maralorn/nixos-config
1
0
Fork 0
Code Wiki Activity

Fix secretpaths

Browse source
This commit is contained in:
Malte Brandy 2021-07-05 00:53:03 +02:00
parent 547b044e02
commit f14a0b4be6
No known key found for this signature in database
GPG key ID: 226A2D41EF5378C9
1 changed files with 6 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
private.nix
View file

@ -1,7 +1,10 @@
let
persistPath = "/disk/persist/maralorn";
hasPersistDisk = builtins.pathExists persistPath;
privateExists = builtins.pathExists private/submodule-is-checked-out;
explicitUsePrivate = builtins.getEnv "WITH_SECRETS" == "true";
explicitNotUsePrivate = builtins.getEnv "WITH_SECRETS" == "false";
var = "WITH_SECRETS";
explicitUsePrivate = builtins.getEnv var == "true";
explicitNotUsePrivate = builtins.getEnv var == "false";
usePrivate = !explicitNotUsePrivate && (explicitUsePrivate || privateExists);
withSecrets = builtins.trace
(if usePrivate then
@ -13,7 +16,7 @@ in
{
inherit withSecrets;
privatePath = name:
let path = "/etc/nixos/private/${name}";
let path = "${if hasPersistDisk then persistPath else "/home/maralorn"}/git/config/private/${name}";
in if withSecrets then assert builtins.pathExists (./private + "/${name}"); path else path;
privateValue = default: name:
if withSecrets then import (./private + "/${name}.nix") else default;