diff --git a/home/profiles/secrets/default.nix b/home/profiles/secrets/default.nix index 1712e3f..557c163 100644 --- a/home/profiles/secrets/default.nix +++ b/home/profiles/secrets/default.nix @@ -3,7 +3,5 @@ age.keyFile = "${config.home.homeDirectory}/.config/sops/age/keys.txt"; }; - imports = [ - ./wakatime.nix - ]; + imports = []; } diff --git a/home/profiles/secrets/wakatime b/home/profiles/secrets/wakatime deleted file mode 100644 index 717774f..0000000 --- a/home/profiles/secrets/wakatime +++ /dev/null @@ -1,20 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data:7AM1HQJtfUtF9IzP1snk8ULWYQNj2FNECp4Ioro2Btm49kV/sKYNn28CvBU5Pxz7X3vt/D8As2aAiFCh6rKGqYcBFUnm4/+JIZjiz7JIoNq9WoBY67Dj1xmwFeq648beLAVIKaKrMg==,iv:WQRPJsHOrmTMflN4hbdG6q7mevJjm1vgGz7Vgh3HtzU=,tag:iuhVjV8V49qqxCGK3phRQA==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBnOEEwKzRKc1FPSGlHbXk0\ncnQvN2oyRERxY0d5eEdmczBpYlZrb2M0eVcwCjNrTUc2dEcyYkFwMERTSEVnTldy\nWHhjeXVkOGFGRUdoM3dIdlJiZmRFTUUKLS0tIGM0S2MxZUYvUCtIZ3pKbDl1Vi9S\nNVQ4Yk5BWFlRK1RZNWtCNDltemxtaTQKFggxv58s2w9VTvQUZPv9ryzxRinGBz8s\n62TOAVxlWL3EdUqWd7o8kK83Ryw+Vor7Rjoe6ee9RSRNJSDmEPjJCA==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-06-26T03:19:42Z", - "mac": "ENC[AES256_GCM,data:fHi0HLAtklALyIbtQzmmi++uWpgVAqApLbHVZ4fQEafkdcJ8IsargeiYh9GULiVdFUp5lVLQ42HqIOte0jRC+fTKspv1TURS4rgFxLZMTwZJcbbRkwBxYMYtEd1L/AutKZfDCWxYJgS1ovhwSWZTXdB5XUd4CjIeqqLngjIDzTY=,iv:43AA3sFEABB5aNdBuHzJ9PAIBWEb/xv3LgG/YJdL8Ek=,tag:PHq16PyAET8l/dxKHUJXEA==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.8.1" - } -} \ No newline at end of file diff --git a/home/profiles/secrets/wakatime.nix b/home/profiles/secrets/wakatime.nix deleted file mode 100644 index 954a4da..0000000 --- a/home/profiles/secrets/wakatime.nix +++ /dev/null @@ -1,7 +0,0 @@ -{config, ...}: { - sops.secrets.wakatime = { - format = "binary"; - sopsFile = ./wakatime; - path = "${config.home.homeDirectory}/.wakatime.cfg"; - }; -} diff --git a/sys/machines/hopper/lab/default.nix b/sys/machines/hopper/lab/default.nix index 52ededa..09151e2 100644 --- a/sys/machines/hopper/lab/default.nix +++ b/sys/machines/hopper/lab/default.nix @@ -11,21 +11,13 @@ domain = "xunuwu.xyz"; caddyPort = 8336; slskdUiPort = 23488; - caddyLocal = 8562; - ncPort = 46523; adguardWebPort = 23489; - kanidmPort = 8300; - oauth2ProxyPort = 23490; in { imports = [ ./samba.nix inputs.authentik-nix.nixosModules.default ]; - ## TODO use kanidm - ## TODO use impermanence - ## TODO setup fail2ban mayb - users.groups.media = {}; users.users.media = { isSystemUser = true; @@ -43,13 +35,6 @@ in { credentialFiles.CF_DNS_API_TOKEN_FILE = config.sops.secrets.cloudflare.path; extraDomainNames = [domain]; }; - "kanidm.