move keyring to private store
This commit is contained in:
parent
5443542cba
commit
d852adf806
|
@ -93,8 +93,6 @@ in
|
||||||
|
|
||||||
".cargo"
|
".cargo"
|
||||||
".rustup"
|
".rustup"
|
||||||
# TODO: move this to ~/private!
|
|
||||||
".local/share/keyrings"
|
|
||||||
];
|
];
|
||||||
|
|
||||||
# convenience
|
# convenience
|
||||||
|
|
|
@ -2,7 +2,10 @@
|
||||||
|
|
||||||
lib.mkIf config.sane.home-manager.enable
|
lib.mkIf config.sane.home-manager.enable
|
||||||
{
|
{
|
||||||
sane.fs."/home/colin/.local/share/keyrings/default" = sane-lib.fs.wanted {
|
sane.persist.home.private = [ ".local/share/keyrings" ];
|
||||||
|
|
||||||
|
sane.fs."/home/colin/private/.local/share/keyrings/default" = {
|
||||||
generated.script.script = builtins.readFile ../../scripts/init-keyring;
|
generated.script.script = builtins.readFile ../../scripts/init-keyring;
|
||||||
|
wantedBy = [ config.sane.fs."/home/colin/private".unit ];
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,7 +2,7 @@
|
||||||
# initializes the default libsecret keyring (used by gnome-keyring) if not already initialized.
|
# initializes the default libsecret keyring (used by gnome-keyring) if not already initialized.
|
||||||
# this initializes it to be plaintext/unencrypted.
|
# this initializes it to be plaintext/unencrypted.
|
||||||
|
|
||||||
ringdir=/home/colin/.local/share/keyrings
|
ringdir=/home/colin/private/.local/share/keyrings
|
||||||
if test -f "$ringdir/default"
|
if test -f "$ringdir/default"
|
||||||
then
|
then
|
||||||
echo 'keyring already initialized: not doing anything'
|
echo 'keyring already initialized: not doing anything'
|
||||||
|
@ -14,6 +14,7 @@ else
|
||||||
echo 'display-name=Default keyring' >> "$keyring.new"
|
echo 'display-name=Default keyring' >> "$keyring.new"
|
||||||
echo 'lock-on-idle=false' >> "$keyring.new"
|
echo 'lock-on-idle=false' >> "$keyring.new"
|
||||||
echo 'lock-after=false' >> "$keyring.new"
|
echo 'lock-after=false' >> "$keyring.new"
|
||||||
|
chown colin:users "$keyring.new"
|
||||||
# closest to an atomic update we can achieve
|
# closest to an atomic update we can achieve
|
||||||
mv "$keyring.new" "$keyring" && echo -n "Default_keyring" > "$ringdir/default"
|
mv "$keyring.new" "$keyring" && echo -n "Default_keyring" > "$ringdir/default"
|
||||||
fi
|
fi
|
||||||
|
|
Loading…
Reference in New Issue
Block a user