sokai/mynixos-config
1
1
Fork 0
forked from mirrors_public/oddlama_nix-config
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

chore: use agenix, enable initrd networking

Browse source
This commit is contained in:
oddlama 2023-02-12 03:40:24 +01:00
parent 855bff0a6f
commit b68021b3a4
No known key found for this signature in database
GPG key ID: 14EFE510775FE39A
8 changed files with 79 additions and 83 deletions
Download patch file Download diff file Expand all files Collapse all files

24
flake.nix
View file

@ -25,9 +25,8 @@
};
agenix-rekey.url = "github:oddlama/agenix-rekey";
ragenix = {
url = "github:yaxitech/ragenix";
inputs.flake-utils.follows = "flake-utils";
agenix = {
url = "github:ryantm/agenix";
inputs.nixpkgs.follows = "nixpkgs";
};
@ -60,7 +59,24 @@
config.allowUnfree = true;
};
apps = agenix-rekey.defineApps self pkgs self.nodes;
apps =
agenix-rekey.defineApps self pkgs self.nodes
// {
generate-initrd-keys = flake-utils.mkApp {
drv = let
generateHostKey = node: ''
if [[ ! -f ${node.config.rekey.secrets.initrd_host_ed25519_key.file} ]]; then
ssh-keygen -t ed25519 -N "" -f /tmp/1
TODO
fi
'';
in
pkgs.writeShellScript "generate-initrd-keys" ''
set -euo pipefail
${pkgs.lib.concatStringsSep "\n" (pkgs.lib.mapAttrsToList generateHostKey self.nodes)}
'';
};
};
checks = import ./nix/checks.nix inputs system;
devShells.default = import ./nix/dev-shell.nix inputs system;
formatter = pkgs.alejandra;