clan-core

Author	SHA1	Message	Date
DavHau	90a504936c	checks: add check for rendering docs	2024-03-27 16:59:42 +07:00
lassulus	8d34c51df2	refactor secrets & facts -> secret_facts & public_facts	2024-03-23 05:46:54 +01:00
Jörg Thalheim	ede4d3f6e5	re-format with nixfmt	2024-03-17 19:48:49 +01:00
Jörg Thalheim	7fb05130c9	don't use impure builtins.storePath	2024-03-17 18:10:23 +01:00
Jörg Thalheim	789bb82835	change facts path to be reachable as a store path	2024-03-17 18:10:23 +01:00
Jörg Thalheim	406033b69a	fix openssh secrets change facts path to be the full path sshd: fixup store path	2024-03-13 14:59:46 +01:00
Jörg Thalheim	c52cffca37	allow fact-only secrets	2024-03-13 11:08:36 +01:00
a-kenji	ee41416697	secrets: fix typo	2024-03-05 11:59:55 +01:00
lassulus	9880dede41	clan-cli: add interactive secrets/fact generation	2024-03-03 04:06:18 +01:00
lassulus	f47ed3b11c	clanCore secrets: rename toplevel secret to service	2024-03-02 11:43:20 +01:00
Jörg Thalheim	023b9f4257	add option to set defaultGroups for secrets	2024-02-16 17:26:20 +01:00
lassulus	5ed4881687	vms: use vm fact/secret-store	2024-02-15 10:41:25 +01:00
lassulus	140973270a	secrets: add sandbox user	2024-01-30 12:11:05 +01:00
lassulus	ce28342ba3	secret generators: run with set -efu -o pipefail	2024-01-24 15:49:12 +01:00
lassulus	1d4e533438	move secret stores into clan_cli codebase	2024-01-24 15:49:12 +01:00
Jörg Thalheim	b5a12bc4ba	move python code in nixos Module to external file	2024-01-23 15:04:40 +01:00
lassulus	ed6eb50f7d	WIP: clan-cli secrets: add secret_store as python class	2024-01-23 15:04:40 +01:00
Jörg Thalheim	f208bc0f22	add option to extend path for generator	2023-11-30 14:15:40 +01:00
a-kenji	deefddd3c2	clan-core/secrets: escape facts trailing newline	2023-11-29 13:29:20 +01:00
Jörg Thalheim	e436fef13d	allow to persist zerotier identities/ips/meshnames for non-controller	2023-11-10 11:56:54 +01:00
lassulus	efafe6f0e3	clan-cli secrets: flake_name -> flake_dir	2023-11-05 16:58:48 +01:00
Qubasa	8ff80b025c	Fixing a multitude of tests	2023-10-27 19:21:50 +02:00
Qubasa	adffdc14f6	Added repro_env_break debugging command. This spawn a terminal inside the temp home folder with the same environment as the python test	2023-10-27 19:20:17 +02:00
DavHau	bb51a9916b	secrets: fix: don't generate secrets if no secrets are defined	2023-10-06 18:34:49 +02:00
lassulus	599209b7f6	secrets.password-store: mkdir correct fact folder	2023-10-05 20:22:30 +02:00
lassulus	130ca378dc	password-store: generate each secret in tmpdir	2023-10-05 19:14:10 +02:00
lassulus	528d0ee45a	secrets upload: skip on exit 23, cleanup	2023-10-04 21:29:19 +02:00
lassulus	dc82712a7b	secrets.password-store: ignore ssh errors	2023-10-04 16:34:37 +02:00
lassulus	a21eabf5c2	secrets.password-store: optimize secret existence check	2023-09-30 09:36:39 +02:00
lassulus	a6da15ca63	secrets.password-store: fix multi-secret check	2023-09-30 09:27:25 +02:00
lassulus	bde6f956d4	secrets: allow empty facts	2023-09-30 09:18:24 +02:00
lassulus	0db337d57e	clan-cli secrets upload: secrets are populated into tmpdir	2023-09-29 20:05:35 +02:00
lassulus	79be9078dc	restore clanInternals with valid nixos config	2023-09-29 19:39:35 +02:00
lassulus	6d4047b3d9	secrets.password-store: readd targetDirectory	2023-09-27 21:26:58 +02:00
lassulus	5bf28c1731	clanCore.secrets: facts.value can be null or str	2023-09-27 10:34:53 +02:00
Jörg Thalheim	2e88454b5a	move zerotier secret generation into nixos module	2023-09-26 17:57:43 +02:00
lassulus	aeed648bd0	secrets: use clanInternal for crosscompiling, move sops generators to new file	2023-09-21 17:25:32 +02:00
Jörg Thalheim	4096ea3adb	don't set age keyfile if don't have a secret for it	2023-09-21 17:22:20 +02:00
Jörg Thalheim	0314132a1a	rewrite sops backend for secret generation and add tests	2023-09-21 17:22:20 +02:00
lassulus	521f4ee5bc	secrets sops: deploy age key	2023-09-21 17:22:20 +02:00
DavHau	9b6fafcb2d	clan config: re-enable clan config	2023-09-19 15:12:29 +02:00
lassulus	0132abc547	secrets: use CLAN_DIR instead of clanCore.clanDir for fact storage	2023-09-15 12:17:07 +00:00
lassulus	6b7301cefb	clanCore secrets: document custom store	2023-09-15 12:17:07 +00:00
lassulus	c5c2a848c7	secrets pass: append openssh to PATH so we use systems openssh first	2023-09-15 12:17:07 +00:00
lassulus	c5786614bf	clan-cli secrets: deploy -> upload	2023-09-15 12:17:07 +00:00
lassulus	6153a9ee71	clanCore.secrets: set default and add generate/deploy composite	2023-09-15 12:17:07 +00:00
lassulus	285041026d	clanCore sops: add dummy deployScript	2023-09-15 12:17:07 +00:00
lassulus	5285423479	secrets: add password-store implementation	2023-09-15 12:17:07 +00:00
lassulus	3f6fa0eeca	clanCore secrets: add secretStore option	2023-09-15 12:17:07 +00:00
Jörg Thalheim	4d9a59c792	move facts to machine subdirectory This makes it easier to delete facts when removing machines	2023-09-06 15:07:49 +00:00

1 2

59 Commits