From 6678e768a08e993c586756ad1815a5fcf1f520b6 Mon Sep 17 00:00:00 2001 From: Vincent Ambo Date: Fri, 16 Jun 2023 16:08:26 +0300 Subject: [PATCH] feat(tazjin/secrets): initialise secrets management for my machines Change-Id: I93ad61f3e6e4a4a2185448ad128fa6836c81ab26 Reviewed-on: https://cl.tvl.fyi/c/depot/+/8825 Reviewed-by: tazjin Tested-by: BuildkiteCI --- users/tazjin/secrets/default.nix | 3 +++ users/tazjin/secrets/secrets.nix | 13 +++++++++++++ users/tazjin/secrets/tgsa-yandex.age | Bin 0 -> 4838 bytes 3 files changed, 16 insertions(+) create mode 100644 users/tazjin/secrets/default.nix create mode 100644 users/tazjin/secrets/secrets.nix create mode 100644 users/tazjin/secrets/tgsa-yandex.age diff --git a/users/tazjin/secrets/default.nix b/users/tazjin/secrets/default.nix new file mode 100644 index 000000000..5550103c5 --- /dev/null +++ b/users/tazjin/secrets/default.nix @@ -0,0 +1,3 @@ +{ depot, ... }: + +depot.ops.secrets.mkSecrets ./. (import ./secrets.nix) diff --git a/users/tazjin/secrets/secrets.nix b/users/tazjin/secrets/secrets.nix new file mode 100644 index 000000000..d6f86decc --- /dev/null +++ b/users/tazjin/secrets/secrets.nix @@ -0,0 +1,13 @@ +let + myKeys = import ../keys { }; + allKeys = [ + # local keys + myKeys.tverskoy_ed25519 + myKeys.zamalek_ed25519 + # koptevo + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMw2ZfdNZCXCOtbQNT6hztXCIkTcO9MBrOuDqMlmGOYK root@koptevo" + ]; +in +{ + "tgsa-yandex.age".publicKeys = allKeys; +} diff --git a/users/tazjin/secrets/tgsa-yandex.age b/users/tazjin/secrets/tgsa-yandex.age new file mode 100644 index 0000000000000000000000000000000000000000..39fe638346eff49ce275231f10f6e3a05f7a2ec9 GIT binary patch literal 4838 zcmYdHPt{G$OD?J`D9Oyv)5|YP*Do{V(zR14F3!