You're right! I didn't entirely think that one through, shouldn't reply to
emails before my morning cup of coffee ;)
Ollie
On Thu, May 12, 2016 at 9:48 AM Peter Simons <sim...@nospf.cryp.to> wrote:
> Hi Oliver,
>
> > One option is to introduce these credentials as parameters to your
> network
> > evaluation:
> >
> > { secretCertificate }:
> > {
> > web = { ... } : ...
> > }
> >
> > Then you will need to set this parameter when you do deployments in
> order to
> > evaluate the network expression and perform deployments.
>
> I am sorry if I'm missing something terribly obvious, but I wonder how
> that helps getting the secret onto the deployed machines without having
> it added to the Nix store? You cannot say something to the effect of
> "store that information in /etc/my-secret" without going through a Nix
> derivation somewhere, can you?
>
> Best regards,
> Peter
>
> _______________________________________________
> nix-dev mailing list
> nix-dev@lists.science.uu.nl
> http://lists.science.uu.nl/mailman/listinfo/nix-dev
>
_______________________________________________
nix-dev mailing list
nix-dev@lists.science.uu.nl
http://lists.science.uu.nl/mailman/listinfo/nix-dev