${domain}" = { - domain = "kanidm.${domain}"; - group = "kanidm"; - dnsProvider = "cloudflare"; - reloadServices = ["caddy.service" "kanidm.service"]; - credentialFiles.CF_DNS_API_TOKEN_FILE = config.sops.secrets.cloudflare.path; - }; }; }; @@ -86,7 +71,6 @@ in { 443 # caddy 1900 # jellyfin discovery 7359 # jellyfin discovery - # 9001 ]; in (l.map (x: { from = x; @@ -112,33 +96,18 @@ in { services.caddy = { enable = true; - virtualHosts = builtins.mapAttrs (n: v: - { + virtualHosts = { + jellyfin = { useACMEHost = domain; - hostName = "${n}.${domain}:${toString caddyPort}"; - } - // v) { - jellyfin.extraConfig = '' - reverse_proxy { - header_up X-Forwarded-For {http.request.header.CF-Connecting-IP} - to localhost:8096 - } - ''; - kanidm = { - useACMEHost = null; + hostName = "jellyfin.${domain}:${toString caddyPort}"; extraConfig = '' - reverse_proxy https://127.0.0.1:${toString kanidmPort} { + reverse_proxy { header_up X-Forwarded-For {http.request.header.CF-Connecting-IP} - header_up Host {upstream_hostport} - header_down Access-Control-Allow-Origin "*" - transport http { - tls_server_name ${config.services.kanidm.serverSettings.domain} - } + to localhost:8096 } ''; }; slskd = { - useACMEHost = null; hostName = "slskd.hopper.xun.host:80"; extraConfig = '' reverse_proxy localhost:${toString config.services.slskd.settings.web.port} @@ -146,131 +115,19 @@ in { }; transmission = { - useACMEHost = null; hostName = "transmission.hopper.xun.host:80"; extraConfig = '' reverse_proxy localhost:${toString config.services.transmission.settings.rpc-port} ''; }; dash = { - useACMEHost = null; hostName = "dash.hopper.xun.host:80"; extraConfig = '' - # Requests to /oauth2/* are proxied to oauth2-proxy without authentication. - # You can't use `reverse_proxy /oauth2/* oauth2-proxy.internal:4180` here because the reverse_proxy directive has lower precedence than the handle directive. - handle /oauth2/* { - reverse_proxy unix//run/oauth2-proxy/oauth2-proxy.sock { - # oauth2-proxy requires the X-Real-IP and X-Forwarded-{Proto,Host,Uri} headers. - # The reverse_proxy directive automatically sets X-Forwarded-{For,Proto,Host} headers. - header_up X-Real-IP {remote_host} - header_up X-Forwarded-Uri {uri} - } - } - - # Requests to other paths are first processed by oauth2-proxy for authentication. - handle { - forward_auth unix//run/oauth2-proxy/oauth2-proxy.sock { - uri /oauth2/auth - - # oauth2-proxy requires the X-Real-IP and X-Forwarded-{Proto,Host,Uri} headers. - # The forward_auth directive automatically sets the X-Forwarded-{For,Proto,Host,Method,Uri} headers. - header_up X-Real-IP {remote_host} - - # If needed, you can copy headers from the