diff options
author | Mark Nipper <nipsy@bitgnome.net> | 2024-05-28 23:06:26 -0700 |
---|---|---|
committer | Mark Nipper <nipsy@bitgnome.net> | 2024-05-28 23:06:26 -0700 |
commit | 660895110f247c0ac3a76709a38ca5f5ea2fbfcb (patch) | |
tree | 10e6ae419db3722c8a3deacef155a654a988cad9 | |
parent | d3c6179ecd651088a735d1d5c7b14f405cddd8f4 (diff) | |
download | nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar.gz nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar.bz2 nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar.lz nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar.xz nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar.zst nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.zip |
Add documentation and darkstar key
-rw-r--r-- | .sops.yaml | 18 |
1 files changed, 17 insertions, 1 deletions
@@ -1,6 +1,22 @@ +# Make a user key: +# mkdir -p ~/.config/sops/age && age-keygen -o ~/.config/sops/age/keys.txt && chmod 00600 ~/.config/sops/age/keys.txt + +# Read key if not present in file: +# age-keygen -y ~/.config/sops/age/keys.txt + +# Make host key: +# ssh-to-age -i /etc/ssh/ssh_host_ed25519_key.pub + +# Add secrets: +# sops file.yaml + +# Rekey file.yaml contents after changes to .sops.yaml: +# sops updatekeys file.yaml + keys: - - &nipsy age1a9gp70y8576pkvklz2arz6h9ecnrjeue2vvh9mvvk92z4ymqrg4qdqm9va + - &darkstar age1z6g6etwcer433v97lwjrruetdh9fswkgjh9w702wzdc2ydvy5q8ssrfy9r - &ginaz age1900zc5caephklavvjxp0g4qqvyqlzg3sux69y9p092g3d3qck3kqz62reh + - &nipsy age1a9gp70y8576pkvklz2arz6h9ecnrjeue2vvh9mvvk92z4ymqrg4qdqm9va creation_rules: - path_regex: home/nipsy/secrets/ginaz.yaml$ |