nixos-config/.sops.yaml
Simon Bruder 4a8a7e0a4f
Use sops for secrets
Since I currently do not have access to sayuri, sayuri’s migration is
not done yet. The host keys and wg-home-private-key secret still have to
be added.
2021-04-06 14:05:48 +02:00

29 lines
669 B
YAML

keys:
- &simon 47E7559E037A35652DBBF8AA8D3C82F9F309F8EC
- &fuuko 2372651C56E22972C2D9F3F569C8187C9C43754E
- &nunotaba 8C5091AEA213FB0642BD46F943EE19743FAC1D5C
- &vueko BB046D773F54739757553A053CB9B8EFD7FED749
creation_rules:
- path_regex: machines/nunotaba/secrets\.yaml$
key_groups:
- pgp:
- *simon
- *nunotaba
- path_regex: machines/vueko/secrets\.yaml$
key_groups:
- pgp:
- *simon
- *vueko
- path_regex: machines/fuuko/secrets\.yaml$
key_groups:
- pgp:
- *simon
- *fuuko
- path_regex: secrets\.yaml$
key_groups:
- pgp:
- *simon
- *nunotaba
- *vueko
- *fuuko