yadunut/clan-core
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

also fix user-password with password-store

Browse Source
This commit is contained in:
Jörg Thalheim
2024-07-21 18:21:37 +02:00
parent a1a36606e4
commit 46fd15a366
2 changed files with 8 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
clanModules/root-password/default.nix
View File

@@ -9,9 +9,9 @@
users.users.root.hashedPasswordFile =
config.clan.core.facts.services.root-password.secret.password-hash.path;
sops.secrets."${config.clan.core.machineName}-password-hash".neededForUsers = lib.mkIf (
config.clan.core.facts.secretStore == "sops"
) true;
sops.secrets = lib.mkIf (config.clan.core.facts.secretStore == "sops") {
"${config.clan.core.machineName}-password-hash".neededForUsers = true;
};
clan.core.facts.services.root-password = {
secret.password = { };

6
clanModules/user-password/default.nix
View File

@@ -23,7 +23,11 @@
users.mutableUsers = false;
users.users.${config.clan.user-password.user}.hashedPasswordFile =
config.clan.core.facts.services.user-password.secret.user-password-hash.path;
sops.secrets."${config.clan.core.machineName}-user-password-hash".neededForUsers = true;
sops.secrets = lib.mkIf (config.clan.core.facts.secretStore == "sops") {
"${config.clan.core.machineName}-user-password-hash".neededForUsers = true;
};
clan.core.facts.services.user-password = {
secret.user-password = { };
secret.user-password-hash = { };