Fediversity/vars
14
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: Fediversity:e4f943f5b4de7b0e5610a7ff211f95e74861bcc7
Branches Tags
Fediversity:main
Fediversity:generators
Fediversity:kiara
Fediversity:autogen
Fediversity:rights
Fediversity:templates
Fediversity:license-mit
...
compare: Fediversity:2906ec76ffb99e66f5cf717e8228542b201ebc0d
Branches Tags
Fediversity:main
Fediversity:generators
Fediversity:kiara
Fediversity:autogen
Fediversity:rights
Fediversity:templates
Fediversity:license-mit

5 commits
e4f943f5b4 ... 2906ec76ff

Author SHA1 Message Date
cinereal
2906ec76ff
automatically generate 2025-08-21 16:42:41 +02:00
lassulus
9c9be8e258
Merge pull request #7 from KiaraGrouwstra/rights 
add file rights: owner, group, mode
 2025-08-21 14:32:11 +02:00
cinereal
8cf40cc342
specify option types 2025-08-21 11:53:11 +02:00
cinereal
f5ec539a68
default mode 2025-08-21 10:43:58 +02:00
cinereal
52ee8bab58
add file rights: owner, group, mode 
further increases parity with
https://git.clan.lol/clan/clan-core/src/branch/main/nixosModules/clanCore/vars/interface.nix,
particularly:
-
f540ab91a1 (diff-7b681998bb14b48b80f83251424be17c6e3ce3bf)
-
19a251d6fc (diff-7b681998bb14b48b80f83251424be17c6e3ce3bf)
-
222915a9ed (diff-7b681998bb14b48b80f83251424be17c6e3ce3bf)
 2025-08-21 10:43:58 +02:00
2 changed files with 37 additions and 7 deletions
Show stats Expand all files Collapse all files

29
backends/on-machine.nix
View file

@ -46,6 +46,12 @@ let
fi
'') (lib.attrValues gen.files)}
# outputs
out=$(mktemp -d)
trap 'rm -rf $out' EXIT
export out
mkdir -p "$out"
if [ $all_files_missing = false ] && [ $all_files_present = false ] ; then
echo "Inconsistent state for generator: ${gen.name}"
exit 1
@ -80,12 +86,6 @@ let
'') (lib.attrValues config.vars.generators.${input}.files)}
'') gen.dependencies}
# outputs
out=$(mktemp -d)
trap 'rm -rf $out' EXIT
export out
mkdir -p "$out"
(
# prepare PATH
unset PATH
@ -112,8 +112,15 @@ let
mkdir -p "$(dirname "$OUT_FILE")"
mv "$out"/${file.name} "$OUT_FILE"
'') (lib.attrValues gen.files)}
rm -rf "$out"
fi
# move the files to the correct location
${lib.concatMapStringsSep "\n" (file: ''
OUT_FILE="$OUT_DIR"/${if file.secret then "secret" else "public"}/${file.generator}/${file.name}
chown ${file.owner}:${file.group} "''${OUT_FILE}"
chmod ${file.mode} "''${OUT_FILE}"
'') (lib.attrValues gen.files)}
rm -rf "$out"
'') sortedGenerators}
'';
};
@ -138,5 +145,13 @@ in
generate-vars
];
system.build.generate-vars = generate-vars;
systemd.services.generate-vars = {
wantedBy = [ "multi-user.target" ];
after = [ "default.target" ];
description = "generate needed secrets";
path = [ generate-vars ];
serviceConfig.ExecStart = "${generate-vars}/bin/generate-vars";
};
};
}

15
options.nix
View file

@ -82,6 +82,21 @@
default = generator.config.name;
defaultText = "Name of the generator";
};
owner = lib.mkOption {
description = "The user name or id that will own the file.";
type = lib.types.str;
default = "root";
};
group = lib.mkOption {
description = "The group name or id that will own the file.";
type = lib.types.str;
default = "root";
};
mode = lib.mkOption {
description = "The unix file mode of the file. Must be a 4-digit octal number.";
type = lib.types.strMatching "^[0-7]{4}$";
default = if file.config.group == "root" then "0400" else "0440";
};
deploy = lib.mkOption {
description = ''
Whether the file should be deployed to the target machine.