From 2ac79a056a56978e9581d5632dab39b3ec126931 Mon Sep 17 00:00:00 2001 From: Ethan Simmons Date: Mon, 21 Oct 2024 12:33:47 -0500 Subject: [PATCH] Change alpheratz sops key location --- .sops.yaml | 2 +- hosts/alpheratz/system.nix | 2 +- secrets/alpheratz/secrets.yaml | 22 +++++++++++----------- 3 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.sops.yaml b/.sops.yaml index e2e30fc..943285f 100644 --- a/.sops.yaml +++ b/.sops.yaml @@ -2,7 +2,7 @@ keys: - &admin_ankaa age1079fszreaakwf6xnwu9kra8xcsp4e8q8ed3y99yrhjnz9n3t9pnsj05m97 - &admin_alpheratz age1gdtjn3jgvvvspa86q3lnklflnvyf3s75y2rw23l7nk7hwcsfpg7qkq7msr - &diphda age1rxqyz6watg05r3rzlme7grpgfgezhlt535gdl7psqys2ec8eegmqchfk4d - - &alpheratz age13ganuxy7r6fe53xaqm7k9pp07adlvk4hm4s2xkmwdwqs8xrdr3xquw0d73 + - &alpheratz age1cla0k3yffcelphkrmgz5upc0chgtdef25ne833jeqtapceux59rqkmhxf7 creation_rules: - path_regex: secrets/[^/]+\.yaml$ key_groups: diff --git a/hosts/alpheratz/system.nix b/hosts/alpheratz/system.nix index 23a1d57..582a3c8 100644 --- a/hosts/alpheratz/system.nix +++ b/hosts/alpheratz/system.nix @@ -25,7 +25,7 @@ sops = { defaultSopsFile = ../../secrets/alpheratz/secrets.yaml; - age.sshKeyPaths = [ "/etc/ssh/host_key_ed25519" ]; + age.keyFile = "/etc/sops.key"; secrets."wireguard/private" = {}; secrets."wireguard/preshared" = {}; diff --git a/secrets/alpheratz/secrets.yaml b/secrets/alpheratz/secrets.yaml index 2ee6bae..f4f871e 100644 --- a/secrets/alpheratz/secrets.yaml +++ b/secrets/alpheratz/secrets.yaml @@ -10,20 +10,20 @@ sops: - recipient: age1gdtjn3jgvvvspa86q3lnklflnvyf3s75y2rw23l7nk7hwcsfpg7qkq7msr enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBqSDJwNGhmTDZSemN1OEJw - cEV3SnFTSm5lVGZ1T1FyRGp5M0hEb2VCdFFZCkxEWDZsR2QwUXFKYnlHUEFIYW44 - ajRGQmtsV3k2S0JGNG5scDZYOWpDMFUKLS0tICtub2xTZDdQOGtFYmxFakVpNnJV - Q050UXZRMHEwTW5lNjZZZjMwOWpoZ1EKvuz3NRJWIxp7zUpMBF+Y9IY1X6qYJPuY - Z8WdgV4fPijgGU0a3JmKAdKI+Nm9fmMSJi32Z6r828UIDHdVufG44g== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBuQzBUM0pXdkZUT1R4ekQv + YXlJZXA0OGV4SmwxOGxmY3Z3SjRSSE1UK2w4CnpGVkZ5anYvR0NHNEpBbDM3aURN + NVA2WmxmZUI3eWR4Tkd6MkxLOTJ5NDgKLS0tIGYrVTZMbUJia0F4ZWMwMXlhTkJz + MHdCcVpZaGtLbkpScDhLaGxZY2l3dEkKy1qr0l1eqqIQvsJm56ABIsh0XfFE5O5O + H0kLLggfl5AozBWrSjjiOnCf22tue5SzAxS70OO6Dz3y5sYCEF04Ag== -----END AGE ENCRYPTED FILE----- - - recipient: age13ganuxy7r6fe53xaqm7k9pp07adlvk4hm4s2xkmwdwqs8xrdr3xquw0d73 + - recipient: age1cla0k3yffcelphkrmgz5upc0chgtdef25ne833jeqtapceux59rqkmhxf7 enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJN0RxOFlaTWZrNkE5d3RW - K0NPYmVvTFhmV1hkL3crdXJ3TnoxTUYzOVNRCjRONGtSVkN1OFF1NXpjNkZwUjdQ - TzhoLzlUcDJKQ0k2d3BUSTBZZzFSWnMKLS0tIDBIUVpkaU1pb0pkM2NORXpZeUtB - bDNmamRIL25SaXlaY0pLTDdGQ1J0eEEK/sOMBBefA4Nlzv/benmTrciT4b8P2cGC - Wlu7zQtQeuomdQJyVfjSqlGbcouO9jfdp5odlvP5thsxJiqV+xOA9g== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAxRCtPaUc4RVZRYW5tM0Ex + SGRRZ2kvKzNSdUxFRGtGRXUzWDJZVW9aNkZBCmtpOVIyMnBIaFVjV0xxdGxnNGtj + aVNpQzdDMHozL25sZ09Hc09BMVBUdEUKLS0tIE9PWm95RzZndnRwYXNoWExQVXVs + R3F6M3dsdXVxSk4va3ptS1JNQ1JSZ2sK7WtQj148lDKG36T6oIL2ASrUY9Q9QwL4 + FiVkiNAvZPddFRYFSg9UhM92mTWLKay3ak+8IzojfsJmy7Aw9aavSA== -----END AGE ENCRYPTED FILE----- lastmodified: "2024-06-24T00:52:56Z" mac: ENC[AES256_GCM,data:4eHx1JEmFa9ugyjsJYYvIJ85EYQOsxThKtFzL9Aiw16NOl58B0CNFAwVSL1KryjjmsRxxDQoAFldkfpxzKuERoUPMsRlFXlNgApXqkaH2aJBH2VCFd7jBTvqALXgWv5Gjh8yTD3qySUAeWN8F44HjGg1cx8Poxp5xOPk5VlzyXA=,iv:LrjjSM8hC8ujfXM9W+rgGLo1muDR+CIo1UfnNJcr2TE=,tag:Oosqkn1XnEpnoNH31ghL5w==,type:str]