+RO))YxHMCSnNiI(GDOV_Q%neK| zN!JgK$j&wJ%=C8jHpnO~HH}OUDhP2*ayRn~_cHS=E^#}ZTD#B_y%tl+BL^u$b$!2FUFZ|9t>w2)A@ zD#t>f+~N}L!t6qK1JiWv?DC>0r$8=G?VuzNmy)n5Q;VD+S2GW9uhMeuAlLNrLd%k% z%vAUC%q*h{eY5a@FtFdeb<>Md6N^(7A}bA|^A*g4mGxp2qAJug%9K(S3^L4J3Ieza zBfY9}+)N5wl1kEwf`U!MOD#ikOhdVJb#)aYob_|VOcK4ra!ta@LcPP>vdvOmL!3kM zjRH*~0wT4`gQD^>!t*LC%96Qc{*|>SxiZ-9EPct=Y`(h7F58cD+17&NK_&{~`)<~* z-tj%&&?08WV$b#BH4*q?5y<~?i}88##K$ zO+|O^xf`Y3pBJC44t7dpW=QTyxm@hJo7G3>r+|Zt*FVP7|DV;`KNT=n5`7$Tbv3t5 z)fV>d?r)3sN#)D?OzhXa>ByD4f92sS*FPJD3Ix{Lip_O6urDRjey0^j-hvzRJWqVd znfv_r-fOlQ4J&)pZhU2^@#>RZxmRIBAH6>GxBbG#uGuMBZf7Pg`O&03L2>^S!TdGf z0=C{QSYS{zxBctmh|5Zj%NN|VXSE2JQd8%7_unJmUHMIOZpw6cKz$l<}?Y zbJ@cdc@c*+?}mh*IA=R;bBpSsaxu>aE14HF-^N|OV3K}Ox9<@{YGs@J5AX2nJFgYo zeRBWL{eub9%$LmD!dBP&xVgGhRe0hzRkl~n&o1S=efnv@{K)mOY765-*=KcozOMiF ztn=#4txL;yYg>b~D!L+;!SuiVYDg{!sT?njmjhYwwx@lWh+_^TM1-^=)A zT`yh>*sPYFd8$*gD)>q7lTABQzoi%K=-ASV*4fzL zbo_47pQ)2)SZqF0!DczHxPws|xes-giY;So7GO&(%TItLL@+YT06O+fr@7KM=Sm?-i)9Kk3>HIm$Myk2tssis>jt86w*}OXU*jlS3XSI{N z0xW0qu}c4%;o9O=zILs#p1@*K!&YUzmE9 zM9Xtyzu5h!et4Lec?T}NnJ&BO_03spx6NCj5h~>vmiz6~(HX%XZWM&=%&HSgUH?bE zST!muE?|B_#$DU};&VcknY?oOR{8aXUJAAJaqV4Q_VIQQcUb-w-cn~WJ*tRHFP^7%(K0E+tri;sGN*`b z>G*d`EQ!lkH+*7_!^%Tjb&95EUVX6gr>gw=Zh6~pLhnk~O|*+`R%UfNlCGKTb=l~d z&^Z?k_m?ZtNUM^DynOqvmFF zQazvTe)y}nN9Xk9&VOe8lV5)lnx$PO zT@TbGtawyXeBJvU{-?+@&33du%U5FDel5+aWwXbO#EP|MH`^|7&(V&v}UIPO_*J?{QExaZ2^*!{K& z4_7`>W1BK#LY=h2jh1G4?Irj8G&K^vkLzw-_wTVm_THB}cUSvx+}rk&FWCB3N;uc5 zo{q``o2pMd%DnzFEPl$qcg=~Rvs!W#UGBcWn3Z=ud!KS=?d{;7%{OLkzd9xQZ)V{p z@m2orYG+NC2ib3L+L!id@{$vd%@qfx`+nQARXIT4<@T?>7w)h0QdJz>8xoJ_$Lukx z;A|FnS5-OZ_S5b6^kx`wWb$rOczfaIQSaWwZAm9scFI>6O`g18?#n?L!xc*_UnzZy z@-$gm^|G|AYN^#5i&vX7>{jltQCCervgy>BLOz@J&+=m0cF~mz>sK6;=LlZp@hi;5 z-tu(pCV}6p>TCC(+`udo*n94k5W|_*F@GZ?1f=#VY4a;$9{v1m zk}mRDWUA7NiI0O+`RWr7Bz=7*J^9P_iY3q9=k44h9Ja~-LuT}0o!ck=CVc#(nvihP zaA%~59IxB!Rv6*3Rm6Owxs{db*=X~wh}c~Pc{;Bi zwFj~@zj~zjmAT^9gEyDAMld|>cK^sK-eRq0(w2RB()@Flb0v<;d&KG2%1nE2os%yX z7`Sh-`TUnNil$y+biOtJv&{+@lmD%XXP$of#=h#Zgw>H5d$+hxJ|VI1?8}biC(9(I z=Zl{S_lc`~zA?+4D|#Qp_Zgbs#SaP3jkcZ=f6jTan54zLtgs5b`~9oWIj`cYp2NtK zD6p;X$J6~=E*Nb2;#evg<x zcb!