diff options
| author | Ismaël Bouya <ismael.bouya@normalesup.org> | 2019-01-31 18:32:10 +0100 |
|---|---|---|
| committer | Ismaël Bouya <ismael.bouya@normalesup.org> | 2019-01-31 18:43:48 +0100 |
| commit | 5f5efa6fa5a5b7d299998be410a278a7ff396504 (patch) | |
| tree | 0e894e3cf4f2907ff0d7279abab1c96f5addc094 /nixops/scripts | |
| parent | f759f52e50c1099724c0a172cbebfdcb0823a25f (diff) | |
| download | Nix-5f5efa6fa5a5b7d299998be410a278a7ff396504.tar.gz Nix-5f5efa6fa5a5b7d299998be410a278a7ff396504.tar.zst Nix-5f5efa6fa5a5b7d299998be410a278a7ff396504.zip | |
Use password store to store environment
Diffstat (limited to 'nixops/scripts')
| -rwxr-xr-x | nixops/scripts/nixops_wrap | 21 | ||||
| -rwxr-xr-x | nixops/scripts/pull_environment | 13 | ||||
| -rwxr-xr-x | nixops/scripts/push_environment | 13 |
3 files changed, 47 insertions, 0 deletions
diff --git a/nixops/scripts/nixops_wrap b/nixops/scripts/nixops_wrap new file mode 100755 index 0000000..c23d308 --- /dev/null +++ b/nixops/scripts/nixops_wrap | |||
| @@ -0,0 +1,21 @@ | |||
| 1 | #!/bin/bash | ||
| 2 | |||
| 3 | if [ -z "$NIXOPS_CONFIG_PASS_PATH" ]; then | ||
| 4 | echo "Please set NIXOPS_CONFIG_PASS_PATH to the password-store environment file path" | ||
| 5 | exit 1; | ||
| 6 | fi | ||
| 7 | |||
| 8 | TEMP=$(mktemp /tmp/XXXXXX-environment.nix) | ||
| 9 | chmod go-rwx $TEMP | ||
| 10 | |||
| 11 | finish() { | ||
| 12 | rm -f "$TEMP" | ||
| 13 | nixops set-args --unset environment | ||
| 14 | } | ||
| 15 | |||
| 16 | trap finish EXIT | ||
| 17 | |||
| 18 | pass show "$NIXOPS_CONFIG_PASS_PATH" >> $TEMP | ||
| 19 | nixops set-args --argstr environment "$TEMP" | ||
| 20 | |||
| 21 | nixops "$@" | ||
diff --git a/nixops/scripts/pull_environment b/nixops/scripts/pull_environment new file mode 100755 index 0000000..e508a2e --- /dev/null +++ b/nixops/scripts/pull_environment | |||
| @@ -0,0 +1,13 @@ | |||
| 1 | #!/bin/bash | ||
| 2 | |||
| 3 | if [ -z "$NIXOPS_CONFIG_PASS_SUBTREE_PATH" ]; then | ||
| 4 | echo "Please set NIXOPS_CONFIG_PASS_SUBTREE_PATH to the password-store subtree path" | ||
| 5 | exit 1; | ||
| 6 | fi | ||
| 7 | |||
| 8 | if [ -z "$NIXOPS_CONFIG_PASS_SUBTREE_REMOTE" ]; then | ||
| 9 | echo "Please set NIXOPS_CONFIG_PASS_SUBTREE_REMOTE to the password-store subtree remote name" | ||
| 10 | exit 1; | ||
| 11 | fi | ||
| 12 | |||
| 13 | pass git subtree pull --prefix=$NIXOPS_CONFIG_PASS_SUBTREE_PATH $NIXOPS_CONFIG_PASS_SUBTREE_REMOTE master | ||
diff --git a/nixops/scripts/push_environment b/nixops/scripts/push_environment new file mode 100755 index 0000000..8b59240 --- /dev/null +++ b/nixops/scripts/push_environment | |||
| @@ -0,0 +1,13 @@ | |||
| 1 | #!/bin/bash | ||
| 2 | |||
| 3 | if [ -z "$NIXOPS_CONFIG_PASS_SUBTREE_PATH" ]; then | ||
| 4 | echo "Please set NIXOPS_CONFIG_PASS_SUBTREE_PATH to the password-store subtree path" | ||
| 5 | exit 1; | ||
| 6 | fi | ||
| 7 | |||
| 8 | if [ -z "$NIXOPS_CONFIG_PASS_SUBTREE_REMOTE" ]; then | ||
| 9 | echo "Please set NIXOPS_CONFIG_PASS_SUBTREE_REMOTE to the password-store subtree remote name" | ||
| 10 | exit 1; | ||
| 11 | fi | ||
| 12 | |||
| 13 | pass git subtree push --prefix=$NIXOPS_CONFIG_PASS_SUBTREE_PATH $NIXOPS_CONFIG_PASS_SUBTREE_REMOTE master | ||