Merge remote-tracking branch 'lass/master'

author: makefu <github@syntax-fehler.de> 2023-09-28 23:22:59 +0200
committer: makefu <github@syntax-fehler.de> 2023-09-28 23:22:59 +0200
commit: 2db6777b7caa37477c5ffddd99d69b2f2c6d9d7f (patch)
tree: a72905fad73089b7ab295a948eda837bad013362 /krebs/3modules/secret.nix
parent: 29d72c898d674d2c18fc0f4a76b5e623de0c3dfe (diff)
parent: 0215fbddccf206801d94f52518cbfec91ccc3cc5 (diff)
1 files changed, 8 insertions, 4 deletions
diff --git a/krebs/3modules/secret.nix b/krebs/3modules/secret.nix
index 90c2f6a6d..c35dceba3 100644
--- a/krebs/3modules/secret.nix
+++ b/krebs/3modules/secret.nix
@@ -7,13 +7,17 @@ in {
       default = toString <secrets>;
       type = types.absolute-pathname;
     };
-    file = mkOption {
-      default = relpath: "${cfg.directory}/${relpath}";
-      readOnly = true;
-    };
     files = mkOption {
       type = with pkgs.stockholm.lib.types; attrsOf secret-file;
       default = {};
+      apply = mapAttrs (name: secret-file:
+        if types.absolute-pathname.check secret-file.source-path then
+          secret-file
+        else
+          secret-file // {
+            source-path = "${config.krebs.secret.directory}/secret-file.source-path";
+          }
+      );
     };
   };
   config = lib.mkIf (cfg.files != {}) {
author	makefu <github@syntax-fehler.de>	2023-09-28 23:22:59 +0200
committer	makefu <github@syntax-fehler.de>	2023-09-28 23:22:59 +0200
commit	2db6777b7caa37477c5ffddd99d69b2f2c6d9d7f (patch)
tree	a72905fad73089b7ab295a948eda837bad013362 /krebs/3modules/secret.nix
parent	29d72c898d674d2c18fc0f4a76b5e623de0c3dfe (diff)
parent	0215fbddccf206801d94f52518cbfec91ccc3cc5 (diff)