~cYSJ*_=O?ut5{7BhJGH{jo%_2k>v6!6sj{D9qTX<8i(BqE)>WP-w486li-#T}x zAPaBMBcs}TQRT&IuQoeYNj?9&NI55~RcGP??Njf*l|_F%vZh`5*p*npKzW7OSr#u1 zn$Axw=vKI;y6Ss!)LY#<=7q9m6_Oj*{na|OZ8Ni=een+A#d%WGUv9dmrg84j|FwB- ztWSFmGqHvpH@Go z=FUyCExT4c~SsTw}gse~N{PobJ?91Y2bnXQ7jm626Hc6P z`qHE76Laeu6pZ9vUNp)wTWPUQ_3y3U@jQ87IcEORob1@M>`)G`rlo(mAD{It(+TeK zva{0q*13qtYG3z|bz8|Vb7O|l>yXv2&wq~mXOv{?rQ&3i6wz?@ko`Bc66=t6Po*Bq z{dCx|^-7@Xn{7quXC1CrKfO0i^<=Hvql6uLEq?R5Ri0g3wcMGDG4yM}g9&QMpX+LN z&*NK`7d31CevRH`qR(#VrT9jhT?o4#v*3#EKJnGMzk2+>@x63*b+PI8UeTK7;?XCa z#ChkD>;d_YzmrN`Z0k-~q=-)Hp0a!tAj#4J64weace%;#k@?z-Ld?W{@s++`8$~u^*f#C?Nc?_@T#zA zKd^1Thb_ze6&K!C6uRb5s7c8tCH{_%)hF&PYvf81s^0s4-ECgk7afl$ zsYiET{PTHr%x*D`z4E%B^mhN;?;-Tv-06af`Nx@U37Y=1OdDTZndxxVLVz(k`}6a@ zmn;8WWZo5X@9wwwXCED$xgS1knl)9zJukP**@>|%Zr;V}McUJLX02}9@=SW(j;uoE zoJIc&l+3Ij@ZVH%I&n8Xk)yGJHC6f6Mz09Fl#SNyd^+m0n$(jHUfvceP*o%PCp}Xr zspHkU!@J!tnWr}M{9mQZZmpzQ5%;dx>_eXU_N=ODi&a9mb89*)l`r0-dwF@y@}27o zH+<09d11Bv+bdJ5U7Nc8ynW@U`N@KD)}f+3i-T;>bl2{d&%M0l*WJ&jmadOUUX|9! zlNR0=_4gb9w@z8LJxS`@L!`E>F1ly9(@HO{E@`?p=kdmfso(QgD7pU0c2#d&|1hRg z-}z#i;=cpDK~R_|6>#3--0(S4n%HuPt*7-)N(1oVU@x4 zS263Xvi!u7)NdSlaOl^g+*|+ZqZXbze=cw5;&v;kBCWow` zD{Xv_{dS#WjnlgDdRBRfXX3P}dp^j0f4lR;Lbt@{U&|Ms7yeW0-{Np}u}9pNvySs; zTBs~)3+e3dl1cl#&}-}F=NlwMf7)qX=?^?Rp-6mHOn88U;+9UMNQWbKOGS)X%KFWB zuW^X9XmIJbQan|2;G_FJL0$!qJ#VJ`+CAAMW%D(Ejb|-lYL_P8aeu!)wcx?ZU!qU0 zH564}e9rgES8F9($sdd2XOr9*J?_q2KjDGW_R3C;wE+TW-7c*?khr7go44}yGs&!b zpMTvK9w}4v>hsjQb9fqG{VF{Z+h%uXc72JOlw9NapA)TKTig#mk@-jK{-v)hNk3BV z%ANYo^8cQ|CA|Z(Nq=ws{j~PJ`mCxq+P3QfDHJt?_-QepMugk(MUovNMFC$@L(3E*2gRqVpNa2@NUPro|9TD_>> z%Bg-@>9EVKzt3#;#~ki0*`&-AlFzVl^H+;v*_%Pf@}JoMf7bb9fBu%xPU(HAOI!Br zDC}pN=B<@lvPt8IlfZl_R*e?H&!}V>FiTg5j^{!9b`}L`Y{_psfPkA#}=!x`{Pb{fyK3jF# zY0Z4;hYW{Pns_;kW>4Gr%4d1`!h5%;o?BhCdHDw8ef*i2i$B@!YhvK#*uy(`vR>M83v|5x1flN=tmbG2O03P;_ETgGN> z{%2;OV8HX${7GB-rx-C-s{CwUna{k)Ywm-2jT3BSme-qg^UEvlzm&dZ(v0K#MRx5_ zf3Cb?y558I)=cN<&F{=Z7q{)wjJ!LwsxYhiwqe(=Ys;-J9Fkvqv@Z7DrXPi~|Cc2? z9xi{ndTPn$qi)3v%UQlfwQ)&1Usm04Xbwk|%}VR10*Boe$;bcS)lhe}(dGVHE|D|u zO^zP>C#keOaN2|Uq93L&DqJI(v-)TImYsKOr|xYpx=DbCo~Oz zJA}WuyWqtXwswiM%7$_)f#gKxXwz#ge%oGqU$9TGH2=~gSQPF#Rbg_fCX+zV$KPx= Mye`XMbDmZJ0FPlTB>(^b literal 0 HcmV?d00001