automatically import secrets into nixos

2023-08-23 11:58:12 +02:00
parent ed1d28f20b
commit 63bb9395fd
17 changed files with 196 additions and 7 deletions
--- a/checks/secrets/clan-secrets
+++ b/checks/secrets/clan-secrets
@@ -0,0 +1,6 @@
+#!/usr/bin/env bash
+
+set -eux -o pipefail
+SCRIPT_DIR=$( cd -- "$( dirname -- "${BASH_SOURCE[0]}" )" &> /dev/null && pwd )
+export SOPS_AGE_KEY_FILE="${SCRIPT_DIR}/key.age"
+nix run .# -- secrets "$@"