From f43f7ae8ff5d15555558a390154f0fcf8497a67a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Charlotte=20=F0=9F=A6=9D=20Delenk?= Date: Mon, 11 Nov 2024 08:45:56 +0100 Subject: [PATCH] use keys.yaml --- .sops.yaml | 2 +- users/darkkirb/home-manager/keys.txt | 24 ------------------- users/darkkirb/home-manager/keys.yaml | 33 +++++++++++++++++++++++++++ users/darkkirb/home-manager/sops.nix | 2 +- 4 files changed, 35 insertions(+), 26 deletions(-) delete mode 100644 users/darkkirb/home-manager/keys.txt create mode 100644 users/darkkirb/home-manager/keys.yaml diff --git a/.sops.yaml b/.sops.yaml index 4fc3a502..def7eecb 100644 --- a/.sops.yaml +++ b/.sops.yaml @@ -35,7 +35,7 @@ creation_rules: - *pc-installer - *rainbow-resort - *thinkrac - - path_regex: users/darkkirb/home-manager/keys.txt$ + - path_regex: users/darkkirb/home-manager/keys.yaml$ key_groups: - age: - *base diff --git a/users/darkkirb/home-manager/keys.txt b/users/darkkirb/home-manager/keys.txt deleted file mode 100644 index 15548410..00000000 --- a/users/darkkirb/home-manager/keys.txt +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data: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,iv:tjngwRqzOYlIv95EZyA8GrxfKXpQbqH8J/bbHQiKxDc=,tag:F3P2NBYy8HA/j0UpyOUi7w==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age1tltjgexkp5fz3rum4j0k66ty5q4u8ptvkgkepumd20zal24g2qfs5xgw76", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBzUDVMZHdPM3lvSkd2OTNP\nTUczejFIUk5NVU1LSFdJSks2UUIvZ3NwVUdzCmpQMEgzNmlvVnp0MW5NZ2w1Y1Qz\nRStIYU9oMGFRbEZmWk9VeENVRldwNEEKLS0tIHBLajlPL2d2eklZaUZvRDhBWDVW\nYUxuZVRtR1pxMU1MSFV0QW1sU3BaaXMKCVHt6/wp/vMbxxC+gI241fZx0sBloYRK\nN97rm72FMt9mjy1ERwPDy2dyXxGjxO4ooxB4G7sRGju/lbgC0VC9bA==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15g6tzvcmcp3ae4hwnn4pwewat6eq9unlhtjrlaka6rf94ej9dd5qqpgt7u", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBWbW1RdWdBMXYyTy9zVC9Z\nSTErQUtuOStxWjRlQVRNUVdpNlpFa1Q3T0VFCkkvMURIQWozOFBaNkdNbWswdjFs\nQXZpYVBYcWdwWTFDL0ZKNjRmVDZuZzAKLS0tIFZ1MVJHZURiNFRWRzVYemhLd0sw\nWFVEbmpXVisrdWNSU3ptUHBMb0JhVHMKI6aV4l/B/ozktYllAzeT1nj7EjuccWJD\nTXUutNaZOMHkXycz8uphr3nlgzwyrCMeNRoEPt6k0oZSTSYT1cThVw==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-11-11T07:27:21Z", - "mac": "ENC[AES256_GCM,data:7L8fWWMeYPJCMz6fRb6IuGwWd7oZOjqB9KGHJ26SnhVKYB9/mNp86CC5UMi5ZparnJPSG/iPqnFZ10anumFAx9j/qi81qVg64uwFQWN1NpF00gnDaoziTFgQ1W++NHJH1+H0dDHOXGgo15Tp6Q0HEyget+fH/fz2BqCPqfNcFxc=,iv:cGHybVC+bL/GyKdj24PWmZ866jqdAX5R/lCPUoI71NE=,tag:PRG4eEFApwpWMGNqxaqgFw==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.9.1" - } -} \ No newline at end of file diff --git a/users/darkkirb/home-manager/keys.yaml b/users/darkkirb/home-manager/keys.yaml new file mode 100644 index 00000000..dbbf2c07 --- /dev/null +++ b/users/darkkirb/home-manager/keys.yaml @@ -0,0 +1,33 @@ +.config: + sops: + age: + keys.txt: ENC[AES256_GCM,data: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,iv:p2Z7ym1g+JFbWSeCysURKcH/9ow6KzPf6WPa19Wf4FU=,tag:lhTalpb2GOV6tRYOatchjw==,type:str] +sops: + kms: [] + gcp_kms: [] + azure_kv: [] + hc_vault: [] + age: + - recipient: age1tltjgexkp5fz3rum4j0k66ty5q4u8ptvkgkepumd20zal24g2qfs5xgw76 + enc: | + -----BEGIN AGE ENCRYPTED FILE----- + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB4clo0REE3VnVxMUFYWFVa + YzRMcVBGZGNDUFpuT3RRejRTOWFQa2h5dERrCnFhWmpCdk9vNVphV2h4eTJJUTha + MUp2T3A3MWZLclZpNHFOb0huVWFVWWMKLS0tIDlkb1pPVEh0UndYdDBncG56VHNE + YXJ0b0J2b0k4b0lrWWVtWUwzcHlsbVEKdVLrTY5Xaviy+JF2sSqsPvVnkHJ8KK+D + 33QUoCH1awLcZSPZPyvAjEIZ/MKMNa4RYYL2xUhlmwzXW1I+Z8voYQ== + -----END AGE ENCRYPTED FILE----- + - recipient: age15g6tzvcmcp3ae4hwnn4pwewat6eq9unlhtjrlaka6rf94ej9dd5qqpgt7u + enc: | + -----BEGIN AGE ENCRYPTED FILE----- + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA3Ri9zcTZ5M2hDMkpEeXVG + M0R1NmhrbjJTVWVUSkFGa3lIa3FTS2Z5bUU4ClBWT1lEZUlhLzVzTEN0blVqTzRt + emwwK0dkMk10Y2xSenBZSHJqalhGT1kKLS0tIGUxRGRkUTRNNVVoYi9yTUxaQVhC + MTZ4VWZ0MEFaQjZzOSt1VzBDWC9aU0UKHwylHC9EZI2QMb+B+qCxaikRL5MRHBfd + UGr6njNSWIVcg6tpNneXp+bC6k6HLLPTg2b4Lupt+WRnaTFLY8yADQ== + -----END AGE ENCRYPTED FILE----- + lastmodified: "2024-11-11T07:45:30Z" + mac: ENC[AES256_GCM,data:XG46XbOQ7hGb8t93WDmr4zCr92KOJTCJnOV9fxGOl0nvD1vnqoVX8oFXwCwq0oBF8bGdecWzmeetVTbYjgn0y4e2nhZt8aULL+5MAV9zmVbfBDzdPtyV4yOdDfMX/0Vaf/nlXJgw0pNK+wqLCRXe1UG23wq1IttYlhWPHaEW2AA=,iv:tGJ8u9BSxyBVx620NC5M1znHur2K2V6I5/qsrtnxxs4=,tag:hPKudVRE/n5Lb5Zg4kFtVg==,type:str] + pgp: [] + unencrypted_suffix: _unencrypted + version: 3.9.1 diff --git a/users/darkkirb/home-manager/sops.nix b/users/darkkirb/home-manager/sops.nix index 8a3871b7..7ae03125 100644 --- a/users/darkkirb/home-manager/sops.nix +++ b/users/darkkirb/home-manager/sops.nix @@ -1,7 +1,7 @@ { config, ... }: { sops.secrets.".config/sops/age/keys.txt" = { - sopsFile = ./keys.txt; + sopsFile = ./keys.yaml; path = "${config.home.homeDirectory}/.config/sops/age/keys.txt"; }; }