diff options
Diffstat (limited to 'bin')
-rwxr-xr-x | bin/copy-secrets | 17 | ||||
-rwxr-xr-x | bin/new-nixos-query | 8 | ||||
-rwxr-xr-x | bin/nixos-query | 21 |
3 files changed, 14 insertions, 32 deletions
diff --git a/bin/copy-secrets b/bin/copy-secrets index 50a0e1982..27b41bdc4 100755 --- a/bin/copy-secrets +++ b/bin/copy-secrets @@ -15,11 +15,18 @@ if ! test -e "$secrets_rsync"; then exit # nothing to do fi -retiolum_secret=$(nixos-query $system_name tv.retiolum.privateKeyFile) -retiolum_uid=$(nixos-query $system_name users.extraUsers.retiolum-tinc.uid) - -ejabberd_secret=$(nixos-query $system_name services.ejabberd-cd.certFile) -ejabberd_uid=$(nixos-query $system_name users.extraUsers.ejabberd.uid) +# XXX this is ugly +# Notice NIX_PATH used from host +# Notice secrets required to evaluate configuration +NIX_PATH=$NIX_PATH:nixos-config=$PWD/modules/$system_name +NIX_PATH=$NIX_PATH:secrets=$PWD/secrets/$system_name/nix +export NIX_PATH + +retiolum_secret=$(new-nixos-query tv.retiolum.privateKeyFile) +retiolum_uid=$(new-nixos-query users.extraUsers.retiolum-tinc.uid) + +ejabberd_secret=$(new-nixos-query services.ejabberd-cd.certFile) +ejabberd_uid=$(new-nixos-query users.extraUsers.ejabberd.uid) (set -x rsync \ diff --git a/bin/new-nixos-query b/bin/new-nixos-query deleted file mode 100755 index 57761b520..000000000 --- a/bin/new-nixos-query +++ /dev/null @@ -1,8 +0,0 @@ -#! /bin/sh -set -euf -nix-instantiate \ - -A config."$1" \ - --eval \ - --json \ - '<nixos>' \ - | jq -r . diff --git a/bin/nixos-query b/bin/nixos-query index 65b5c9672..1111aead5 100755 --- a/bin/nixos-query +++ b/bin/nixos-query @@ -1,21 +1,4 @@ #! /bin/sh set -euf - -host=$1 -attr=$2 - -nixpkgs=$nixpkgs_root/$host -nixos_config=$config_root/modules/$host -secrets_nix=$secrets_root/$host/nix -secrets_rsync=$secrets_root/$host/rsync - -nix-instantiate \ - -I "$nixpkgs" \ - -I nixos-config="$nixos_config" \ - -I retiolum-hosts="$retiolum_hosts" \ - -I secrets="$secrets_nix" \ - -A config."$attr" \ - '<nixos>' \ - --eval \ - --json \ - | jq -r . +result=$(nix-instantiate -A config."$1" --eval --json '<nixos>') +echo $result | jq -r . |