oauth2-proxy response to the request sent to the upstream. - # Make sure to configure the --set-xauthrequest flag to enable this feature. - #copy_headers X-Auth-Request-User X-Auth-Request-Email - - # If oauth2-proxy returns a 401 status, redirect the client to the sign-in page. - @error status 401 - handle_response @error { - redir * /oauth2/sign_in?rd={scheme}://{host}{uri} - } - } - - reverse_proxy localhost:${toString config.services.homepage-dashboard.listenPort} - } - + reverse_proxy localhost:${toString config.services.homepage-dashboard.listenPort} ''; }; - oauth2-proxy = { - hostName = "oauth2.${domain}:${toString caddyPort}"; - extraConfig = "reverse_proxy unix//run/oauth2-proxy/oauth2-proxy.sock"; - }; - navidrome = { - useACMEHost = null; - hostName = "navidrome.hopper.xun.host:80"; - extraConfig = '' - reverse_proxy unix//var/lib/navidrome/navidrome.sock - ''; - }; - navidrome2 = { - hostName = "navidrome.${domain}:${toString caddyPort}"; - extraConfig = '' - # Requests to /oauth2/* are proxied to oauth2-proxy without authentication. - # You can't use `reverse_proxy /oauth2/* oauth2-proxy.internal:4180` here because the reverse_proxy directive has lower precedence than the handle directive. - handle /oauth2/* { - reverse_proxy unix//run/oauth2-proxy/oauth2-proxy.sock { - # oauth2-proxy requires the X-Real-IP and X-Forwarded-{Proto,Host,Uri} headers. - # The reverse_proxy directive automatically sets X-Forwarded-{For,Proto,Host} headers. - header_up X-Real-IP {remote_host} - header_up X-Forwarded-Uri {uri} - } - } - - # Requests to other paths are first processed by oauth2-proxy for authentication. - handle { - forward_auth unix//run/oauth2-proxy/oauth2-proxy.sock { - uri /oauth2/auth - - # oauth2-proxy requires the X-Real-IP and X-Forwarded-{Proto,Host,Uri} headers. - # The forward_auth directive automatically sets the X-Forwarded-{For,Proto,Host,Method,Uri} headers. - header_up X-Real-IP {remote_host} - - # If needed, you can copy headers from the oauth2-proxy response to the request sent to the upstream. - # Make sure to configure the --set-xauthrequest flag to enable this feature. - #copy_headers X-Auth-Request-User X-Auth-Request-Email - - # If oauth2-proxy returns a 401 status, redirect the client to the sign-in page. - @error status 401 - handle_response @error { - redir * /oauth2/sign_in?rd={scheme}://{host}{uri} - } - } - - reverse_proxy unix//var/lib/navidrome/navidrome.sock - } - - ''; - }; - # slskd-pub = { - # hostName = "slskd.