1e02889a7f872 Mon Sep 17 00:00:00 2001
From: Infinidoge <infinidoge@inx.moe>
Date: Fri, 5 Jan 2024 00:04:26 -0500
Subject: [PATCH] peripherals/yubikey: init

---
 modules/modules/hardware/form.nix             |  3 +++
 .../modules/hardware/peripherals/yubikey.nix  | 22 +++++++++++++++++++
 users/modules/global/gpg.nix                  |  3 +++
 3 files changed, 28 insertions(+)
 create mode 100644 modules/modules/hardware/peripherals/yubikey.nix

diff --git a/modules/modules/hardware/form.nix b/modules/modules/hardware/form.nix
index 66eb3ec..b175495 100644
--- a/modules/modules/hardware/form.nix
+++ b/modules/modules/hardware/form.nix
@@ -16,6 +16,7 @@ in
   config = mkMerge [
     (mkIf cfg.desktop {
       modules.hardware.audio.enable = mkDefault true;
+      modules.hardware.peripherals.yubikey.enable = true;
       info.stationary = mkDefault true;
     })
 
@@ -23,6 +24,7 @@ in
       modules.hardware = {
         wireless.enable = mkDefault true;
         audio.enable = mkDefault true;
+        peripherals.yubikey.enable = true;
       };
 
       hardware = {
@@ -64,6 +66,7 @@ in
           amdgpu = mkDefault true;
         };
         wireless.wifi.enable = true;
+        peripherals.yubikey.enable = true;
       };
 
       hardware.nvidia.powerManagement.enable = false;
diff --git a/modules/modules/hardware/peripherals/yubikey.nix b/modules/modules/hardware/peripherals/yubikey.nix
new file mode 100644
index 0000000..ad1a443
--- /dev/null
+++ b/modules/modules/hardware/peripherals/yubikey.nix
@@ -0,0 +1,22 @@
+{ config, lib, pkgs, ... }:
+with lib;
+with lib.our;
+let
+  cfg = config.modules.hardware.peripherals.yubikey;
+in
+{
+  options.modules.hardware.peripherals.yubikey = {
+    enable = mkBoolOpt false;
+  };
+  config = mkIf cfg.enable {
+    home.home.packages = with pkgs; [
+      yubikey-manager
+      yubikey-manager-qt
+      yubikey-personalization
+      yubikey-personalization-gui
+      yubico-piv-tool
+    ];
+    services.udev.packages = [ pkgs.yubikey-personalization ];
+    services.pcscd.enable = true;
+  };
+}
diff --git a/users/modules/global/gpg.nix b/users/modules/global/gpg.nix
index ac95666..385e96d 100644
--- a/users/modules/global/gpg.nix
+++ b/users/modules/global/gpg.nix
@@ -2,6 +2,9 @@
   programs.gpg = {
     enable = true;
     homedir = "${config.xdg.dataHome}/gnupg";
+    scdaemonSettings = {
+      disable-ccid = true;
+    };
   };
 
   services.gpg-agent = {