From dadd5bf7205eddb0a17330426bcabdccd6923615 Mon Sep 17 00:00:00 2001
From: Matthew Salerno <m@salernosection.com>
Date: Wed, 13 Dec 2023 22:01:16 -0500
Subject: [PATCH] add tags to agenix-rekey provider

---
 key-providers/agenix-rekey.nix | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/key-providers/agenix-rekey.nix b/key-providers/agenix-rekey.nix
index 0ad0ca6..da55a69 100644
--- a/key-providers/agenix-rekey.nix
+++ b/key-providers/agenix-rekey.nix
@@ -15,6 +15,10 @@ with lib;
         mode = "640";
         group = if (builtins.match ".*networkd.*" config.wirenix.configurer != null) then "systemd-network" else "root";
         rekeyFile = config.wirenix.secretsDir + /wirenix-peer- + localPeerName + ".age";
+        generator.tags = [
+          "wirenix"
+          "wirenix.peer"
+        ];
         generator.script = {pkgs, file, ...}: ''
           priv=$(${pkgs.wireguard-tools}/bin/wg genkey)
           ${pkgs.wireguard-tools}/bin/wg pubkey <<< "$priv" > ${lib.escapeShellArg (lib.removeSuffix ".age" file + ".pub")}
@@ -27,6 +31,10 @@ with lib;
         mode = "640";
         group = if (builtins.match ".*networkd.*" config.wirenix.configurer != null) then "systemd-network" else "root";
         rekeyFile = config.wirenix.secretsDir + /wirenix-subnet- + name + ".age";
+        generator.tags = [
+          "wirenix"
+          "wirenix.subnet"
+        ];
         generator.script = {pkgs, ...}: ''
           psk=$(${pkgs.wireguard-tools}/bin/wg genpsk)
           echo "$psk"