mirror of
https://github.com/ivabus/nixos
synced 2024-09-20 00:30:48 +03:00
Ivan Bushchik
f916ffb2b4
Untested VF2 config, basic "user", option to enable users, option to enable git, basic graphics role, unfinished `router` role, global features Signed-off-by: Ivan Bushchik <ivabus@ivabus.dev>
11 lines
383 B
Nix
11 lines
383 B
Nix
{ config, ... }:
|
|
let
|
|
canaryHash = builtins.hashFile "sha256" ./secrets/canary;
|
|
expectedHash =
|
|
"bc6f38a927602241c5e0996b61ebd3a90d5356ca76dc968ec14df3cd45c6612c";
|
|
in if (canaryHash != expectedHash && config.my.features.secrets) then
|
|
abort "Secrets are not readable. Have you run `git-crypt unlock`?"
|
|
else {
|
|
hashed-password = builtins.readFile ./secrets/hashed-password;
|
|
}
|