xun/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

update sops secret paths

Browse source
This commit is contained in:
xunuwu 2025-06-06 14:48:12 +02:00
parent 8d1bcedeab
commit cf7a9b09de
Signed by: xun
SSH key fingerprint: SHA256:Uot/1WoAjWAeqLOHA5vYy4phhVydsH7jCPmBjaPZfgI
2 changed files with 4 additions and 14 deletions
Download patch file Download diff file Expand all files Collapse all files

16
.sops.yaml
View file

@ -7,27 +7,17 @@ keys:
- &rackserv age1zutg3s4nth679a6av9xqw4km0ezmfkxlnusu78demf0rzazqn3pqk9exgj - &rackserv age1zutg3s4nth679a6av9xqw4km0ezmfkxlnusu78demf0rzazqn3pqk9exgj
creation_rules: creation_rules:
- path_regex: home/profiles/secrets - path_regex: secrets/nixdesk
key_groups:
- age:
- *xun
- path_regex: sys/profiles/secrets/global
key_groups: key_groups:
- age: - age:
- *xun - *xun
- *nixdesk - *nixdesk
- *hopper - path_regex: secrets/hopper
- path_regex: sys/profiles/secrets/nixdesk
key_groups:
- age:
- *xun
- *nixdesk
- path_regex: sys/profiles/secrets/hopper
key_groups: key_groups:
- age: - age:
- *xun - *xun
- *hopper - *hopper
- path_regex: sys/profiles/secrets/rackserv - path_regex: secrets/rackserv
key_groups: key_groups:
- age: - age:
- *xun - *xun

2
Justfile
View file

@ -8,7 +8,7 @@ local OPERATION *FLAGS:
{{OPERATION}} {{OPERATION}}
updatekeys: updatekeys:
fd . sys/profiles/secrets -E '*.nix' -t f -x sops updatekeys -y fd . secrets -E '*.nix' -t f -x sops updatekeys -y
remote OPERATION HOST REMOTEHOST *FLAGS: remote OPERATION HOST REMOTEHOST *FLAGS:
nixos-rebuild \ nixos-rebuild \