Blunkall-Technologies/Olympus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

sops-nix working

Browse Source
This commit is contained in:
blaknull
2024-11-02 18:36:13 -05:00
parent 72a8dba440
commit e81b3a3ea6
4 changed files with 25 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files

28
flake.lock generated
View File

@@ -1160,12 +1160,12 @@
}, },
"locked": { "locked": {
"lastModified": 0, "lastModified": 0,
"narHash": "sha256-vhkyPcraN1gHPR50nUBwPGMdGP1p20/3n4i8uAuragY=", "narHash": "sha256-GNix63XYPLopvFgOUHyouU0d/V9lvKN9h3h1juttDgg=",
"path": "/nix/store/pvjjq7d2bcvrfx4jmgnpfj4mzwjjcncf-source/home-manager", "path": "/nix/store/ks4xdinqk8s9sd71shqcy20dbwc3aq83-source/home-manager",
"type": "path" "type": "path"
}, },
"original": { "original": {
"path": "/nix/store/pvjjq7d2bcvrfx4jmgnpfj4mzwjjcncf-source/home-manager", "path": "/nix/store/ks4xdinqk8s9sd71shqcy20dbwc3aq83-source/home-manager",
"type": "path" "type": "path"
} }
}, },
@@ -1658,11 +1658,11 @@
"locked": { "locked": {
"lastModified": 1, "lastModified": 1,
"narHash": "sha256-oZjb5biv4evAYiQhs7m1WqDt96NMLrGzn4KiYNBP01s=", "narHash": "sha256-oZjb5biv4evAYiQhs7m1WqDt96NMLrGzn4KiYNBP01s=",
"path": "/nix/store/h6akvkf3ind4w4nl87rj4yscvp7cznzs-source/packages", "path": "/nix/store/h2zmr5ar7lczwqx8yxh5lsqq6q652dkl-source/packages",
"type": "path" "type": "path"
}, },
"original": { "original": {
"path": "/nix/store/h6akvkf3ind4w4nl87rj4yscvp7cznzs-source/packages", "path": "/nix/store/h2zmr5ar7lczwqx8yxh5lsqq6q652dkl-source/packages",
"type": "path" "type": "path"
} }
}, },
@@ -1731,11 +1731,11 @@
"locked": { "locked": {
"lastModified": 1, "lastModified": 1,
"narHash": "sha256-5gepalTSnDyC1WW11Gp75FAPeex5V9M0xOUn9amViyw=", "narHash": "sha256-5gepalTSnDyC1WW11Gp75FAPeex5V9M0xOUn9amViyw=",
"path": "/nix/store/h6akvkf3ind4w4nl87rj4yscvp7cznzs-source/programs", "path": "/nix/store/h2zmr5ar7lczwqx8yxh5lsqq6q652dkl-source/programs",
"type": "path" "type": "path"
}, },
"original": { "original": {
"path": "/nix/store/h6akvkf3ind4w4nl87rj4yscvp7cznzs-source/programs", "path": "/nix/store/h2zmr5ar7lczwqx8yxh5lsqq6q652dkl-source/programs",
"type": "path" "type": "path"
} }
}, },
@@ -1746,11 +1746,11 @@
"locked": { "locked": {
"lastModified": 1, "lastModified": 1,
"narHash": "sha256-HAuZ9X84fuwUcit6NWUoJCjHj+29nST/YN6Rs8JQugY=", "narHash": "sha256-HAuZ9X84fuwUcit6NWUoJCjHj+29nST/YN6Rs8JQugY=",
"path": "/nix/store/l5fryyz3kpp9643rwvj5x1yhpcnk4rf5-source/programs", "path": "/nix/store/q4z7hs6sxabks0kgm5xfksnqk0mhpzha-source/programs",
"type": "path" "type": "path"
}, },
"original": { "original": {
"path": "/nix/store/l5fryyz3kpp9643rwvj5x1yhpcnk4rf5-source/programs", "path": "/nix/store/q4z7hs6sxabks0kgm5xfksnqk0mhpzha-source/programs",
"type": "path" "type": "path"
} }
}, },
@@ -1832,11 +1832,11 @@
"locked": { "locked": {
"lastModified": 1, "lastModified": 1,
"narHash": "sha256-0Ztx5DVQ2I7hvCK/qjGa4XTdRgbzM8rhf19m0al8lVM=", "narHash": "sha256-0Ztx5DVQ2I7hvCK/qjGa4XTdRgbzM8rhf19m0al8lVM=",
"path": "/nix/store/l5fryyz3kpp9643rwvj5x1yhpcnk4rf5-source/services/sddm", "path": "/nix/store/q4z7hs6sxabks0kgm5xfksnqk0mhpzha-source/services/sddm",
"type": "path" "type": "path"
}, },
"original": { "original": {
"path": "/nix/store/l5fryyz3kpp9643rwvj5x1yhpcnk4rf5-source/services/sddm", "path": "/nix/store/q4z7hs6sxabks0kgm5xfksnqk0mhpzha-source/services/sddm",
"type": "path" "type": "path"
} }
}, },
@@ -1903,12 +1903,12 @@
}, },
"locked": { "locked": {
"lastModified": 1, "lastModified": 1,
"narHash": "sha256-S4jXJkYHvv1ssTGJ/TbjZ1OPWjQSZWxjfcuhAMEpNJc=", "narHash": "sha256-kbOXpjltLXZf46Wj67cOsRS3RQAIon7A4y6E99ZfC6o=",
"path": "/nix/store/pvjjq7d2bcvrfx4jmgnpfj4mzwjjcncf-source/system-config", "path": "/nix/store/ks4xdinqk8s9sd71shqcy20dbwc3aq83-source/system-config",
"type": "path" "type": "path"
}, },
"original": { "original": {
"path": "/nix/store/pvjjq7d2bcvrfx4jmgnpfj4mzwjjcncf-source/system-config", "path": "/nix/store/ks4xdinqk8s9sd71shqcy20dbwc3aq83-source/system-config",
"type": "path" "type": "path"
} }
}, },

