make secrets dir location configurable

Users of the nix-bitcoin modules shouldn't be forced to add an extra dir under root. The secrets location is unchanged for the default node config.
2020-01-12 20:52:39 +01:00 · 2020-01-12 20:52:39 +01:00 · 826245484e
commit 826245484e
parent b1e13e9415
12 changed files with 38 additions and 32 deletions
--- a/modules/secrets/generate-secrets.nix
+++ b/modules/secrets/generate-secrets.nix
@ -5,9 +5,6 @@
 # generated secrets.

 with lib;
-let
-  secretsDir = "/secrets/"; # TODO: make this an option
-in
 {
  nix-bitcoin.setup-secrets = true;

@ -19,8 +16,8 @@ in
       RemainAfterExit = true;
    } // config.nix-bitcoin-services.defaultHardening;
    script = ''
-      mkdir -p "${secretsDir}"
-      cd "${secretsDir}"
+      mkdir -p "${config.nix-bitcoin.secretsDir}"
+      cd "${config.nix-bitcoin.secretsDir}"
      chown root: .
      chmod 0700 .
      ${pkgs.nix-bitcoin.generate-secrets}