7873806218
Use agenix for the buildkite ssh key and agent token on mugwump, instead of storing stuff in /etc/secrets Change-Id: I56951587b949fc0854e56f5c4e33b601e9cd964e Reviewed-on: https://cl.tvl.fyi/c/depot/+/5027 Reviewed-by: grfn <grfn@gws.fyi> Autosubmit: grfn <grfn@gws.fyi> Tested-by: BuildkiteCI
13 lines
562 B
Nix
13 lines
562 B
Nix
let
|
|
grfn = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMcBGBoWd5pPIIQQP52rcFOQN3wAY0J/+K2fuU6SffjA";
|
|
mugwump = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFE2fxPgWO+zeQoLBTgsgxP7Vg7QNHlrQ+Rb3fHFTomB";
|
|
bbbg = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIL/VzrNEY47KPTce3dgfORkAbweWkr4BI8j54BAIs7bG";
|
|
in
|
|
|
|
{
|
|
"bbbg.age".publicKeys = [ grfn mugwump bbbg ];
|
|
"cloudflare.age".publicKeys = [ grfn mugwump ];
|
|
"ddclient-password.age".publicKeys = [ grfn mugwump ];
|
|
"buildkite-ssh-key.age".publicKeys = [ grfn mugwump ];
|
|
"buildkite-token.age".publicKeys = [ grfn mugwump ];
|
|
}
|