machines-config/secrets/secrets.nix

13 lines
403 B
Nix
Raw Normal View History

2024-12-29 10:34:03 +01:00
let
2025-01-07 20:05:09 +01:00
keyfile = builtins.fromJSON (builtins.readFile ./keys.json);
2024-12-29 10:34:03 +01:00
2025-01-07 20:05:09 +01:00
splitString = delim: str: builtins.filter builtins.isString (builtins.split delim str);
getKey = pair: keyfile.${builtins.elemAt pair 0}.${builtins.elemAt pair 1};
getKeys = secretName: builtins.map (x: getKey (splitString ":" x)) keyfile.secrets.${secretName};
2024-12-29 10:34:03 +01:00
in
{
2025-01-07 20:05:09 +01:00
"mypassword.age".publicKeys = getKeys "mypassword.age";
2024-12-29 10:34:03 +01:00
}