diff --git a/.sops.yaml b/.sops.yaml index 84d0f4ef..ff72b75a 100644 --- a/.sops.yaml +++ b/.sops.yaml @@ -1,6 +1,7 @@ keys: - &user_desko_colin age1tnl4jfgacwkargzeqnhzernw29xx8mkv73xh6ufdyde6q7859slsnzf24x - &user_lappy_colin age1ml8kkppftygu2wag57yld98jlrkh4avp54eheq7q0fa2rup843csqjajs6 + - &user_uninsane_colin age1z8fauff34cdecr6sjkre260luzxcca05kpcwvhx988d306tpcejsp63znu - &user_moby_colin age1lt739n2tq7dmpglvntjr9j2r7426md7rat7x9w930gagtx4jyvnqwts2al - &host_desko age1s0v4fm203ap6mckcz3djw8hx30uqu87xfhfdajpmyf8rfrf5xs5swpz6m6 creation_rules: @@ -9,5 +10,6 @@ creation_rules: - age: - *user_desko_colin - *user_lappy_colin + - *user_uninsane_colin - *user_moby_colin - *host_desko diff --git a/helpers/universal/users.nix b/helpers/universal/users.nix index 54c36741..5b6ea909 100644 --- a/helpers/universal/users.nix +++ b/helpers/universal/users.nix @@ -32,6 +32,7 @@ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGSDe/y0e9PSeUwYlMPjzhW0UhNsGAGsW3lCG3apxrD5 colin@colin.desktop" "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIG+MZ/l5d8g5hbxMB9ed1uyvhV85jwNrSVNVxb5ujQjw colin@lappy" "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPU5GlsSfbaarMvDA20bxpSZGWviEzXGD8gtrIowc1pX colin@desko" + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPS1qFzKurAdB9blkWomq8gI1g0T3sTs9LsmFOj5VtqX colin@uninsane" # TODO: should probably only let this authenticate to my server "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGCLCA9KbjXaXNNMJJvqbPO5KQQ64JCdG8sg88AfdKzi colin@moby" ]; diff --git a/secrets/example.yaml b/secrets/example.yaml index ed665de4..e38051fc 100644 --- a/secrets/example.yaml +++ b/secrets/example.yaml @@ -17,38 +17,47 @@ sops: - recipient: age1tnl4jfgacwkargzeqnhzernw29xx8mkv73xh6ufdyde6q7859slsnzf24x enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBIZDFoUlNBS3lCTGZXT2FZ - U3pjNFVWNDF5d294S1dzS3V6ZzhNRCs1SFVJCjVxQ1BxQlczTy9vOVI1V2JKZjN2 - c2Exa2ttTHIyc21USzZYN2t1WE1sZGsKLS0tIENXamx6TXBtZElOWTRybURybWky - WHNpcmdxR2NmTDdDcUlZbC9sQkJPY0kKb7VCtdYpKmf3FlxOGdIjoCJ9Ip/0F5m1 - QT9HQcxXq4Olc9Ekd4ah9l4bphAgmH4DKkb4ba7ShJ+U4bw3279Bdw== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA1d2htUlhNWjZ1REN6a0E5 + Y3VBczQvdm1WS244bXFZemJQcmR5YStseTFRCklKaHBQK1Y5YlJjMGE1QVhLT2Z4 + UzZJcTFMOU5KRXFKS3F5L0tVWUtOQncKLS0tIDJxTmJPWWp6WjJMS25XbzlTTHBp + bmhmbWRCSzVtanlucFl2eXpyRjNBcDAKNexc6EvkEVYw79uazSHtGoknfmKGN3c+ + hBk1gHU2XEOZk+G6mPAVeToiuWTAmFOha1axGYB3L9sU0lgW0/HfnA== -----END AGE ENCRYPTED FILE----- - recipient: age1ml8kkppftygu2wag57yld98jlrkh4avp54eheq7q0fa2rup843csqjajs6 enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBGVjd2eUlQMUM4QmExVGhT - dnpBNkpnbkdGcU0yTzJhQjNvZ2hXZTdWSm4wCjB1djdMTzZpYkhnTWV4ZmgzanN3 - cG83RlF1OGZGQlhWQTJUZUwxUlNUWU0KLS0tIGtMeFZjVldjS3VJNVB3bWxnWXNZ - cmJHbDFtZTQ5OUZ6SURVNUt6MlU5YkUKe/d1hc7x9/Cru8gse+kBgDmR32ezHv5J - j9YDUv5QJwAwgnEVhhTHoYnSpHQtDIeoSzURxhVwK/tgHpCaqFSq2w== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBkcXR0QUlTR1E3MFhVMWhq + bXNvRE1wY1ZQbjg3L0ZZbDA4TFNTNGFaRUJJClVEWTB6YjM3Qnk0RmxieE9DM0FI + cFRKT1R6M2JiczRvQ01uV3NnaVU2aDQKLS0tIFkvQm5BT1IwV0FzamNKWnE2NCt2 + UTQxMCs3Vm9qSmhvbVdEdEFUNnlQTG8KNxzH/dY2qECQMHyIrx3mP71DxNzzCcnQ + T7QzVjhWMmTSgy6HuPIQV1pjJ+3A3Ir5upEn50QlGn9usJcQREzG6w== + -----END AGE ENCRYPTED FILE----- + - recipient: age1z8fauff34cdecr6sjkre260luzxcca05kpcwvhx988d306tpcejsp63znu + enc: | + -----BEGIN AGE ENCRYPTED FILE----- + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBMYjFlTHNKdUNOTmVNamRZ + eXVteFhoSWZtU2xQME4zUTl2Y1QxYzYrY0JFCjQ3SmdoMFovWUxKOEdscjl3ZHpv + UVJUakhPNjBHUkxRYzNuTW56TTlMelkKLS0tIHZTeVJiV3pOczF0ZjVCcjl5WmEw + L2ZTUExpbWRydkkzdFFDdlFYdDhoRjAKyehoIJQ+ZV5Wv3MoUbsP+3Ksp84iQOKd + 9vDf7PRa2hmflbadIgHqFAaQu3b1+fezaE4dPBfXDaUMdJ1tWmSPfw== -----END AGE ENCRYPTED FILE----- - recipient: age1lt739n2tq7dmpglvntjr9j2r7426md7rat7x9w930gagtx4jyvnqwts2al enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSArMThScUw4emh6Q3JGMTJ2 - NC9aYjlxL1liWmFqZUN0WHJsRXoxdGNIc2tVCjJmbm96NStwUnY5N0lNVEZSZkZI - Zk9Wcm1jSit6TUE0QnBHQzBzK2l0OTQKLS0tIEswRGhrSFUwbzNXeXAwYWUzejZT - TTlxRjh6QzVETE0yeGZVRFJzNTVMNEEKUNttIPaTCsyGbycDdxbZ8tYtj4fzYgjM - hb+BL0VzJpJjxB3077KAH6eryJe0ZlS0N0nrMy8/cKHUcDW52DhDRA== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBUVlhJSitRNTRYRk5QclFS + NDcydzVsS3hLVlk3OThCZ1JZOUZmQW41WjBNCkxCRER5UXJRR2VvNitYaytNQTF4 + ZVE3Z2llUjlES0VReDJUckxod3NsVUEKLS0tIEZtVXFEMDFMUzRNdWJ2Y3Rxc2dX + MGNONWhzTzhhQWVGa3l1YTR1a294NXMKrnS4TCByrs7mBwt8zYdOsAO6IaKdgVlU + QwACSquql2Oi/Wsc7LMzx2kwkMG/BhOzpXL9yqNnx3XAB2HOD8YLhQ== -----END AGE ENCRYPTED FILE----- - recipient: age1s0v4fm203ap6mckcz3djw8hx30uqu87xfhfdajpmyf8rfrf5xs5swpz6m6 enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBCZGNKRmx5UHZBYXY2dGJp - MmxESVY2MkxmaENLUzlOcFpweDMwRHJUTkdFCkVabW1kbXlIRUxMYWxTVXcrNWw0 - Z1ZlRFVXUWV5dTV1RkUvUXgvZEpCVEkKLS0tIEdobjZYNXNDVmIwQ0xZR1M5S0Q4 - dnh3NE9RSGEwZjMvRjRVVXM4V3ZTR0UKJ4Rw+NoTwunpy8ZB1wQvRxs3x/Uq+1sn - n0XzsxEViDyA1+xlmOsUmrpdESqSGHLwIuYCWbppI2KhZjnbR2iSUQ== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBnOWIrTUczcHllZHNoU1Zp + RHljZlNGcktHeVVVaXIvOUk2S3JQZWNZN1ZFCk9FZjZic0hNaDZWazdaamQ0N0Fx + YmVLbUJGWER6YjdaaUQrYjAvVjF4NXMKLS0tIDNwSW5iYnluVzV4Rk5sY2xmc0Fj + NVNjYldlM2RwZURrNndoT1lINmpqSkEKVzfH6AKsVPhgvBNXe2ArzkNg7s01fcAF + ReR1daJKNOkKCR1+SVaUlWRZGswTXMqImb4FhlbEgxiL2y6hyTrN1w== -----END AGE ENCRYPTED FILE----- lastmodified: "2022-06-06T23:21:20Z" mac: ENC[AES256_GCM,data:pU5882gcNu2hmINn/xnDriHX8PvrEqepnf8/B+WGYrkd6yqpsVPCivlhGFmPvPaRt/o0AVMuH7Wbwm3+rmOpR1LFfJUtnFcejWVpVNE6BuxuWTdF90EENUStKg3DWV4uspRlQds856GR7pkDblkmAOgWZ7zD3ILS3sF/fLuFLr0=,iv:TCsuetCjhhJc/0K4UQrCD9+zWEVssI6Yx0AQ/+eDSn0=,tag:ZsKZZB5S9bgLIRJBLO/KgQ==,type:str]