feat(tazjin/secrets): initialise secrets management for my machines
Change-Id: I93ad61f3e6e4a4a2185448ad128fa6836c81ab26 Reviewed-on: https://cl.tvl.fyi/c/depot/+/8825 Reviewed-by: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI
This commit is contained in:
Vincent Ambo
tazjin
parent
a3b212b82b
commit
6678e768a0
3 changed files with 16 additions and 0 deletions
3
users/tazjin/secrets/default.nix
Normal file
3
users/tazjin/secrets/default.nix
Normal file
|
|
@ -0,0 +1,3 @@
|
|||
{ depot, ... }:
|
||||
|
||||
depot.ops.secrets.mkSecrets ./. (import ./secrets.nix)
|
||||
13
users/tazjin/secrets/secrets.nix
Normal file
13
users/tazjin/secrets/secrets.nix
Normal file
|
|
@ -0,0 +1,13 @@
|
|||
let
|
||||
myKeys = import ../keys { };
|
||||
allKeys = [
|
||||
# local keys
|
||||
myKeys.tverskoy_ed25519
|
||||
myKeys.zamalek_ed25519
|
||||
# koptevo
|
||||
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMw2ZfdNZCXCOtbQNT6hztXCIkTcO9MBrOuDqMlmGOYK root@koptevo"
|
||||
];
|
||||
in
|
||||
{
|
||||
"tgsa-yandex.age".publicKeys = allKeys;
|
||||
}
|
||||
BIN
users/tazjin/secrets/tgsa-yandex.age
Normal file
BIN
users/tazjin/secrets/tgsa-yandex.age
Normal file
Binary file not shown.
Loading…
Reference in a new issue