nix/lib
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Make service name for secrets available

Browse Source
This commit is contained in:
niten 2021-12-10 23:40:25 -08:00
parent 1edfcad643
commit aa39f039aa
2 changed files with 13 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
lib/fudo/jabber.nix
View File

@ -183,6 +183,12 @@ in {
description = "Environment variables to set for the ejabberd daemon."; description = "Environment variables to set for the ejabberd daemon.";
default = {}; default = {};
}; };
required-services = mkOption {
type = listOf str;
description = "List of services that must start before ejabberd.";
default = [];
};
}; };
config = mkIf cfg.enable { config = mkIf cfg.enable {

8
lib/fudo/secrets.nix
View File

@ -84,6 +84,12 @@ let
description = "Arbitrary metadata associated with this secret."; description = "Arbitrary metadata associated with this secret.";
default = {}; default = {};
}; };
service = mkOption {
type = str;
description = "Host-side name of the service decrypting this secret.";
default = "fudo-secret-${name}.service";
};
}; };
}; };
@ -175,7 +181,7 @@ in {
{ }; { };
host-secret-services = mapAttrs' (secret: secretOpts: host-secret-services = mapAttrs' (secret: secretOpts:
(nameValuePair "fudo-secret-${hostname}-${secret}" (nameValuePair secretOpts.service
(secret-service hostname secret secretOpts))) host-secrets; (secret-service hostname secret secretOpts))) host-secrets;
trace-all = obj: builtins.trace obj obj; trace-all = obj: builtins.trace obj obj;