Start adding sops secrets

This commit is contained in:
Felix Albrigtsen 2023-04-23 14:27:27 +02:00
parent af6a6b8d79
commit b8841a2c3e
3 changed files with 29 additions and 0 deletions

17
.sops.yaml Normal file
View File

@ -0,0 +1,17 @@
keys:
- &user_felixalb age1n6j9umxfn5ekvmsrqngdhux0y994yh72sd5xdt6sxec86k4dyu9shsgjkw
- &host_voyager
creation_rules:
# Global secrets
- path_regex: secrets/[^/]+\.yaml$
key_groups:
- age:
- *user_felixalb
# Host specific secrets
- path_regex: secrets/voyager/[^/]+\.yaml$
key_groups:
- age:
- *host_voyager
- *user_felixalb

View File

@ -45,5 +45,9 @@
]; ];
}; };
}; };
devShells.x86_64-linux = {
default = nixpkgs.legacyPackages.x86_64-linux.callPackage ./shell.nix { };
};
}; };
} }

8
shell.nix Normal file
View File

@ -0,0 +1,8 @@
{ pkgs ? import <nixpkgs> {} }:
pkgs.mkShell {
nativeBuildInputs = with pkgs; [
sops
gnupg
];
}