aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMark Nipper <nipsy@bitgnome.net>2024-05-28 23:06:26 -0700
committerMark Nipper <nipsy@bitgnome.net>2024-05-28 23:06:26 -0700
commit660895110f247c0ac3a76709a38ca5f5ea2fbfcb (patch)
tree10e6ae419db3722c8a3deacef155a654a988cad9
parentd3c6179ecd651088a735d1d5c7b14f405cddd8f4 (diff)
downloadnix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar
nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar.gz
nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar.bz2
nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar.lz
nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar.xz
nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.tar.zst
nix-660895110f247c0ac3a76709a38ca5f5ea2fbfcb.zip
Add documentation and darkstar key
-rw-r--r--.sops.yaml18
1 files changed, 17 insertions, 1 deletions
diff --git a/.sops.yaml b/.sops.yaml
index c3cf7a6..99731a8 100644
--- a/.sops.yaml
+++ b/.sops.yaml
@@ -1,6 +1,22 @@
+# Make a user key:
+# mkdir -p ~/.config/sops/age && age-keygen -o ~/.config/sops/age/keys.txt && chmod 00600 ~/.config/sops/age/keys.txt
+
+# Read key if not present in file:
+# age-keygen -y ~/.config/sops/age/keys.txt
+
+# Make host key:
+# ssh-to-age -i /etc/ssh/ssh_host_ed25519_key.pub
+
+# Add secrets:
+# sops file.yaml
+
+# Rekey file.yaml contents after changes to .sops.yaml:
+# sops updatekeys file.yaml
+
keys:
- - &nipsy age1a9gp70y8576pkvklz2arz6h9ecnrjeue2vvh9mvvk92z4ymqrg4qdqm9va
+ - &darkstar age1z6g6etwcer433v97lwjrruetdh9fswkgjh9w702wzdc2ydvy5q8ssrfy9r
- &ginaz age1900zc5caephklavvjxp0g4qqvyqlzg3sux69y9p092g3d3qck3kqz62reh
+ - &nipsy age1a9gp70y8576pkvklz2arz6h9ecnrjeue2vvh9mvvk92z4ymqrg4qdqm9va
creation_rules:
- path_regex: home/nipsy/secrets/ginaz.yaml$