Comparison of secret managing schemes: Difference between revisions
imported>Lucc |
imported>Lucc |
||
Line 132: | Line 132: | ||
[https://discourse.nixos.org/t/using-an-external-secret-file-in-a-nix-sandboxed-build/3274 on discourse] | [https://discourse.nixos.org/t/using-an-external-secret-file-in-a-nix-sandboxed-build/3274 on discourse] | ||
about build time secrets | about build time secrets | ||
| | | {{ic|builtins.readfile}} can read any file, {{ic|builtins.exec}} can execute commands and thus query any kind of database or passwordmanager etc | ||
| | | these functions return values in a nix expression, it is up to the user what happens to these values in `configuration.nix` | ||
| | | see "build time" | ||
| | | see "build time" | ||
| | | | ||
| | | |