make all age use conditional

2025-10-27 23:03:40 -05:00 · 2025-10-27 23:03:40 -05:00 · 3cb6fba59e
commit 3cb6fba59e
parent b2f0476412
8 changed files with 73 additions and 9 deletions
--- a/hosts/h001/nginx.nix
+++ b/hosts/h001/nginx.nix
@ -1,5 +1,6 @@
 {
  config,
+  lib,
  ...
 }:
 let
@ -7,10 +8,16 @@ let
    proxyWebsockets = true;
    proxyPass = "http://localhost:7575";
  };
+  hasSecret =
+    secret:
+    let
+      secrets = config.age.secrets or { };
+    in
+    secrets ? ${secret} && secrets.${secret} != null;
 in
 {
  # TODO transfer these to o001 to use same certs?
-  security.acme = {
+  security.acme = lib.mkIf (hasSecret "linode_rw_domains") {
    acceptTerms = true;
    defaults.email = "admin@joshuabell.xyz";
    certs."joshuabell.xyz" = {