yadunut/clan-core
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge pull request 'clan-cli: vars: add the owner and group options on files' (#2255) from lopter/clan-core:lo-sops-ownership into main

Browse Source 
Reviewed-on: https://git.clan.lol/clan/clan-core/pulls/2255
This commit is contained in:
Mic92
2024-10-23 09:05:53 +00:00
parent 004cd31857 f540ab91a1
commit 4c4d4d07f0
4 changed files with 15 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
nixosModules/clanCore/vars/interface.nix
View File

@@ -119,6 +119,14 @@ in
''; '';
type = str; type = str;
}; };
owner = {
description = "The user name or id that will own the secret file. This option is currently only implemented for sops";
default = "root";
};
group = {
description = "The group name or id that will own the secret file. This option is currently only implemented for sops";
default = "root";
};
value = value =
{ {
description = '' description = ''

1
nixosModules/clanCore/vars/secret/sops/default.nix
View File

@@ -40,6 +40,7 @@ in
flip map vars (secret: { flip map vars (secret: {
name = "vars/${secret.generator}/${secret.name}"; name = "vars/${secret.generator}/${secret.name}";
value = { value = {
inherit (secret) owner group;
sopsFile = secretPath secret; sopsFile = secretPath secret;
format = "binary"; format = "binary";
}; };

3
nixosModules/clanCore/vars/secret/sops/funcs.nix
View File

@@ -21,10 +21,11 @@ in
flip mapAttrsToList vars.generators ( flip mapAttrsToList vars.generators (
gen_name: generator: gen_name: generator:
flip mapAttrsToList (relevantFiles generator) ( flip mapAttrsToList (relevantFiles generator) (
fname: _file: { fname: file: {
name = fname; name = fname;
generator = gen_name; generator = gen_name;
inherit (generator) share; inherit (generator) share;
inherit (file) owner group;
} }
) )
) )

5
pkgs/clan-cli/clan_cli/secrets/__init__.py
View File

@@ -30,7 +30,10 @@ def register_parser(parser: argparse.ArgumentParser) -> None:
import_sops_parser = subparser.add_parser("import-sops", help="import a sops file") import_sops_parser = subparser.add_parser("import-sops", help="import a sops file")
register_import_sops_parser(import_sops_parser) register_import_sops_parser(import_sops_parser)
parser_key = subparser.add_parser("key", help="create and show age keys") parser_key = subparser.add_parser(
"key",
help="create, show, or update the key for the clan",
)
register_key_parser(parser_key) register_key_parser(parser_key)
register_secrets_parser(subparser) register_secrets_parser(subparser)