Blunkall-Technologies/Olympus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix remote build

Browse Source
This commit is contained in:
Nathan
2026-01-18 18:22:40 -06:00
parent 560f36b18e
commit 96e4476934
4 changed files with 18 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
machines/android

Submodule machines/android updated: f7f727a361...a642257fb3

2
machines/homebox

Submodule machines/homebox updated: 07b9b65382...b9d78079d2

2
machines/laptop

Submodule machines/laptop updated: 2c71c6b3b8...daa1c40a98

18
system/default.nix
View File

@@ -1,4 +1,4 @@
{ config, lib, nixpkgs, ... }: { { config, lib, pkgs, nixpkgs, ... }: {
imports = [ imports = [
./services ./services
@@ -65,13 +65,25 @@
createHome = false; createHome = false;
}; };
sops.secrets = let
machines = builtins.readDir ../machines;
in lib.mkIf config.sops.remoteBuildHost (builtins.listToAttrs
(builtins.map
(x: { name = "remoteBuildClientKeys/${x}"; value = { sopsFile = ./secrets.yaml; }; })
(builtins.filter
(x: machines.${x} == "directory" && (import ../machines/${x} { config = {}; inputs = {}; inherit lib pkgs; }).config.sysconfig.remoteBuildClient)
machines
)
)
);
sops.templates."remote-builder" = lib.mkIf config.sysconfig.remoteBuildHost { sops.templates."remote-builder" = lib.mkIf config.sysconfig.remoteBuildHost {
content = builtins.concatStringsSep ''''\n'' (builtins.map content = builtins.concatStringsSep ''''\n'' (builtins.map
(y: config.sops.placeholder.${y}) (y: config.sops.placeholder.${y})
(builtins.partition (builtins.filter
(x: (builtins.match "^remoteBuildClientKeys/.+" x) != null) (x: (builtins.match "^remoteBuildClientKeys/.+" x) != null)
(builtins.attrNames config.sops.secrets) (builtins.attrNames config.sops.secrets)
).right )
); );
path = "/etc/ssh/authorized_keys.d/remote-builder"; path = "/etc/ssh/authorized_keys.d/remote-builder";
owner = "remote-builder"; owner = "remote-builder";