foodogsquared/nixos-config
1
0
Fork 0
mirror of https://github.com/foo-dogsquared/nixos-config.git synced 2025-04-19 12:19:10 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

tasks/backup-archive: refactor and update secrets keys

Browse Source
This commit is contained in:
Gabriel Arazas 2022-08-18 15:16:14 +08:00
parent 3a287069e9
commit 84f53a2f50
1 changed files with 18 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

33
modules/nixos/tasks/backup-archive/default.nix
View File

@ -46,14 +46,17 @@ in {
inherit key; inherit key;
sopsFile = lib.getSecret "backup-archive.yaml"; sopsFile = lib.getSecret "backup-archive.yaml";
name = "borg-backup/${key}"; name = "borg-backup/${key}";
}; in { };
"borg-backup/patterns/home" = getKey "borg-patterns/home"; getSecrets = keys:
"borg-backup/patterns/etc" = getKey "borg-patterns/etc"; lib.listToAttrs (lib.lists.map (key: lib.nameValuePair key (getKey key)) keys);
"borg-backup/patterns/keys" = getKey "borg-patterns/keys"; in getSecrets [
"borg-backup/patterns/remote-backup" = getKey "borg-patterns/remote-backup"; "borg-patterns/home"
"borg-backup/ssh-key" = getKey "ssh-key"; "borg-patterns/etc"
"borg-backup/password" = getKey "password"; "borg-patterns/keys"
}; "borg-patterns/remote-backup"
"ssh-key"
"password"
];
fileSystems."/mnt/external-storage" = { fileSystems."/mnt/external-storage" = {
device = "/dev/disk/by-uuid/665A391C5A38EB07"; device = "/dev/disk/by-uuid/665A391C5A38EB07";
@ -100,9 +103,9 @@ in {
services.borgbackup.jobs = { services.borgbackup.jobs = {
local-archive = borgJobCommonSetting { local-archive = borgJobCommonSetting {
patterns = with config.sops; [ patterns = with config.sops; [
secrets."borg-backup/patterns/home".path secrets."borg-backup/borg-patterns/home".path
secrets."borg-backup/patterns/etc".path secrets."borg-backup/borg-patterns/etc".path
secrets."borg-backup/patterns/keys".path secrets."borg-backup/borg-patterns/keys".path
]; ];
} // { } // {
doInit = false; doInit = false;
@ -113,9 +116,9 @@ in {
local-external-drive = borgJobCommonSetting { local-external-drive = borgJobCommonSetting {
patterns = with config.sops; [ patterns = with config.sops; [
secrets."borg-backup/patterns/home".path secrets."borg-backup/borg-patterns/home".path
secrets."borg-backup/patterns/etc".path secrets."borg-backup/borg-patterns/etc".path
secrets."borg-backup/patterns/keys".path secrets."borg-backup/borg-patterns/keys".path
]; ];
} // { } // {
doInit = false; doInit = false;
@ -126,7 +129,7 @@ in {
remote-borgbase = borgJobCommonSetting { remote-borgbase = borgJobCommonSetting {
patterns = with config.sops; [ patterns = with config.sops; [
secrets."borg-backup/patterns/remote-backup".path secrets."borg-backup/borg-patterns/remote-backup".path
]; ];
} // { } // {
repo = "r6o30viv@r6o30viv.repo.borgbase.com:repo"; repo = "r6o30viv@r6o30viv.repo.borgbase.com:repo";