technofab/nixlets
1
0
Fork 0
mirror of https://gitlab.com/TECHNOFAB/nixlets.git synced 2025-12-12 01:50:05 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: add secrets module

Browse source 
idea: have sops encrypted secret yamls, specify them in Nix, get all
secret yamls in a single directory to push into oci repo for flux to use
This commit is contained in:
technofab 2025-04-04 16:18:31 +02:00
parent 0b7f99f81e
commit b0c8d8b38e
2 changed files with 40 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
lib/default.nix
View file

@ -64,6 +64,7 @@ with lib; rec {
helm
docker
files
./secretsModule.nix
({...}: let
finalValues = mkValues "${path}/values.nix" {
rawValues = values;
@ -94,6 +95,8 @@ with lib; rec {
.config
.kubernetes
.resultYAML;
# combines all secrets files in a single directory
secrets = args: (eval args).config.kubernetes.secretsCombined;
};
fetchNixlet = url: sha256: mkNixlet (builtins.fetchTarball {inherit url sha256;});