fix CA certs and git keys for wsl

provision/hosts/wsl/configuration.nix

@@ -45,15 +45,10 @@ in
     wget
   ];
 
+  # Add DoD CA certs to trusted source
   security.pki.certificateFiles = [
     ./nipr.crt
   ];
-  environment.variables = {
-    "NIX_SSL_CERT_FILE" = ./nipr.crt;
-  };
-  security.sudo.extraConfig = ''
-    Defaults env_keep += "NIX_SSL_CERT_FILE"
-  '';
 
   # Modules 
   modules = {
@@ -63,9 +58,9 @@ in
     };
     programs = {
       chezmoi.apply = true;
+      git.keys = false;
     };
     system = {
-      ssh.enable = true;
       terminal.enable = true;
     };
   };

provision/modules/programs/git.nix

@@ -7,6 +7,10 @@ in {
       type = with types; bool;
       default = true;
     };
+    keys = lib.mkOption {
+      type = with types; bool;
+      default = true;
+    };
   };
 
   config = lib.mkIf cfg.enable {
@@ -16,7 +20,7 @@ in {
       lazygit # Terminal-based GUI for git, making it easier to use and visualize git repositories.
     ];
 
-    age.secrets."git/github_personal" = {
+    age.secrets."git/github_personal" = lib.mkIf cfg.keys {
       file = ../../secrets/git/github_personal.age;
       owner = "${user}";
       group = "users";