Closed paullotz closed 1 week ago
Resolving the does not exist error with this ´inputs.secrets.url = "git+file:///secrets?ref=main&submodules=1";´
which brought up new errors :)
´´´ 🚀 ℹ️ [deploy] [INFO] Evaluating flake in . warning: Git tree '/home/pl/Code/nix-configuration' is dirty fatal: '/secrets' does not appear to be a git repository fatal: Could not read from remote repository.
Please make sure you have the correct access rights and the repository exists. warning: could not update mtime for file '/home/pl/.cache/nix/gitv3/0il30q0n0kmqg5jxd4svmklp4ir8n1sds53g2y2wnmg4w7p5smy9/refs/heads/main': No such file or directory error: … while updating the lock file of flake 'git+file:///home/pl/Code/nix-configuration'
… while updating the flake input 'secrets'
… while fetching the input 'git+file:///secrets?ref=main&submodules=1'
error: resolving Git reference 'main': revspec 'main' not found
🚀 ❌ [deploy] [ERROR] Failed to evaluate deployment data: Evaluation resulted in a bad exit code: Some(1)
´´´
Replaced the submodule approach (git+file) with loading the credentials from remote
inputs.secrets.url = "git+ssh://git@github.com/.../...git?ref=main";
inputs.secrets.flake = false
Adding it to the modules worked with:
inputs.secrets.outPath
Hello, is it possible to keep the secrets safe in a private Git submodule? Trying it with this approach but it does seem to work:
I get an error during deploying the configuration:
Folder is there with a default.nix and secrets.nix, submodule is inited and properly working gitwise.