add activationScript dep

mrjones2014 · Aug 15, 2024 · 1cd6be6 · 1cd6be6
1 parent 5c2d2db
commit 1cd6be6
Showing 1 changed file with 14 additions and 11 deletions.
diff --git a/modules/op-secrets.nix b/modules/op-secrets.nix
@@ -83,17 +83,20 @@ in {
 
         script = opnixScript;
       };
-      # if no generation already exists, rely on the systemd startup job;
-      # otherwise, if there already is an existing generation, reprovision
-      # secrets because we did a nixos-rebuild
-      system.activationScripts.opnix-on-rebuild.text = ''
-        ${scripts.setOpnixGeneration}
-        (( _opnix_generation > 1 )) && {
-        source ${cfg.environmentFile}
-        export OP_SERVICE_ACCOUNT_TOKEN
-        ${opnixScript}
-        }
-      '';
+      system.activationScripts.opnix-on-rebuild = {
+        # if no generation already exists, rely on the systemd startup job;
+        # otherwise, if there already is an existing generation, reprovision
+        # secrets because we did a nixos-rebuild
+        text = ''
+          ${scripts.setOpnixGeneration}
+          (( _opnix_generation > 1 )) && {
+          source ${cfg.environmentFile}
+          export OP_SERVICE_ACCOUNT_TOKEN
+          ${opnixScript}
+          }
+        '';
+        deps = [ "userbinenv" ];
+      };
     }
     {
       systemd.services = builtins.listToAttrs (builtins.map (systemdName: {