ctucx.git: nixfiles

secrets/agenix: add support to read age-privatekey vio `bitwarden-cli`

diff --git a/secrets/agenix b/secrets/agenix
@@ -8,7 +8,15 @@ trap "rm -f $tempfile" SIGINT SIGTERM ERR EXIT
 touch $tempfile
 chmod 600 $tempfile
 
-echo "$(pass agenix-privkey)" > $tempfile
+if [ -x "$(which bw)" ]; then
+	privkey=$(bw get notes ea70a317-7cac-455e-bee0-7c97d7505a7b)
+	if [ $? -ne 0 ]; then exit; fi;
+else
+	privkey=$(pass agenix-privkey)
+	if [ $? -ne 0 ]; then exit; fi;
+fi
+
+echo "${privkey}" > $tempfile
 
 cd "`git rev-parse --show-toplevel`/secrets"