yadunut/clan-core
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

add option to extend path for generator

Browse Source
This commit is contained in:
Jörg Thalheim
2023-11-30 13:01:38 +01:00
parent 3ba9f441df
commit f208bc0f22
5 changed files with 56 additions and 30 deletions
Download Patch File Download Diff File Expand all files Collapse all files

38
nixosModules/clanCore/secrets/default.nix
View File

@@ -46,14 +46,36 @@
'';
};
generator = lib.mkOption {
type = lib.types.str;
description = ''
Script to generate the secret.
The script will be called with the following variables:
- facts: path to a directory where facts can be stored
- secrets: path to a directory where secrets can be stored
The script is expected to generate all secrets and facts defined in the module.
'';
type = lib.types.submodule ({ config, ... }: {
options = {
path = lib.mkOption {
type = lib.types.listOf (lib.types.either lib.types.path lib.types.package);
default = [ ];
description = ''
Extra paths to add to the PATH environment variable when running the generator.
'';
};
script = lib.mkOption {
type = lib.types.str;
description = ''
Script to generate the secret.
The script will be called with the following variables:
- facts: path to a directory where facts can be stored
- secrets: path to a directory where secrets can be stored
The script is expected to generate all secrets and facts defined in the module.
'';
};
finalScript = lib.mkOption {
type = lib.types.str;
readOnly = true;
internal = true;
default = ''
export PATH="${lib.makeBinPath config.path}"
${config.script}
'';
};
};
});
};
secrets =
let