add option to extend path for generator

2023-11-30 13:01:38 +01:00
parent 7d3801a916
commit 373fc83160
5 changed files with 56 additions and 30 deletions
--- a/nixosModules/clanCore/secrets/sops.nix
+++ b/nixosModules/clanCore/secrets/sops.nix
@@ -32,7 +32,14 @@ in
        import json
        import sys
        from clan_cli.secrets.sops_generate import generate_secrets_from_nix
-        args = json.loads(${builtins.toJSON (builtins.toJSON { machine_name = config.clanCore.machineName; secret_submodules = config.clanCore.secrets; })})
+        args = json.loads(${builtins.toJSON (builtins.toJSON {
+          machine_name = config.clanCore.machineName;
+          secret_submodules = lib.mapAttrs (_name: secret: {
+            secrets = builtins.attrNames secret.secrets;
+            facts = lib.mapAttrs (_: secret: secret.path) secret.facts;
+            generator = secret.generator.finalScript;
+          }) config.clanCore.secrets;
+        })})
        generate_secrets_from_nix(**args)
      '';
      uploadSecrets = pkgs.writeScript "upload-secrets" ''