yadunut/clan-core
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Files
998aaec269e4502b51f11966f0b8b0397ed7fc81
clan-core/checks/secrets/default.nix
Johannes Kirschbauer abd9519412 Refactor: move checks/lib into lib/ to avoid duplicate lib 
Lets avoid the mistake of nixpkgs having multiple
libs
2025-04-23 16:19:16 +02:00

22 lines
596 B
Nix
Raw Blame History

{
name = "secrets";
nodes.machine =
{ self, config, ... }:
{
environment.etc."privkey.age".source = ./key.age;
imports = [ (self.nixosModules.clanCore) ];
environment.etc."secret".source = config.sops.secrets.secret.path;
environment.etc."group-secret".source = config.sops.secrets.group-secret.path;
sops.age.keyFile = "/etc/privkey.age";
clan.core.settings.directory = "${./.}";
networking.hostName = "machine";
};
testScript = ''
machine.succeed("cat /etc/secret >&2")
machine.succeed("cat /etc/group-secret >&2")
'';
}
Reference in New Issue View Git Blame Copy Permalink