2
system-config/configuration/homebox/.sops.yaml
View File

@@ -1,5 +1,5 @@
keys: keys:
- &primary age1z20c7s7aw4jwdnfqp85lzx9gg3zk396x5pdw9gwzgvxs932m7d7qlhhwre - &primary age1xkwq2edchgu3taf2tlvraajxmgymn4vxtnpvl6ywlsswtqcp5sfswv2gzt
creation_rules: creation_rules:
- path_regex: secrets/secrets.yaml$ - path_regex: secrets/secrets.yaml$
key_groups: key_groups:

1
system-config/configuration/homebox/default.nix
View File

@@ -163,6 +163,7 @@
}; };
sops = { sops = {
age.keyFile = "/var/lib/sops/age/keys.txt";
defaultSopsFile = ./secrets/secrets.yaml; defaultSopsFile = ./secrets/secrets.yaml;
defaultSopsFormat = "yaml"; defaultSopsFormat = "yaml";

18
system-config/configuration/homebox/secrets/secrets.yaml
View File

@@ -1,21 +1,21 @@
nathan_pass: ENC[AES256_GCM,data:9DUrW2JFWwwscRmMgNoYrMU0nrSDbz37tw+wershMsRxhSavUmQCVEkz8zZ71OguAh+2vIxWBaVk9lzL/wOMFY/vPX7Z5Jq4og==,iv:rDxMkKDVxcrehzM0MKN0nQ/+WW8MA69qiNNoeTHJ2h0=,tag:VMGwTtbPwjIhyfuhc2ArGA==,type:str] nathan_pass: ENC[AES256_GCM,data:nRmwPPNwVMsDiq2ccKBUnQQ0wikcSA4rpb4lQi1NxfXWvEXhj4okvSRCOcS5vlfj6uCdYc1N5AzeOG9l9Y+bnIgvKLhoaL3drQ==,iv:McSMq7CgWYm4i6F0VcLkvsoErRhwzwvhe75mcwy5pmA=,tag:sJVLP2SrFlhAyEfHTQEHuA==,type:str]
sops: sops:
kms: [] kms: []
gcp_kms: [] gcp_kms: []
azure_kv: [] azure_kv: []
hc_vault: [] hc_vault: []
age: age:
- recipient: age1z20c7s7aw4jwdnfqp85lzx9gg3zk396x5pdw9gwzgvxs932m7d7qlhhwre - recipient: age1xkwq2edchgu3taf2tlvraajxmgymn4vxtnpvl6ywlsswtqcp5sfswv2gzt
enc: | enc: |
-----BEGIN AGE ENCRYPTED FILE----- -----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBhUnNKWUVkV1d0STBNSFR4 YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSByZitXYWtDM1BXTk9nZjg4
c2RTRTN4K2x0Q2R2QzZoYzNOd2RGNk10SkFFCkxlTDduZzhZeHNSd2JmVjgwVzVW ejk2T3YvM0lCMFExekZzWFppZjQ4SWQ0M3kwCi9ZODdsSkJtSkNjdVlUOVJONkRs
SGozTFVpNW9kaUIvWEtWb3BGeGtrTVUKLS0tIHBXYS9xK2ZuUnZ6UTBFV3Y3MWU4 Ym03WEVyUXVwWFpVcGcvZTRNc011bFEKLS0tIE43NG1oRFVNSmxhbUhXZ2hRdE9S
SGxFWjlLSVVNVDAwRTdXWENLK2x0ekEKh7NiaCQn6yvT6kyYFOXCiGv6C3PSOAky cCtyYlEzMm9QeHlHOWo0L0xObXp5c2MKfzoTSt0hI94QaxQsKKOpX7gQcZNtB7zd
Od5kW3fBMftfv1qrlhA4svT8s6KeM0ynbfNgb5wKtpZ/nfXYkcrmGw== WgeBgTwOE30vcIQr/k7a9q77l2bDYe6i71R79YHsKvsFc+7i3gL46g==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
lastmodified: "2024-11-02T22:56:51Z" lastmodified: "2024-11-02T23:33:52Z"
mac: ENC[AES256_GCM,data:PVwC5OP3CDiCUTxNwPrxSgWbMp9EuAKP88tmHvrrxnT2IQ68V9THFjajnuNiEkkVvHG9FPp/R0in8nT1NoepaDEZkheyUYq1hKzRoGWxjwQwsvrjeTyUP50++Z/zW2KkOdqaB3r+eblpCxzgyd8FH8LcXRCeC9xq4p0mub3MNSs=,iv:jTIgFV0NydDOJ8cESsiY4mvQc76MbNfi8cM4CrWY2P8=,tag:6u90UUoTBA7lXlkfKoiI8g==,type:str] mac: ENC[AES256_GCM,data:BxhVERYHcweBDrR20D2hX+QhTfPiyqo54CQ4YHxhXcvFzkKUTt6XKuzblV+/TGSmCAayyxzp5n8hLxd68H1eYNQGL0ByYgvfkWHbDjFGBYuUcuNWuvm4O3U+kZqVgctWUaNdZGM36ASNcPxbaWLd6A6ey22tA3+swfYfhEVvNT8=,iv:7w7XJ4GfCkQR0XehpmCJT12hBJlgNKkETR47UvWVqqI=,tag:a+p5mV20jObztCVe4rqS/w==,type:str]
pgp: [] pgp: []
unencrypted_suffix: _unencrypted unencrypted_suffix: _unencrypted
version: 3.8.1 version: 3.8.1