${domain}:${toString caddyPort}"; - # extraConfig = '' - # handle /oauth2/* { - # reverse_proxy unix//run/oauth2-proxy/oauth2-proxy.sock - # } - # handle { - # forward_auth unix//run/oauth2-proxy/oauth2-proxy.sock { - # uri /oauth2/auth - # - # header_up X-Real-IP {remote_host} - # - # @bad status 4xx - # handle_response @bad { - # redir * /oauth2/start - # } - # } - # reverse_proxy localhost:${toString config.services.slskd.settings.web.port} - # } - # ''; - # }; - # prometheus = { - # useACMEHost = null; - # hostName = "prometheus.hopper.xun.host:80"; - # extraConfig = '' - # reverse_proxy ${toString config.vpnNamespaces."wg".bridgeAddress}:9001 - # ''; - # }; other = { + useACMEHost = domain; hostName = ":${toString caddyPort}"; extraConfig = '' respond 404 { @@ -279,7 +136,6 @@ in { ''; }; otherPriv = { - useACMEHost = null; hostName = ":80"; extraConfig = '' respond 404 { @@ -335,12 +191,6 @@ in { icon = "jellyfin"; }; } - { - "navidrome" = { - href = "http://navidrome.hopper.xun.host"; - icon = "jellyfin"; - }; - } { "adguard home" = { href = "http://${config.networking.hostName}:${toString config.services.adguardhome.port}"; @@ -353,37 +203,11 @@ in { icon = "prometheus"; }; } - { - "kanidm" = { - href = "https://kanidm.${domain}"; - icon = "kanidm"; - }; - } ]; } ]; }; - # TODO finish setting up authentik - # services.authentik = { - # enable = true; - # settings = { - # disable_startup_analytics = true; - # error_reporting.enabled = false; - # avatars = "initials"; - # }; - # }; - - # TODO finish setting up navidrome - users.groups.${config.services.navidrome.group}.members = ["caddy"]; # for socket file :) - services.navidrome = { - enable = true; - settings = { - MusicFolder = "/media/library/music"; - Address = "unix:/var/lib/navidrome/navidrome.sock"; - }; - }; - systemd.services.jellyfin.vpnConfinement = { enable = true; vpnNamespace = "wg"; @@ -480,142 +304,15 @@ in { credentialsFile = config.sops.secrets.transmission.path; }; - # TODO use this for sso with some things maybe - # services.tailscaleAuth = { - # enable = true; - # user = config.services.caddy.user; - # group = config.services.caddy.group; - # }; - - # systemd.services.oauth2-proxy.vpnConfinement = { - # enable = true; - # vpnNamespace = "wg"; - # }; - - systemd.services.oauth2-proxy = { - after = ["kanidm.service"]; - serviceConfig = { - RuntimeDirectory = "oauth2-proxy"; - UMask = "007"; - }; - }; - users.groups.oauth2-proxy.members = ["caddy"]; - - services.oauth2-proxy = { - enable = true; - clientID = "oauth2-proxy"; - cookie = { - expire = "5m"; - # secure = false; - }; - email.domains = ["*"]; - httpAddress = "unix:///run/oauth2-proxy/oauth2-proxy.sock"; - scope = "openid profile email"; - redirectURL = "https://oauth2.