deploy: Make secrets deployment optional

2021-01-06 23:45:29 +01:00 · 2021-01-06 23:45:29 +01:00 · f1620679d4
parent 2b6a7bc1f6
commit f1620679d4
1 changed files with 6 additions and 2 deletions
--- a/deploy.nix
+++ b/deploy.nix
@ -8,11 +8,12 @@ let
  kropsDeploy =
    { hostname
    , target ? null
+    , secrets ? true
    , extraSources ? { }
    }:
    let
      source = lib.evalSource [
-        ({
+        {
          nixpkgs.git = {
            ref = sources.nixpkgs.rev;
            url = https://github.com/NixOS/nixpkgs;
@ -32,11 +33,14 @@ let
            ];
          };
          nixos-config.symlink = "config/machines/${hostname}/configuration.nix";
+        }
+        (lib.mkIf secrets {
          secrets.pass = {
            dir = toString ~/.password-store;
            name = "nixos/machines/${hostname}";
          };
-        } // extraSources)
+        })
+        extraSources
      ];
    in
    kropsPkgs.krops.writeDeploy "deploy-${hostname}" {