feat(secrets): simplify agenix-hm on darwin
This commit is contained in:
parent
748483f17d
commit
74068173aa
1 changed files with 9 additions and 26 deletions
|
@ -1,28 +1,11 @@
|
||||||
|
{ lib, ... }:
|
||||||
{
|
{
|
||||||
config,
|
age.secrets = builtins.listToAttrs (
|
||||||
lib,
|
builtins.map (k: {
|
||||||
pkgs,
|
|
||||||
...
|
|
||||||
}:
|
|
||||||
let
|
|
||||||
inherit (pkgs.stdenv) isDarwin;
|
|
||||||
in
|
|
||||||
{
|
|
||||||
age = {
|
|
||||||
identityPaths = [ "${config.home.homeDirectory}/.ssh/id_ed25519" ];
|
|
||||||
|
|
||||||
secrets =
|
|
||||||
with builtins;
|
|
||||||
listToAttrs (
|
|
||||||
map (k: {
|
|
||||||
name = lib.removePrefix "home/secrets/" (lib.removeSuffix ".age" k);
|
name = lib.removePrefix "home/secrets/" (lib.removeSuffix ".age" k);
|
||||||
value = {
|
value = {
|
||||||
file = ./../.. + "/${k}";
|
file = ./../.. + "/${k}";
|
||||||
};
|
};
|
||||||
}) (attrNames (import ./secrets.nix))
|
}) (builtins.attrNames (import ./secrets.nix))
|
||||||
);
|
);
|
||||||
|
|
||||||
secretsDir = lib.mkIf isDarwin "/private/tmp/agenix";
|
|
||||||
secretsMountPoint = lib.mkIf isDarwin "/private/tmp/agenix.d";
|
|
||||||
};
|
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue