maurice/snix
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
snix/ops/secrets
History
Vincent Ambo 84bdb1e89a feat(ops/restic): configure backups to Yandex Cloud 
Backups are moving from GleSYS to Yandex Cloud (is this motivated by me not
having to pay for them in that case? Maybe!); this changes the default backup
location to accommodate that.

I also noticed that we previously manually placed the backup key on whitby, so
the new key is going into agenix instead, as well as the secrets for protecting
the repositories.

Change-Id: Ibe5dbfec6784345f020a8b4d92bb01c6ad719a89
Reviewed-on: https://cl.tvl.fyi/c/depot/+/13096
Tested-by: BuildkiteCI
Reviewed-by: sterni <sternenseemann@systemli.org>
2025-02-02 15:01:24 +00:00
..
.skip-subtree feat(ops/secrets): Bootstrap agenix secrets folder 2021-12-08 18:22:00 +00:00
besadii.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
buildkite-agent-token.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
buildkite-graphql-token.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
buildkite-ssh-private-key.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
clbot-ssh.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
clbot.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
default.nix refactor(ops/secrets): generalize out a mkSecrets function 2021-12-27 03:46:26 +00:00
depot-inbox-imap.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
depot-replica-key.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
gerrit-autosubmit.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
gerrit-secrets.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
grafana.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
irccat.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
journaldriver.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
keycloak-db.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
litestream-glesys chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
mkSecrets.nix style: format entire depot with nixpkgs-fmt 2022-01-31 16:11:53 +00:00
nix-cache-priv.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
nix-cache-pub.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
owothia.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
panettone.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
README.md feat(ops/secrets): Bootstrap agenix secrets folder 2021-12-08 18:22:00 +00:00
restic-bugry.age feat(ops/restic): configure backups to Yandex Cloud 2025-02-02 15:01:24 +00:00
restic-nevsky.age feat(ops/restic): configure backups to Yandex Cloud 2025-02-02 15:01:24 +00:00
restic-sanduny.age feat(ops/restic): configure backups to Yandex Cloud 2025-02-02 15:01:24 +00:00
secrets.nix feat(ops/restic): configure backups to Yandex Cloud 2025-02-02 15:01:24 +00:00
smtprelay.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
teleirc.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
tf-buildkite.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
tf-glesys.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
tf-keycloak.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
tf-yandex.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
tvl-alerts-bot-telegram-token.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
wg-bugry.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
wg-nevsky.age chore(ops/secrets): clean up secret config & reencrypt 2025-02-01 19:59:42 +00:00
yc-restic.age feat(ops/restic): configure backups to Yandex Cloud 2025-02-02 15:01:24 +00:00

README.md

TVL's deployment secrets, encrypted with agenix