feat(secrets): simplify agenix-hm on darwin
This commit is contained in:
parent
748483f17d
commit
74068173aa
1 changed files with 9 additions and 26 deletions
|
@ -1,28 +1,11 @@
|
|||
{ lib, ... }:
|
||||
{
|
||||
config,
|
||||
lib,
|
||||
pkgs,
|
||||
...
|
||||
}:
|
||||
let
|
||||
inherit (pkgs.stdenv) isDarwin;
|
||||
in
|
||||
{
|
||||
age = {
|
||||
identityPaths = [ "${config.home.homeDirectory}/.ssh/id_ed25519" ];
|
||||
|
||||
secrets =
|
||||
with builtins;
|
||||
listToAttrs (
|
||||
map (k: {
|
||||
name = lib.removePrefix "home/secrets/" (lib.removeSuffix ".age" k);
|
||||
value = {
|
||||
file = ./../.. + "/${k}";
|
||||
};
|
||||
}) (attrNames (import ./secrets.nix))
|
||||
);
|
||||
|
||||
secretsDir = lib.mkIf isDarwin "/private/tmp/agenix";
|
||||
secretsMountPoint = lib.mkIf isDarwin "/private/tmp/agenix.d";
|
||||
};
|
||||
age.secrets = builtins.listToAttrs (
|
||||
builtins.map (k: {
|
||||
name = lib.removePrefix "home/secrets/" (lib.removeSuffix ".age" k);
|
||||
value = {
|
||||
file = ./../.. + "/${k}";
|
||||
};
|
||||
}) (builtins.attrNames (import ./secrets.nix))
|
||||
);
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue