simplify secrets

2025-07-26 14:07:46 +02:00 · 2025-07-26 14:07:46 +02:00 · 97841655a0
commit 97841655a0
parent 7b7f3c68a8
1 changed files with 13 additions and 22 deletions
--- a/machines/dev/fedi203/woodpecker.nix
+++ b/machines/dev/fedi203/woodpecker.nix
@ -10,28 +10,19 @@
    defaults.email = "something@fediversity.eu";
  };

-  age.secrets = {
-    woodpecker-gitea-client = {
-      owner = "woodpecker-server";
-      group = "woodpecker-server";
-      mode = "440";
-    };
-    woodpecker-gitea-secret = {
-      owner = "woodpecker-server";
-      group = "woodpecker-server";
-      mode = "440";
-    };
-    woodpecker-agent-exec = {
-      owner = "woodpecker-agent-exec";
-      group = "woodpecker-agent-exec";
-      mode = "440";
-    };
-    woodpecker-agent-container = {
-      owner = "woodpecker-agent-docker";
-      group = "woodpecker-agent-docker";
-      mode = "440";
-    };
-  };
+  age.secrets =
+    lib.mapAttrs
+      (_: owner: {
+        inherit owner;
+        group = owner;
+        mode = "440";
+      })
+      {
+        woodpecker-gitea-client = "woodpecker-server";
+        woodpecker-gitea-secret = "woodpecker-server";
+        woodpecker-agent-exec = "woodpecker-agent-exec";
+        woodpecker-agent-container = "woodpecker-agent-docker";
+      };

  # needs `sudo generate-vars`
  vars.settings.on-machine.enable = true;