SebastianStork/nixos-config
1
0
Fork 0
mirror of https://github.com/SebastianStork/nixos-config.git synced 2026-01-21 16:21:34 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

sops: Streamline bitwarden integration

Browse source
This commit is contained in:
SebastianStork 2025-12-24 01:03:15 +01:00
parent 435a70a4e9
commit f845b093f1
Signed by: SebastianStork
SSH key fingerprint: SHA256:iEM011ogNMG1q8+U500adGu/9rpPuZ2KnFtbdLeqTiI
2 changed files with 5 additions and 10 deletions
Download patch file Download diff file Expand all files Collapse all files

6
flake-parts/install-anywhere.nix
View file

@ -8,9 +8,7 @@ _: {
runtimeInputs = [
pkgs.sops
pkgs.ssh-to-age
pkgs.bitwarden-cli
pkgs.jq
];
text = ''
@ -40,10 +38,10 @@ _: {
sed -i -E "s|(agePublicKey\s*=\s*\")[^\"]*(\";)|\1$new_age_key\2|" "hosts/$host/default.nix"
echo "==> Updating SOPS secrets..."
if BW_SESSION="$(bw login --raw)"; then
if BW_SESSION="$(bw unlock --raw || bw login --raw)"; then
export BW_SESSION
fi
SOPS_AGE_KEY="$(bw get item 'admin age-key' | jq -r '.notes')"
SOPS_AGE_KEY="$(bw get notes 'admin age-key')"
export SOPS_AGE_KEY
SOPS_CONFIG="$(nix build .#sops-config --print-out-paths)"
export SOPS_CONFIG