From d96eda0e683d53779d9ebae53d7897d96216511a Mon Sep 17 00:00:00 2001 From: Franck Cuny Date: Sat, 14 Dec 2024 09:45:26 -0800 Subject: use agenix to manage secrets in the repository --- secrets/restic-backups.age | 7 +++++++ secrets/secrets.nix | 12 ++++++++++++ 2 files changed, 19 insertions(+) create mode 100644 secrets/restic-backups.age create mode 100644 secrets/secrets.nix (limited to 'secrets') diff --git a/secrets/restic-backups.age b/secrets/restic-backups.age new file mode 100644 index 0000000..5e8ea2f --- /dev/null +++ b/secrets/restic-backups.age @@ -0,0 +1,7 @@ +age-encryption.org/v1 +-> ssh-ed25519 9Ia8+w mPCN4AjX68aTAy5yMB2ZK7dGHex/1KzgHtIwH3EGn10 +qkAnGg8E6CaGoOFTl5KrkSrb2JVuUjRK2nJQM8UUQec +-> ssh-ed25519 pXC0Mg pdnJb3OKYTDJ2I083v7On6MMfAm8GrgVWVtet/aJzCM +qs5Q/xk6KFWgFzN5L+oWAw6VGiGZ1ZXRt4WZglnrdV0 +--- 2ev3nTb+Qhfg6CZnPOJcayE9mp4B1QcHmywEM4al+R0 +PSܮR; z_b25ωEp5 Wp \ No newline at end of file diff --git a/secrets/secrets.nix b/secrets/secrets.nix new file mode 100644 index 0000000..69c15f3 --- /dev/null +++ b/secrets/secrets.nix @@ -0,0 +1,12 @@ +let + fcuny = + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINBkozy+X96u5ciX766bJ/AyQ3xm1tXZTIr5+4PVFZFi"; + users = [ fcuny ]; + + vm-aarch64 = + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILvVTAPXBOynTeMXvti6Xt9luCJAHaHZBb6aGs0SDoO"; + vm-synology = + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHf5gXGbOjaoqdpCDnHjBMhikuM0smLKhUo7J83+by+K"; + systems = [ vm-aarch64 vm-synology ]; +in +{ "restic-backups.age".publicKeys = [ fcuny vm-synology ]; } -- cgit 1.4.1