From aaae47a35398d50d57f8bd583d708db59983ffd3 Mon Sep 17 00:00:00 2001
From: Michael Fellinger <michael.fellinger@iohk.io>
Date: Tue, 10 Oct 2023 16:42:40 +0200
Subject: [PATCH] fix location of key

---
 .github/workflows/update.yml | 3 ++-
 Justfile                     | 4 +++-
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/update.yml b/.github/workflows/update.yml
index 68734de..2080109 100644
--- a/.github/workflows/update.yml
+++ b/.github/workflows/update.yml
@@ -40,7 +40,7 @@ jobs:
             substituters = https://cache.iog.io https://cache.nixos.org/
             min-free = 1073741824
             max-free = 2147483648
-            secret-key-files = hydra_key
+            secret-key-files = /home/runner/work/capkgs/capkgs/hydra_key
       - run: echo "${{secrets.NIX_SIGNING_KEY}}" > hydra_key
       - run: |
           nix develop \
@@ -53,3 +53,4 @@ jobs:
           AWS_ACCESS_KEY_ID: "${{secrets.AWS_ACCESS_KEY_ID}}"
           AWS_SECRET_ACCESS_KEY: "${{secrets.AWS_SECRET_ACCESS_KEY}}"
           S3_ENDPOINT: "${{secrets.S3_ENDPOINT}}"
+          NIX_SIGNING_KEY_FILE: "/home/runner/work/capkgs/capkgs/hydra_key"
\ No newline at end of file
diff --git a/Justfile b/Justfile
index 73f9895..16e1acb 100644
--- a/Justfile
+++ b/Justfile
@@ -2,10 +2,12 @@
 list:
     just -l
 
+secret_key := env_var_or_default('NIX_SIGNING_KEY_FILE', "hydra_key")
+
 # Based on releases.json, upload the CA contents and update packages.json
 packages *ARGS:
     ./packages.cr \
-        --to "s3://devx?secret-key=hydra_key&endpoint=${S3_ENDPOINT}&region=auto&compression=zstd" \
+        --to "s3://devx?secret-key={{secret_key}}&endpoint=${S3_ENDPOINT}&region=auto&compression=zstd" \
         --from-store https://cache.iog.io \
         --systems x86_64-linux