2021-07-26 01:29:05 +02:00
|
|
|
let
|
|
|
|
pkgs = import <nixpkgs> {};
|
|
|
|
lib = pkgs.lib;
|
|
|
|
readPubkeys = user: builtins.filter (k: k != "") (lib.splitString "\n" (builtins.readFile (../pubkeys + "/${user}.keys")));
|
|
|
|
superadmins = (readPubkeys "raito") ++ (readPubkeys "gdd");
|
|
|
|
core-services-01 = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILrnZxP4OUGDzd1uykMghzFNLH0Fg42hH+0qxif6O6oU";
|
|
|
|
systems = [ core-services-01 ];
|
|
|
|
in
|
|
|
|
{
|
|
|
|
"keycloakDatabasePasswordFile.age".publicKeys = superadmins ++ systems;
|
|
|
|
"oauth2ProxyKeyFile.age".publicKeys = superadmins ++ systems;
|
2021-07-26 02:15:44 +02:00
|
|
|
"droneKeyFile.age".publicKeys = superadmins ++ systems;
|
2021-07-26 01:29:05 +02:00
|
|
|
}
|
|
|
|
|