support unencrypted disk provisioning

nix/os/modules/opinionatedDisk.nix

@@ -4,14 +4,18 @@
 with lib;                     
 
 let
-  cfg = config.hardware.encryptedDisk;
+  cfg = config.hardware.opinionatedDisk;
   ownLib = import ../lib/default.nix { };
 in {
-  options.hardware.encryptedDisk = {
-    enable = mkEnableOption "Enable encrypted filesystem layout";
+  options.hardware.opinionatedDisk = {
+    enable = mkEnableOption "Enable opinionated filesystem layout";
     diskId = mkOption {
       type = types.str;
     };
+    encrypted = mkOption {
+      default = true;
+      type = types.bool;
+    };
   };
 
   config = lib.mkIf cfg.enable {
@@ -36,10 +40,10 @@ in {
 
     boot.loader.grub = {
       device = (ownLib.disk.bootGrubDevice cfg.diskId);
-      enableCryptodisk = true;
+      enableCryptodisk = cfg.encrypted;
     };
 
-    boot.initrd.luks.devices = builtins.listToAttrs [
+    boot.initrd.luks.devices = lib.optionalAttrs cfg.encrypted (builtins.listToAttrs [
       {
         name =
           let
@@ -53,6 +57,6 @@ in {
           allowDiscards = true;
         };
       }
-    ];
+    ]);
   };
 }