${domain}/oauth2/callback"; - - keyFile = config.sops.secrets.oauth2-proxy.path; - - reverseProxy = true; - approvalPrompt = "auto"; - setXauthrequest = true; - - provider = "oidc"; - - redeemURL = "https://${config.services.kanidm.serverSettings.domain}/oauth2/token"; - loginURL = "https://${config.services.kanidm.serverSettings.domain}/ui/oauth2"; - oidcIssuerUrl = "https://${config.services.kanidm.serverSettings.domain}/oauth2/openid/oauth2-proxy"; - validateURL = "https://${config.services.kanidm.serverSettings.domain}/oauth2/token/introspect"; - profileURL = "https://${config.services.kanidm.serverSettings.domain}/oauth2/openid/oauth2-proxy/userinfo"; - - # redeemURL = "https://${config.services.kanidm.serverSettings.domain}/oauth2/token"; - # loginURL = "https://${config.services.kanidm.serverSettings.domain}/ui/oauth2"; - # validateURL = "https://${config.services.kanidm.serverSettings.domain}/oauth2/openid/oauth2-proxy"; - # oidcIssuerUrl = "https://kanidm.${domain}/oauth2/openid/oauth2-proxy"; - # profileURL = "https://kanidm.${domain}/oauth2/openid/oauth2-proxy/userinfo"; - - extraConfig = { - code-challenge-method = "S256"; # PKCE - whitelist-domain = "dash.hopper.xun.host"; - # oidc-issuer-url = "https://${config.services.kanidm.serverSettings.domain}"; - # insecure-oidc-skip-issuer-verification = "true"; - # insecure-oidc-allow-unverified-email = "true"; - # scope = "openid profile email groups"; - }; - }; - - systemd.services.kanidm = { - vpnConfinement = { - enable = true; - vpnNamespace = "wg"; - }; - serviceConfig = { - InaccessiblePaths = lib.mkForce []; - }; - }; boot.kernel.sysctl."fs.inotify.max_user_watches" = 99999999; - services.kanidm = { - package = pkgs.kanidm_1_4.override {enableSecretProvisioning = true;}; - enableServer = true; - serverSettings = { - domain = "kanidm.${domain}"; - origin = "https://kanidm.${domain}"; - bindaddress = "127.0.0.1:${toString kanidmPort}"; - ldapbindaddress = "[::1]:3636"; - trust_x_forward_for = true; - tls_chain = "${config.security.acme.certs."kanidm.${domain}".directory}/fullchain.pem"; - tls_key = "${config.security.acme.certs."kanidm.${domain}".directory}/key.pem"; - }; - provision = { - enable = true; - adminPasswordFile = config.sops.secrets."kanidm/admin_pass".path; - idmAdminPasswordFile = config.sops.secrets."kanidm/idm_admin_pass".path; - persons = { - "xun" = { - displayName = "xun"; - legalName = "xun"; - mailAddresses = ["xunuwu@gmail.com"]; - groups = [ - "oauth2-proxy.access" - "oauth2-proxy.adguardhome" - "oauth2-proxy.analytics" - ]; - }; - }; - - groups."oauth2-proxy.access" = {}; - groups."oauth2-proxy.adguardhome" = {}; - # groups."oauth2-proxy.openwebui" = {}; - groups."oauth2-proxy.analytics" = {}; - systems.oauth2.oauth2-proxy = { - displayName = "Oauth2 Proxy"; - originUrl = "https://oauth2.