From 660895110f247c0ac3a76709a38ca5f5ea2fbfcb Mon Sep 17 00:00:00 2001 From: Mark Nipper Date: Tue, 28 May 2024 23:06:26 -0700 Subject: Add documentation and darkstar key --- .sops.yaml | 18 +++++++++++++++++- 1 file changed, 17 insertions(+), 1 deletion(-) diff --git a/.sops.yaml b/.sops.yaml index c3cf7a6..99731a8 100644 --- a/.sops.yaml +++ b/.sops.yaml @@ -1,6 +1,22 @@ +# Make a user key: +# mkdir -p ~/.config/sops/age && age-keygen -o ~/.config/sops/age/keys.txt && chmod 00600 ~/.config/sops/age/keys.txt + +# Read key if not present in file: +# age-keygen -y ~/.config/sops/age/keys.txt + +# Make host key: +# ssh-to-age -i /etc/ssh/ssh_host_ed25519_key.pub + +# Add secrets: +# sops file.yaml + +# Rekey file.yaml contents after changes to .sops.yaml: +# sops updatekeys file.yaml + keys: - - &nipsy age1a9gp70y8576pkvklz2arz6h9ecnrjeue2vvh9mvvk92z4ymqrg4qdqm9va + - &darkstar age1z6g6etwcer433v97lwjrruetdh9fswkgjh9w702wzdc2ydvy5q8ssrfy9r - &ginaz age1900zc5caephklavvjxp0g4qqvyqlzg3sux69y9p092g3d3qck3kqz62reh + - &nipsy age1a9gp70y8576pkvklz2arz6h9ecnrjeue2vvh9mvvk92z4ymqrg4qdqm9va creation_rules: - path_regex: home/nipsy/secrets/ginaz.yaml$ -- cgit v1.2.3