mirror of
https://github.com/gensokyo-zone/infrastructure.git
synced 2026-02-10 04:49:19 -08:00
44 lines
907 B
Nix
44 lines
907 B
Nix
{ config, lib, meta, ... }:
|
|
|
|
with lib;
|
|
|
|
let
|
|
secretType = types.submodule ({ name, ... }: {
|
|
options = {
|
|
path = mkOption { type = types.str; };
|
|
field = mkOption {
|
|
type = types.str;
|
|
default = "";
|
|
};
|
|
};
|
|
});
|
|
repoSecretType = types.submodule ({ name, ... }: {
|
|
options = {
|
|
source = mkOption {
|
|
type = types.path;
|
|
};
|
|
text = mkOption {
|
|
type = types.str;
|
|
};
|
|
};
|
|
});
|
|
mcfg = meta.kw.secrets;
|
|
cfg = config.kw.secrets;
|
|
in
|
|
{
|
|
options.kw = {
|
|
secrets = {
|
|
variables = mkOption {
|
|
type = types.attrsOf secretType;
|
|
default = { };
|
|
};
|
|
repo = mkOption {
|
|
type = types.attrsOf repoSecretType;
|
|
default = { };
|
|
};
|
|
};
|
|
};
|
|
config = {
|
|
kw.secrets.variables = lib.mkMerge (mapAttrsToList (username: user: user.kw.secrets.variables) config.home-manager.users);
|
|
};
|
|
}
|