gensokyo-zone/infrastructure
1
0
Fork 0
mirror of https://github.com/gensokyo-zone/infrastructure.git synced 2026-02-10 04:49:19 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

Rework of the personal profile. Whittled down trusted.

Browse source
This commit is contained in:
kat witch 2021-08-29 01:15:00 +01:00
parent cee19f8d3b
commit a55342d0a4
No known key found for this signature in database
GPG key ID: 1B477797DCA5EC72
16 changed files with 338 additions and 45 deletions
Download patch file Download diff file Expand all files Collapse all files

20
config/modules/home/secrets.nix
View file

@ -1,15 +1,33 @@
{ config, lib, ... }:
{ config, lib, nixos, ... }:
with lib;
let
secretType = types.submodule ({ name, ... }: {
options = {
source = mkOption {
type = types.path;
};
text = mkOption {
type = types.str;
};
};
});
in
{
options.kw = {
secrets = mkOption {
type = types.nullOr (types.listOf types.str);
default = null;
};
repoSecrets = mkOption {
type = types.nullOr (types.attrsOf secretType);
default = null;
};
};
config = mkIf (config.kw.secrets != null) {
deploy.tf.variables = genAttrs config.kw.secrets (n: { externalSecret = true; });
kw.repoSecrets = nixos.kw.repoSecrets;
};
}

16
config/modules/nixos/secrets.nix
View file

@ -2,12 +2,28 @@
with lib;
let
secretType = types.submodule ({ name, ... }: {
options = {
source = mkOption {
type = types.path;
};
text = mkOption {
type = types.str;
};
};
});
in
{
options.kw = {
secrets = mkOption {
type = types.nullOr (types.listOf types.str);
default = null;
};
repoSecrets = mkOption {
type = types.nullOr (types.attrsOf secretType);
default = null;
};
};
config = mkIf (config.kw.secrets != null) {
deploy.tf.variables = genAttrs config.kw.secrets (n: { externalSecret = true; });