nixos/.sops.yaml

89 lines
2.4 KiB
YAML

keys:
- &malte D5FEA546C06B3AEC97EB7F5A437B3369EAE401C4
- &helix-texta age1n5cse9mz50hxc2syzpjhkw9kar3eq9lr00ju4el9fu32nvqjzq5s5j4r4j
- &elysia-clarki age1gg85h42mndpuc5qpxg2a794pj9szp6g020ry05tmy9rxgh2aa4asq4vfh4
- &achatina-fulica age1320r0g70sgmprz0dzk9n7nkuhcmf3ju0pmv002mgd5rgghvazyxqtt9c80
- &trochulus-hispidus age1un55h66zlhm4vmf7800q0c5n24zwpwvyllhmu68x33kkf2kwu9dsts8ztg
- &murex-pecten age1txlfvwlahwjy3ujeefsp7ket5c575schwc24a07j4twu0jxzqgwse4n78a
- &cornu-aspersum age1vrdd5yese20vcklv4dkclhfwhs5r9vufka8mevdxkt57fmukld5qj5r342
- &granodomus-lima age1fs6es4rnw0p79husxq2vut7zv4p9ecm5quaamldstlvg5kgzjpdstalllk
- &faunus-ater age1wwv873rqxtl7050n5uldy02tj2sft3yqvlqtjl2naazjvuk8yq2s7vflxt
- &polymita-picta age1xgcejd4xcag5728x54kzeqerytxrhdpp6lw4qrq4t8e5jlxw7ckq4dw9th
creation_rules:
- path_regex: secrets/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *helix-texta
- *elysia-clarki
- *achatina-fulica
- *trochulus-hispidus
- *murex-pecten
- *faunus-ater
- path_regex: secrets/hosts/helix-texta/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *helix-texta
- path_regex: secrets/hosts/elysia-clarki/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *elysia-clarki
- path_regex: secrets/hosts/faunus-ater/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *faunus-ater
- path_regex: secrets/hosts/achatina-fulica/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *achatina-fulica
- path_regex: secrets/hosts/trochulus-hispidus/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *trochulus-hispidus
- path_regex: secrets/hosts/murex-pecten/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *murex-pecten
- path_regex: secrets/hosts/cornu-aspersum/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *cornu-aspersum
- path_regex: secrets/hosts/granodomus-lima/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *granodomus-lima
# Home-manager secrets
# TODO: Improve
- path_regex: secrets/users/malte/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *helix-texta
- *murex-pecten
- path_regex: secrets/users/deck/[^/]+\.yaml$
key_groups:
- pgp:
- *malte
age:
- *polymita-picta