From 5e4d8a007254b9811c86b2ea142a280c9828271d Mon Sep 17 00:00:00 2001 From: Franck Cuny Date: Wed, 13 Apr 2022 10:23:20 -0700 Subject: secrets: move the actual secrets with hosts config Having the secrets closer to the host is easier to manage. At the moment I don't have secrets that are shared across multiple hosts, so that's an OK approach. --- hosts/aptos/secrets/secrets.nix | 4 ++++ hosts/aptos/secrets/wireguard_privatekey.age | Bin 0 -> 467 bytes 2 files changed, 4 insertions(+) create mode 100644 hosts/aptos/secrets/secrets.nix create mode 100644 hosts/aptos/secrets/wireguard_privatekey.age (limited to 'hosts/aptos') diff --git a/hosts/aptos/secrets/secrets.nix b/hosts/aptos/secrets/secrets.nix new file mode 100644 index 0000000..28c4078 --- /dev/null +++ b/hosts/aptos/secrets/secrets.nix @@ -0,0 +1,4 @@ +let + aptos = + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIdlm/qoR/dnMjZhVSTtqFzkgN3Yf9eQ3pgKMiipg+dl"; +in { "wireguard_privatekey.age".publicKeys = [ aptos ]; } diff --git a/hosts/aptos/secrets/wireguard_privatekey.age b/hosts/aptos/secrets/wireguard_privatekey.age new file mode 100644 index 0000000..2f6edf3 Binary files /dev/null and b/hosts/aptos/secrets/wireguard_privatekey.age differ -- cgit 1.4.1