Removed agenix secret management

2025-05-18 09:29:56 +02:00
parent f8df758e3c
commit 8467795708
7 changed files with 15 additions and 219 deletions
--- a/apps/aarch64-darwin/apply
+++ b/apps/aarch64-darwin/apply
@@ -1,5 +1,8 @@
 #!/usr/bin/env bash

+VERSION=1.0
+
+# Color codes
 RED='\033[0;31m'
 GREEN='\033[0;32m'
 YELLOW='\033[1;33m'
@@ -32,69 +35,6 @@ _prompt() {
  read -r $variable
 }

-insert_secrets_output() {
-  local pattern="outputs = { self, darwin, nix-homebrew, homebrew-bundle, homebrew-core, homebrew-cask, home-manager, nixpkgs, disko, agenix } @inputs:"
-  local insert_text="secrets "
-
-  awk -v pat="$pattern" -v insert="$insert_text" '
-    $0 ~ pat {
-      sub(/} @inputs:/, ", " insert "} @inputs:"); # Replace the closing brace with the insert text followed by the brace
-      gsub(/ ,/, ","); # Correct any spaces before commas
-      print
-      next
-    }
-    { print }
-  ' flake.nix > flake.nix.tmp
-
-  mv flake.nix.tmp flake.nix
-}
-
-insert_secrets_input() {
-  # Define file path
-  FILE_PATH="flake.nix"
-
-  # Backup the original file
-  cp "$FILE_PATH" "${FILE_PATH}.bak"
-
-  # Temporary file for the text to insert
-  TEMP_FILE="temp_insert.txt"
-
-  # Write the formatted text to the temporary file
-cat > "$TEMP_FILE" << 'EOF'
-    secrets = {
-      url = "git+ssh://git@github.com/%GITHUB_USER%/%GITHUB_SECRETS_REPO%.git";
-      flake = false;
-    };
-EOF
-
-  # Check if the 'secrets' block already exists
-  if grep -q 'url = "git+ssh://git@github.com/%GITHUB_USER%/%GITHUB_SECRETS_REPO%.git"' "$FILE_PATH"; then
-      echo "The 'secrets' block already exists in the file."
-      rm "$TEMP_FILE"
-      rm "${FILE_PATH}.bak"
-      exit 0
-  fi
-
-  # Find the start and end line numbers of the 'disko' block
-  START_LINE=$(grep -n 'disko = {' "$FILE_PATH" | head -n 1 | cut -d: -f1)
-  END_LINE=$(tail -n +$START_LINE "$FILE_PATH" | grep -n '};' | head -n 1 | cut -d: -f1)
-  END_LINE=$((START_LINE + END_LINE - 1))
-
-  # Create a new file with the insertion
-  {
-      sed -n "1,${END_LINE}p" "$FILE_PATH"
-      cat "$TEMP_FILE"
-      sed -n "$((END_LINE + 1)),\$p" "$FILE_PATH"
-  } > "${FILE_PATH}.new"
-
-  # Replace the original file with the new file
-  mv "${FILE_PATH}.new" "$FILE_PATH"
-
-  # Clean up the temporary files
-  rm "$TEMP_FILE"
-  rm "${FILE_PATH}.bak"
-}
-
 ask_for_star() {
  _print "${YELLOW}Would you like to support my work by starring my GitHub repo? yes/no [yes]: ${NC}"
  local response
@@ -138,12 +78,6 @@ if [[ -z "$GIT_NAME" ]]; then
  _prompt "${YELLOW}Please enter your name: ${NC}" GIT_NAME
 fi

-_prompt "${YELLOW}Please enter your Github username: ${NC}" GITHUB_USER
-_prompt "${YELLOW}Please enter your Github secrets repository name: ${NC}" GITHUB_SECRETS_REPO
-
-export GITHUB_USER
-export GITHUB_SECRETS_REPO
-
 select_boot_disk() {
  local disks
  local _boot_disk
@@ -174,7 +108,6 @@ if [[ "$OS" != "Darwin" ]]; then
  select_boot_disk
 fi

-# Confirmation step
 confirm_details() {
  _print "${GREEN}Username: $USERNAME"
  _print "Email: $GIT_EMAIL"
@@ -186,8 +119,6 @@ confirm_details() {
    _print "Hostname: $HOST_NAME${NC}"
  fi

-  _print "${GREEN}Secrets repository: $GITHUB_USER/$GITHUB_SECRETS_REPO${NC}"
-
  _prompt "${YELLOW}Is this correct? yes/no: ${NC}" choice

  case "$choice" in
@@ -205,7 +136,6 @@ confirm_details() {
  esac
 }

-# Call the confirmation function
 confirm_details

 # Function to replace tokens in each file
@@ -217,8 +147,6 @@ replace_tokens() {
      LC_ALL=C LANG=C sed -i '' -e "s/%USER%/$USERNAME/g" "$file"
      LC_ALL=C LANG=C sed -i '' -e "s/%EMAIL%/$GIT_EMAIL/g" "$file"
      LC_ALL=C LANG=C sed -i '' -e "s/%NAME%/$GIT_NAME/g" "$file"
-      LC_ALL=C LANG=C sed -i '' -e "s/%GITHUB_USER%/$GITHUB_USER/g" "$file"
-      LC_ALL=C LANG=C sed -i '' -e "s/%GITHUB_SECRETS_REPO%/$GITHUB_SECRETS_REPO/g" "$file"
    else
      # Linux or other
      sed -i -e "s/%USER%/$USERNAME/g" "$file"
@@ -227,16 +155,10 @@ replace_tokens() {
      sed -i -e "s/%INTERFACE%/$PRIMARY_IFACE/g" "$file"
      sed -i -e "s/%DISK%/$BOOT_DISK/g" "$file"
      sed -i -e "s/%HOST%/$HOST_NAME/g" "$file"
-      sed -i -e "s/%GITHUB_USER%/$GITHUB_USER/g" "$file"
-      sed -i -e "s/%GITHUB_SECRETS_REPO%/$GITHUB_SECRETS_REPO/g" "$file"
    fi
  fi
 }

-# Insert secrets repo into flake
-insert_secrets_input
-insert_secrets_output
-
 # Traverse directories and call replace_tokens on each Nix file
 export -f replace_tokens
 find . -type f -exec bash -c 'replace_tokens "$0"' {} \;