secrets-store: print message once

2020-10-27 07:47:19 +01:00 · 2020-10-27 07:47:19 +01:00 · f42a287ca2
commit f42a287ca2
parent 05d878545c
1 changed files with 4 additions and 2 deletions
--- a/custom/modules/secrets-store.nix
+++ b/custom/modules/secrets-store.nix
@ -126,13 +126,15 @@ in {
  # `user` activation script hasn't run yet.
  config.system.activationScripts.secrets-own = {
    deps = [ "secrets-copy" "users" ];
-    text = concatMapStrings (pair:
+    text =
+    ''
+    echo setting secrets ownership...
+    '' + concatMapStrings (pair:
    let
      name = "${concatStringsSep "-" pair.path}";
      secret = pair.value;
    in
      ''
-        echo setting secrets store ownership...
        # Set ownership of ${name}
        chown ${secret.user}:${secret.group} /run/secrets/${name}
      '') secretFiles;