!XLCFfvFhUkYwOMLbVx:nixos.org

agenix

344 Members
age-encrypted secrets for NixOS https://github.com/ryantm/agenix/100 Servers

Load older messages

SenderMessageTime
7 Jun 2024
@ryantm:matrix.orgryantmDepends on your threat model20:27:16
@conr:mozilla.orgconrhigh threat, i'm really important.20:34:47
@conr:mozilla.orgconrlol20:34:49
@conr:mozilla.orgconr this part of the tutorial for installing with flakes,
agenix -e secret1.age, is this on the nix machine or remote machine with your ed25519 public key? 		20:36:37
@hexa:lossy.networkhexathis is to edit a secret locally20:54:23
@hexa:lossy.networkhexa * this is to edit a secret locally, before deployment20:54:32
@conr:mozilla.orgconrso like on my mac install agenix with brew and do it?20:57:55
@conr:mozilla.orgconrthen deploy to the nixos server?20:58:09
@conr:mozilla.orgconr hexa: ^ 20:58:40
@hexa:lossy.networkhexayeah20:59:20
@conr:mozilla.orgconr is brew formula just age? 21:00:01
@hexa:lossy.networkhexaagenix is a wrapping age21:00:19
@hexa:lossy.networkhexa * agenix is wrapping age21:00:47
@hexa:lossy.networkhexaand you'll want agenix21:00:51
@conr:mozilla.orgconrin what dir?21:01:12
@conr:mozilla.orgconr the /etc/secrets are on the nixos system right? no my mac? 21:01:53
@hexa:lossy.networkhexaagenix will ship the encrypted secrets into your targets nix store21:03:35
@hexa:lossy.networkhexa * agenix will ship the encrypted secrets into your target's nix store21:03:39
@conr:mozilla.orgconr
In reply to @hexa:lossy.network
agenix will ship the encrypted secrets into your target's nix store
but this command agenix -e secret1.age 		21:05:08
@conr:mozilla.orgconrdoes nothing.21:05:12
@conr:mozilla.orgconr agenix: command not found 21:05:30
@hexa:lossy.networkhexawell, you don't have agenix installed21:05:47
@conr:mozilla.orgconr do i need to add it to my configuration.nix? 21:06:10
@hexa:lossy.networkhexapossibly21:06:24
@hexa:lossy.networkhexahttps://github.com/ryantm/agenix?tab=readme-ov-file#installation21:06:36
@hexa:lossy.networkhexathere is a few ways to get it installed21:06:40
@conr:mozilla.orgconroh crap, the md document didn't expand flakes section, so sorry.21:07:28
@conr:mozilla.orgconr should the creation of /etc/secrets/secrets.nix should be done with root correct? 21:16:18
@conr:mozilla.orgconr 
Inputs:
├───agenix: github:ryantm/agenix/c2fc0762bbe8feb06a2e59a364fa81b3a57671c9
│   ├───darwin: github:lnl7/nix-darwin/4b9b83d5a92e8c1fbfd8eb27eda375908c11ec4d
│   │   └───nixpkgs follows input 'agenix/nixpkgs'
│   ├───home-manager: github:nix-community/home-manager/3bfaacf46133c037bb356193bd2f1765d9dc82c1
│   │   └───nixpkgs follows input 'agenix/nixpkgs'
│   ├───nixpkgs: github:NixOS/nixpkgs/54aac082a4d9bb5bbc5c4e899603abfb76a3f6d6
│   └───systems: github:nix-systems/default/da67096a3b9bf56a91d16901293e51ba5b49a27e
21:27:39
@conr:mozilla.orgconr i have it installed via flake but its still not recognizing the agenix command. 21:28:03

Show newer messages

Back to Room ListRoom Version: 6