vars fs: fix

2025-02-19 11:36:08 +01:00
parent d171d99923
commit 90bd9217e3
3 changed files with 5 additions and 1 deletions
--- a/nixosModules/clanCore/vars/default.nix
+++ b/nixosModules/clanCore/vars/default.nix
@@ -16,6 +16,7 @@ in
 {
  imports = [
    ./public/in_repo.nix
+    ./secret/fs.nix
    ./secret/password-store.nix
    ./secret/sops
    ./secret/vm.nix
--- a/nixosModules/clanCore/vars/settings-opts.nix
+++ b/nixosModules/clanCore/vars/settings-opts.nix
@@ -5,6 +5,7 @@
      "sops"
      "password-store"
      "vm"
+      "fs"
      "custom"
    ];
    default = "sops";
--- a/pkgs/clan-cli/clan_cli/vars/secret_modules/fs.py
+++ b/pkgs/clan-cli/clan_cli/vars/secret_modules/fs.py
@@ -1,4 +1,5 @@
 import shutil
+import tempfile
 from pathlib import Path

 from clan_cli.machines.machines import Machine
@@ -13,7 +14,7 @@ class SecretStore(StoreBase):

    def __init__(self, machine: Machine) -> None:
        self.machine = machine
-        self.dir = Path("/run/secrets")
+        self.dir = Path(tempfile.gettempdir()) / "clan_secrets"
        self.dir.mkdir(parents=True, exist_ok=True)

    @property
@@ -42,6 +43,7 @@ class SecretStore(StoreBase):
        if output_dir.exists():
            shutil.rmtree(output_dir)
        shutil.copytree(self.dir, output_dir)
+        shutil.rmtree(self.dir)

    def upload(self, phases: list[str]) -> None:
        msg = "Cannot upload secrets with FS backend"