move secrets to a subdirectory, for improved overrides

This commit is contained in:
Colin 2022-05-26 23:52:08 -07:00
parent 243a8e1e4c
commit 91d8b95459
4 changed files with 6 additions and 4 deletions

3
.gitignore vendored
View File

@ -1,3 +1,2 @@
result
/secrets/*
!/secrets/readme.md
/secrets/local.nix

View File

@ -48,7 +48,7 @@
decl-machine = { name, system, extraModules ? [], basePkgs ? nixpkgs }: (basePkgs.lib.nixosSystem {
inherit system;
specialArgs = { inherit home-manager; inherit nurpkgs; secrets = import ./secrets.nix ;};
specialArgs = { inherit home-manager; inherit nurpkgs; secrets = import ./secrets/default.nix; };
modules = [
./configuration.nix
./modules

View File

@ -19,4 +19,4 @@
pleroma.vapid_public_key = "<REPLACEME>";
pleroma.vapid_private_key = "<REPLACEME>";
pleroma.joken_default_signer = "<REPLACEME>";
}
} // import ./local.nix

3
secrets/local.nix Normal file
View File

@ -0,0 +1,3 @@
{
# populate secrets on a per-machine basis below (and don't push changes to this file to git)
}