From adeccce06e0206ea2a36f320299ec16dfc98da01 Mon Sep 17 00:00:00 2001
From: Erik Arvstedt <erik.arvstedt@gmail.com>
Date: Thu, 29 Jul 2021 20:26:33 +0200
Subject: [PATCH] lnd: simplify use of curl

---
 modules/lnd.nix | 10 ++--------
 1 file changed, 2 insertions(+), 8 deletions(-)

diff --git a/modules/lnd.nix b/modules/lnd.nix
index 950b3b0..633bb63 100644
--- a/modules/lnd.nix
+++ b/modules/lnd.nix
@@ -201,7 +201,7 @@ in {
           # Retrying is necessary because it can happen that the lnd socket is
           # existing, but the RPC service isn't yet, which results in error
           # "waiting to start, RPC services not available".
-          curl = "${pkgs.curl}/bin/curl -s --show-error --retry 10";
+          curl = "${pkgs.curl}/bin/curl -s --show-error --retry 10 --cacert ${secretsDir}/lnd-cert";
           restUrl = "https://${cfg.restAddress}:${toString cfg.restPort}/v1";
         in [
           (nbLib.script "lnd-create-wallet" ''
@@ -216,14 +216,11 @@ in {
               if [[ ! -f "$mnemonic" ]]; then
                 echo Create lnd seed
                 umask u=r,go=
-                ${curl} \
-                  --cacert ${secretsDir}/lnd-cert \
-                  -X GET ${restUrl}/genseed | ${pkgs.jq}/bin/jq -c '.cipher_seed_mnemonic' > "$mnemonic"
+                ${curl} -X GET ${restUrl}/genseed | ${pkgs.jq}/bin/jq -c '.cipher_seed_mnemonic' > "$mnemonic"
               fi
 
               echo Create lnd wallet
               ${curl} --output /dev/null \
-                --cacert ${secretsDir}/lnd-cert \
                 -X POST -d "{\"wallet_password\": \"$(cat ${secretsDir}/lnd-wallet-password | tr -d '\n' | base64 -w0)\", \
                 \"cipher_seed_mnemonic\": $(cat "$mnemonic" | tr -d '\n')}" \
                 ${restUrl}/initwallet
@@ -237,7 +234,6 @@ in {
               echo Unlock lnd wallet
               ${curl} \
                 -H "Grpc-Metadata-macaroon: $(${pkgs.xxd}/bin/xxd -ps -u -c 99999 '${networkDir}/admin.macaroon')" \
-                --cacert ${secretsDir}/lnd-cert \
                 -X POST \
                 -d "{\"wallet_password\": \"$(cat ${secretsDir}/lnd-wallet-password | tr -d '\n' | base64 -w0)\"}" \
                 ${restUrl}/unlockwallet
@@ -245,7 +241,6 @@ in {
             state=""
             while [ "$state" != "RPC_ACTIVE" ]; do
               state=$(${curl} \
-                --cacert ${secretsDir}/lnd-cert \
                 -d '{}' \
                 -X POST \
                 ${restUrl}/state |\
@@ -261,7 +256,6 @@ in {
               macaroonPath="$RUNTIME_DIRECTORY/${macaroon}.macaroon"
               ${curl} \
                 -H "Grpc-Metadata-macaroon: $(${pkgs.xxd}/bin/xxd -ps -u -c 99999 '${networkDir}/admin.macaroon')" \
-                --cacert ${secretsDir}/lnd-cert \
                 -X POST \
                 -d '{"permissions":[${cfg.macaroons.${macaroon}.permissions}]}' \
                 ${restUrl}/macaroon |\