christoph/flake-nixinator
1
Fork 0
Code Activity

Modules/Agenix: Add dockerhub credentials

Browse Source
This commit is contained in:
Christoph Urlacher
2025-07-09 13:59:10 +02:00
parent 1b3380aa41
commit 750fdf6101
4 changed files with 11 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
home/christoph/default.nix
View File

@ -312,7 +312,7 @@
# If this user defined any secrets... # If this user defined any secrets...
(builtins.hasAttr "${username}" nixosConfig.modules.agenix.secrets) (builtins.hasAttr "${username}" nixosConfig.modules.agenix.secrets)
# ...we will add them to the current secrets.nix, # ...we will add them to the current secrets.nix,
# s.t. agenix can be used to encrypt the secret. # s.t. agenix can be used to encrypt/access them.
(builtins.concatStringsSep "\n" (builtins.concatStringsSep "\n"
(builtins.map (builtins.map
(mkSecret publicKeys.${username}.ssh) (mkSecret publicKeys.${username}.ssh)

4
system/default.nix
View File

@ -25,6 +25,10 @@ with mylib.networking; {
]; ];
modules = { modules = {
agenix.secrets.${username} = [
"dockerhub-password"
];
bootloader = { bootloader = {
enable = true; enable = true;

5
system/modules/agenix/dockerhub-password.age Normal file
View File

@ -0,0 +1,5 @@
age-encryption.org/v1
-> ssh-ed25519 PW+5DQ z6Fm40D2nCJvvFsQdj9V4zcvVBpjFAvLZh17cEtLEx8
hIyc+AUuEiIv6TobnNawdyEswAAQ4kQeh5n0yaVT/mY
--- Yhxh9hnsPfHYcmmrpQm5Up0VzRh2ndoF3R3W+7ojW58
b<><1D><><14>?<02><><EFBFBD> ̙Wc<57><63><EFBFBD><EFBFBD><EFBFBD><EFBFBD>R<EFBFBD><52><<3C>@<40>y<EFBFBD><79><EFBFBD><EFBFBD>1z%<25>4EWu<57>7 <09><<3C><><EFBFBD>'<27><>Cg9!<21>`cv

2
system/modules/agenix/options.nix
View File

@ -5,7 +5,7 @@
}: { }: {
secrets = lib.mkOption { secrets = lib.mkOption {
type = lib.types.attrs; type = lib.types.attrs;
description = "The secret files managed by agenix (and their associated keys)"; description = "The secret files managed by agenix (encrypted by SSH key)";
example = '' example = ''
{ {
christoph = [ christoph = [