pvv-nixos-config/.sops.yaml

61 lines
1.4 KiB
YAML
Raw Permalink Normal View History

2022-12-07 10:09:17 +01:00
keys:
# Users
2022-12-07 10:09:17 +01:00
- &user_danio age17tagmpwqjk3mdy45rfesrfey6h863x8wfq38wh33tkrlrywxducs0k6tpq
2022-12-17 21:51:43 +01:00
- &user_felixalb age1mrnldl334l2nszuta6ywvewng0fswv2dz9l5g4qcwe3nj4yxf92qjskdx6
2022-12-17 22:53:26 +01:00
- &user_oysteikt F7D37890228A907440E1FD4846B9228E814A2AAC
# Hosts
2023-03-26 13:14:55 +02:00
- &host_jokum age1gp8ye4g2mmw3may5xg0zsy7mm04glfz3788mmdx9cvcsdxs9hg0s0cc9kt
2022-12-17 22:49:23 +01:00
- &host_ildkule age1hn45n46ypyrvypv0mwfnpt9ddrlmw34dwlpf33n8v67jexr3lucq6ahc9x
2023-05-21 02:29:14 +02:00
- &host_bekkalokk age12nj59tguy9wg882updc2vjdusx5srnxmjyfaqve4zx6jnnsaw3qsyjq6zd
2023-03-26 13:14:55 +02:00
- &host_bicep age1sl43gc9cw939z5tgha2lpwf0xxxgcnlw7w4xem4sqgmt2pt264vq0dmwx2
2022-12-07 10:09:17 +01:00
creation_rules:
# Global secrets
- path_regex: secrets/[^/]+\.yaml$
key_groups:
- age:
- *host_jokum
- *user_danio
- *user_felixalb
2022-12-17 22:53:26 +01:00
pgp:
- *user_oysteikt
2022-12-07 10:09:17 +01:00
# Host specific secrets
- path_regex: secrets/bekkalokk/[^/]+\.yaml$
key_groups:
- age:
- *host_bekkalokk
- *user_danio
- *user_felixalb
pgp:
- *user_oysteikt
2022-12-07 10:09:17 +01:00
- path_regex: secrets/jokum/[^/]+\.yaml$
key_groups:
- age:
- *host_jokum
- *user_danio
- *user_felixalb
2022-12-17 22:53:26 +01:00
pgp:
- *user_oysteikt
2022-12-17 21:51:43 +01:00
- path_regex: secrets/ildkule/[^/]+\.yaml$
key_groups:
- age:
2022-12-17 22:49:23 +01:00
- *host_ildkule
- *user_danio
- *user_felixalb
2022-12-17 22:53:26 +01:00
pgp:
- *user_oysteikt
2023-05-07 10:14:09 +02:00
- path_regex: secrets/bicep/[^/]+\.yaml$
key_groups:
- age:
- *host_bicep
- *user_danio
- *user_felixalb
pgp:
- *user_oysteikt