| 17 May 2025 |
|  oddlama changed their display name from oddlama to Malte. | 20:12:11 |
| 18 May 2025 |
 xored | i have a container that doesn't allow env vars or anything like that, is there an external tool i can run within nix that would interpolate a secret in a yaml file? | 22:31:51 |
| xored | i could also write the yaml in nix so if there are any helps other than builtin.readFile or similar (not recommended) plz let me know | 22:32:30 |
| xored | or i could do a sed on container startup | 22:33:01 |
| xored | let me know what you guys usually do | 22:33:08 |
| 19 May 2025 |
|  Andrew Selvia joined the room. | 08:25:55 |
| 21 May 2025 |
| oddlama changed their display name from Malte to oddlama. | 17:42:11 |
| 22 May 2025 |
|  @mynacol:mynacol.xyz left the room. | 20:46:14 |
| 24 May 2025 |
|  row joined the room. | 14:51:21 |
| 25 May 2025 |
|  @raijin_:matrix.org left the room. | 02:00:05 |
 tebriel | In reply to @xoredg:matrix.org
let me know what you guys usually do in these cases I use pkgs.replace-secret to put a hash in the yaml file and pre-process it. Since I use virutalisation.oci-containers which creates a systemd job I can do an execstartpre on the container start to replace the secrets in the file | 02:25:21 |
|  @nemnix:matrix.org left the room. | 22:40:13 |
| 26 May 2025 |
|  Zexin Yuan joined the room. | 07:59:49 |
| 27 May 2025 |
| Andrew Selvia | I have successfully encrypted a secret with agenix (i.e., I see the generated mysecret.age file). Now, I'm trying to integrate it into my flake.nix file. I've been struggling for a week. Is anyone able to educate me? | 02:45:04 |
| Andrew Selvia | My flake.nix file is just the stock one produced by nix-darwin. | 02:46:31 |
| Andrew Selvia | When I try to apply configuration like this:
let
configuration = { pkgs, config, lib, agenix, ... }: {
...
age.secrets.mysecret = {
file =./mysecret.age;
path = "~/demo";
};
};
in ...
the following error is produced:
The option `age' does not exist.
| 02:53:01 |
| Andrew Selvia | Aha! I needed to add this within the configuration:
imports = [ agenix.darwinModules.default ];
| 04:57:04 |
