machines-config/secrets/secrets.nix

let
  keyfile = builtins.fromJSON (builtins.readFile ./keys.json);

  splitString = delim: str: builtins.filter builtins.isString (builtins.split delim str);

  getKey = pair: keyfile.${builtins.elemAt pair 0}.${builtins.elemAt pair 1};

  getKeys = secretName: builtins.map (x: getKey (splitString ":" x)) keyfile.secrets.${secretName};
in
{
  "mypassword.age".publicKeys = getKeys "mypassword.age";
}
trying agenix 2024-12-29 10:34:03 +01:00			`let`
functional HELL 2025-01-07 20:05:09 +01:00			`keyfile = builtins.fromJSON (builtins.readFile ./keys.json);`
trying agenix 2024-12-29 10:34:03 +01:00
functional HELL 2025-01-07 20:05:09 +01:00			`splitString = delim: str: builtins.filter builtins.isString (builtins.split delim str);`

			`getKey = pair: keyfile.${builtins.elemAt pair 0}.${builtins.elemAt pair 1};`

			`getKeys = secretName: builtins.map (x: getKey (splitString ":" x)) keyfile.secrets.${secretName};`
trying agenix 2024-12-29 10:34:03 +01:00			`in`
			`{`
functional HELL 2025-01-07 20:05:09 +01:00			`"mypassword.age".publicKeys = getKeys "mypassword.age";`
trying agenix 2024-12-29 10:34:03 +01:00			`}`