--===============0759963825741826287== Content-Type: multipart/signed; micalg=pgp-sha256; boundary="Sig_/fLO+IJwMyHe4D2NsWjBuFC5"; protocol="application/pgp-signature" --Sig_/fLO+IJwMyHe4D2NsWjBuFC5 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable On Sun, 12 Jun 2016 12:34:21 +0200 Michal Rus wrote: > in my nixos-config, I=E2=80=99ve got wifi-passwords.nix.gpg (the rest of = the > config is publicly available), and what I=E2=80=99d like to do is: >=20 > import ./wifi-passwords.nix.gpg; >=20 > Or: >=20 > imports =3D [ ./wifi-passwords.nix.gpg ]; >=20 > =E2=80=A6 somewhere in configuration.nix. And when issuing `nixos-rebuild > switch`, GnuPG would be used to decrypt the file. >=20 > How can I achieve that? Was this discussed before (I can=E2=80=99t find a= ny > mentions)? May I post a feature request in an issue or will it be > rejected? >=20 > This seems like a useful feature and I have quite a few other uses for > it besides Wi-Fi passwords. Currently, I=E2=80=99m using gpg manually, th= ough, > and that=E2=80=99s asking for errors. I will be doing similar stuff soon, until now my config(1) has no secrets. But once it gets, I will be using git-crypt(2). Only have to deal with what happens when the import is not working due to encrypted contents=E2=80=A6 But having the encryption in nix itself and maybe even encryption in the nix store would certainly be desirable. - Arnold (1) https://github.com/kampfschlaefer/nixconfig (2) https://github.com/AGWA/git-crypt --Sig_/fLO+IJwMyHe4D2NsWjBuFC5 Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iF4EAREIAAYFAldfE0cACgkQtuvagsE+DE7afAD7BuE6KJa5CxgYOtcGUqO5xcKo +iuvtk8QVmsN2D8gy1sBANnkln8OorAp3J+3YASKM9pDjRYTwsMx+W48BdxsdXa3 =5jJF -----END PGP SIGNATURE----- --Sig_/fLO+IJwMyHe4D2NsWjBuFC5-- --===============0759963825741826287== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ nix-dev mailing list nix-dev@lists.science.uu.nl http://lists.science.uu.nl/mailman/listinfo/nix-dev --===============0759963825741826287==--