gensokyo-zone/infrastructure
1
0
Fork 0
mirror of https://github.com/gensokyo-zone/infrastructure.git synced 2026-02-09 04:19:19 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

Flakes: Trusted separation

Browse source
This commit is contained in:
kat witch 2021-11-21 22:32:02 +00:00 committed by kat
parent 924dbf67c3
commit 08676fb81d
Signed by: kat
GPG key ID: 465E64DECEA8CF0F
7 changed files with 720 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

25
inputs.nix
View file

@ -1,9 +1,18 @@
(import (
let
lock = builtins.fromJSON (builtins.readFile ./flake.lock);
in fetchTarball {
let
lock = builtins.fromJSON (builtins.readFile ./flake.lock);
lockTrusted = builtins.fromJSON (builtins.readFile ./trusted/flake.lock);
flakeCompat = fetchTarball {
url = "https://github.com/edolstra/flake-compat/archive/${lock.nodes.flake-compat.locked.rev}.tar.gz";
sha256 = lock.nodes.flake-compat.locked.narHash; }
) {
src = ./.;
}).defaultNix.inputs
sha256 = lock.nodes.flake-compat.locked.narHash;
};
trusted = import flakeCompat {
src = ./trusted;
};
nixfiles = import flakeCompat {
src = ./.;
};
in nixfiles.defaultNix.inputs // {
trusted = if builtins.getEnv "TRUSTED" != ""
then trusted.defaultNix.inputs.trusted
else ./empty;
}