${domain}/oauth2/callback"; - originLanding = "https://oauth2.${domain}/"; - # basicSecretFile = config.age.secrets..path; - preferShortUsername = true; - scopeMaps."oauth2-proxy.access" = [ - "openid" - "profile" - "email" - ]; - claimMaps.groups = { - joinType = "array"; - valuesByGroup."oauth2-proxy.adguardhome" = ["access_adguardhome"]; - # valuesByGroup."oauth2-proxy.openwebui" = ["access_openwebui"]; - valuesByGroup."oauth2-proxy.analytics" = ["access_analytics"]; - }; - }; - }; - }; services.adguardhome = { enable = true; mutableSettings = false; port = adguardWebPort; - # host = "100.115.105.144"; settings = { dhcp.enabled = false; dns = { - # port = adguardDnsPort; upstream_dns = [ "quic://dns.nextdns.io" "https://cloudflare-dns.com/dns-query" @@ -646,6 +343,4 @@ in { ]; }; }; - - ## TODO: add forgejo } diff --git a/sys/profiles/secrets/hopper/authelia.yaml b/sys/profiles/secrets/hopper/authelia.yaml deleted file mode 100644 index 3535fb2..0000000 --- a/sys/profiles/secrets/hopper/authelia.yaml +++ /dev/null @@ -1,34 +0,0 @@ -jwt_secret: ENC[AES256_GCM,data:O0LXijtmUCoBKiQgptto6/dhcCRgP9EAXPhnmb0Dw4Gk/8irELo413FPlnc9EPyFvQTelNgJWZEUsgPUxN5uVjVTr/819hyNX37+sTr0COD9VXUprvkYOGHQ/7UmjK5UZPcgIzEPWwmU4xmsbh4dIgrKT55JCniBVQevvwGYq28=,iv:Fx5oSFiiZt6jKnApvahK92n/lATcJ7IBH7e5TdQCMRY=,tag:kaaV+2WLH22eZXx9WyHrTA==,type:str] -session_secret: ENC[AES256_GCM,data:lFkt5MasAri5ddS2JU9sNLTgHSSAelmvshX7jk5LEhWLcfTryoCdMHSiaqJpAY5NC0DgLPslyAyLtUgrAxTZqL/qHmSw4Q9XfxoWGk1IM4NERb0myOOTgmhcT4ImUEIROZHXNpgEUQ9c1stasix5uu5c1swUieZrDI7j79Xn5DWufzHc+SxaQwIggsLGpOazJO/UmBdGiX/uju2D/arp1okMClk8DcLWZtLdEs4V1Cqz5Yv21aeK/47DKy4rClqDB+8NNXk5ayA5wXa0DrvW7H+a+/ra6TRMcevMZBsjbvbRc2P654mpDt5XB3DMyoucYOHzUasymlYUMmUUtYFRhNaLWfgifAQJG8N+z1COe/DjWzhUOKfKNZQM7S0h61nh5RwLGh+PHMae0G7fLNTcNS7r8BxiIIF4wXJRmtxfnNY4GrQAtfatrHi6lbnrBzA7SsjaheK27/DVXZdUhkc6xxeIA3n+G9e4FSDC8aP6gKHPO8nDBzIEw21E0UtuNO7QYqw3NFwNX30ys+dw89S6RyZzJd9CHodYzmGHB9jlXJnu9aOsqmEUOuWD8Wwez9ogUQY5Uls/MbyXzX5dIEHeofPxzzQYepvMRmlNNyrWjQYmFqw8TblM1S8/dnI0FzmescPIKSdA/H5oEo8X9InpHbuEd2hOR0mQdDXoKFBw+ig=,iv:5yM3rohayzhGN1k8Njm/r8lggfaQDIeLNoVC3Vkc95s=,tag:JOH6xBEPFCYMHLSCNgFW9g==,type:str] -encryption_key: ENC[AES256_GCM,data:VBPBoNaL5l3/MWNW/97m0RXX7dANgHEgoIU4+S3Z7gMtZjFqscfN612CkWM5t4h6Ojej/J8WuslnoDgEK14Efr3byvnVOayFHUxb8U8Y1sGQ7DqW28v+3QXttd2agrVATGoiErVUVH5lUqmtIRzugQuWi707fq8A9D3OU/L26+O+/sBJjfvj+es9Vyq120ri1njtZvQzVDUoKjyTQOiPCOsyEX2C6rws1BT9UQr7EY73e5xEpiBczwq+A9eRVH77/Hqr8t0otbcxPn9rubUFPy9bOxTnqG/eXmm2vtPQXGRdQ3fUzvQgBSxjxkssoWK/MRaXaL6Xs37mfiUc/7KX3Ua49G53jC18HfFmfklnP9xmtORFk/zWTj4+eB3QKt9/mtg6E8iZUlI16S/PYyuB6d37Oy0iuAHatwDqJBSZdnPl/ZXW8NuaZCKGLFMojqBXPxOTxZ/88KJcEI2MEuueBsS62L9Gb7g0jSjsNfTEmA5lCGHQ4rbeG/SahrbAzPKMWTTIgV5va9XY1e1amweTGSjed5nk+XB9ih6Z0MZ+da4RghjnHexOBqEewhDICUHd4Xyfyl3SqJKpBtGOCBW5tfkjy2kIWVL5KB4cB1FhHq9fvATDcG4qCV5ptZPgnGbqsme970UHO7CNTAso1ju8Nk9GT/46y/4oPCxU6DS9gy2oN0hxbut4mpJ+RyGEthtpQ+caSPsjsTx5yx33LUCqw19H1mRqzZo23tSzAcGvLZiHt3c3/S1QRNGOIqJmTz2Q41JOVBjqPF4W/ZgfZgax+vASRDMre7S6TlSMfUGU1i99vzFkELmfDiXVTpbj+Jq0/kIxdaf6RkfvvqA20CfNysSsD7RoLqy7CyTilwjJVHliGqR7T8RG4aJJVZdBBPsXkkPa5281pUO0lX/v48gw/UOqcswcSf0uV9MRidR/Rmb/u6PBNuIRjjUl0U94ZtiO8925gSLFGwFhrrz3NsjkCOzUIyDObh6EImNbzsjWBmiCTetr2huYhK4JkW/BarC75zfhsEFiU9Sv0PKcymgGZ4gm0aFcIyWyyim3YxGI80otIZLu1oGid7YX6ddzWZPrTq8bK9GmxsiNLtfPCahA5EDYKDXoIHcc+eWjzJijoTNaGCAElNK2/kY3cO9zpviib36eYO1C6X5VYrMivTTdvsm935PNmESG1CYaDiAekpvZTDBsCJYm7RCBAPoAfR8IOeZdZah73QAplpQlTo+lxbb/M/SuPO2JMWFpn5aWSgHKj0X0mqtQ8q78KJ7cUtYJV1BkWLnAEmeudq4NqB02PkortEkJb9Jjgj7+iZNbuJxvrdhEixsOAwOw9UbFOIO3q7mV9D39r+PhQ1JNqP7HJA==,iv:fArn1NcxTjBUrWfYYGoeWh7P8rdDhK9zHdrtRrvVxzA=,tag:sGsAX8qOWK4qBIZh8LZj8w==,type:str] -storage_password: ENC[AES256_GCM,data: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,iv:SiRzgXm4hUSW+o80AA60oAIJus2FSZvL/Ly0bktT5XI=,tag:NuD9XVd4TNFOIo0jdHeSyQ==,type:str] -lldap_password: ENC[AES256_GCM,data:KbJam6qANZDc270gM7Umz1aABIW9N7xcz50PzhsX//dl97k6idDsDASd/33G7KxFCpVPtAQuhT3MLFuGQ+aFjy+YDasL6t8UdlR905CVbi2APH0pexqamhMpf1ZiMbYosdh0wAk5ZOJoWLdOZwVHUBWMgyRtEwc3i85Mla4CDvQ=,iv:PRoSle4GztDQv6QYeNsvHanREEZqs51t84Sa1qJh6Ys=,tag:XDTvZoHBbFtty61b9lugSA==,type:str] -sops: - kms: [] - gcp_kms: [] - azure_kv: [] - hc_vault: [] - age: - - recipient: age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8 - enc: | - -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAwaW4xdnBaSlh3anBzWUli - K2UrOUhMT1EvRmhVdVk5L1RVczdmM1FKUTE4CkIxWVFmYW1FYTN1WkdtSElraUpn - OFcweXBpSWpsSEQxYkt3WU9vMlo5OVEKLS0tIEFVTVFVTjNXbnoxNW5WNXY1NlNC - bGkzYllBRW9EdnBEQzBQbUJSVVJsRDgKmpwBLgT732TnzsDYmDwajn1VCZ26LAKf - eC3nJLzkfXX81axUuxozpATatUZlf9NXcS0gX92N0uJ7/6d1t9HPhg== - -----END AGE ENCRYPTED FILE----- - - recipient: age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw - enc: | - -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBhWEV6RDVoamYxZ28rUElw - dHVoQzYvYjdYNFZjTmRIY1pET2VzdHdsdVdNClZoUDFNQkg4UDhFS0paVUVGOUpS - bjNpazRzZVFJazM2NWFyazVla0dxeVkKLS0tIDU4T3pNOFE4VHBCdXpEUUZNUlNu - OTBTbDlXaHZnanJSbUlLUmRTaDc0eE0K0AEhDK731gOTp5AjocYgPEdXnr76m8PF - JoT4IWr2WYs5W/JgC8c4wIc4C9D4O8c+/mnE1RsG6EUXAz5ufMQcGw== - -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-10-01T04:33:16Z" - mac: ENC[AES256_GCM,data:JOpFhUp35Qh47yO0RySQGx9BHQfa8IrsiQarFNlid26D9jrDyF55Y5Wt88JgzPjGKVGhj+lJCz/vBGZ6wF8EVrT5Zd56cdKf5f7oOVF8s/sHl0O8MCstAUUazF8lP3SHRqZg4ZK45cFFt8ScFJd8KpCttiQY7xhjxyxCfUJ5E/U=,iv:cRedV+y5xEL8PB4gYzdEAmhqZ049geoPXHI6awqoi4Y=,tag:LvEb6Dc4flup2yEKPOnU2A==,type:str] - pgp: [] - unencrypted_suffix: _unencrypted - version: 3.9.0 diff --git a/sys/profiles/secrets/hopper/authentik b/sys/profiles/secrets/hopper/authentik deleted file mode 100644 index eebbf70..0000000 --- a/sys/profiles/secrets/hopper/authentik +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data:fxTl3v/kAs4ZP8TR8UKzI+GcgUH1v+ieoKFF2FCGxSNT37l9zAr7MCnFgarxxfw9quMofg//PdFYPbboHmwRl1B2,iv:jj7hRM+OOqOoM2wvskCBtYawq5+0RojJcUe9d8bCr/8=,tag:QrI/Y/TTPzvhMi6n7UeIbQ==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB5N1pRYTdVUmUrZzF1Rmd2\nTnArVWRrYU45NWlmRlBrYitycXpXQVBSWHpjCjc5Yy80UzhmZkIxUEJkTms1TkFn\nUm9WVG5lQVp4YXk1aWVxSmhSOWtXdzgKLS0tIDQyYmxPV0x3cTBRMGJxdlc3L1pi\nd1N5b0xjRVloOStPN2VEbFpUL3RmZEUK77mnYZQ0dsVrqPFU/SPVMjj0ck5Qgd7u\na/Sw+dUQnVOokvbtYGMLt9K3wbRq/HWLBumZc9Y5sjALF5uBFw6XOA==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBhd2FRL29rOUExa3RLVkE5\nNUxmeVVqRDlPSjNyS0d2MG9jYTlnSms1TFV3CjdIYWc1WExmaEJla1NsTGY0NW5E\nWnBxZ0pnaU9yS2lLTENieVBFeUlQbnMKLS0tIFprYVZoNjNwclYrdVQzZVgzSjFn\nMGV5bCtVSDRqYnlJL3BGOWpVaFRCSmsKh7D5NrErKlZPVseq0keoineIdaKAQeaw\nEu0DW3httU5wS1fHFwYChBaGsZie9GykW5Fvpq73o5TZRz2u8dmf6A==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-11-27T08:04:50Z", - "mac": "ENC[AES256_GCM,data:Weq2W0PFoCVMzP6CssTXoPQLA1sd1kTp51Wm5Yu0YkcFHrYfGaoiPE7n5tbsKWm3GpCqwVmU6W4lKrOlIkPe3flgO7qA3w+NtnCBkIhJstXgrDlCoHzwiP7FT0szXUDDFn8ALiA7dvd1zG3NCaymjt2zARrdFzBwA/kJBm/Vrcc=,iv:3ufxRlUlGT7O6/q0pn5ifSPCPvTZJIRNweSJKtHb+eY=,tag:jid9ltE//PrenBSjouz4Fw==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.9.1" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/betanin b/sys/profiles/secrets/hopper/betanin deleted file mode 100644 index 71509ca..0000000 --- a/sys/profiles/secrets/hopper/betanin +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data:TmpYiFqXu3yz4IluJ9DVH0TU05YL1NBsEcRb73vx4j45Q/aWQPA7V18+xz79t9HbFWekaLe9tPMgeiVF5uuK8qSufg==,iv:KBf+q3YSO+38HdkRt0/Hmp5Jhaw/2Cl4PzYkhtsRoM4=,tag:ZSySMXU11lvA+Tv3NKc64Q==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBqakZYMWl2YnlmZUZ2SFFn\nczJKVzU5QUsxeVJDdllja1hObmd3d1ZvbTJNCjRHUDhVTTZzNmtZSTk5SGUzaXhl\nNTJLdmNOUnd2OFpzZ21Jb0R6czdYT1UKLS0tIGdlUklWeEdaVnJENlZmRzVlTTJk\nQ1dZZkhhYnlEcXNuc2xLanZLK05HZFEK0/sUYuJ6bwWVgEUz0ST02ugITRJ/ynIs\nSWqP4EKaDH5Zc/H93TJexIdz12CgO9gurmdpa2w7z1Fn0lW/z+iQRg==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB4cFRKMEQxMnlsZlpWUVMr\nMUtOTjF6RWRZdHdMbzh4ZGpkelc3cEZyRWxrClVOSy9kNXB6OGpVNHhSRnQrdU5y\nV3JiVDNVTThpSTVzSnliY1ZBOFFQY28KLS0tIHd1NEo2VTd0WXJ4eU9KdjlKSHpJ\nOC9XRDhaNmNOOEJoOS8remF6d2szTncKG/uzlIbBX7gFBcUTXzstarnBeiUB0Cdn\nQjT1nFNFGR09WDtJROuTPYS6GFmEmlGwX84dGsIQpIjyN3XPSzsrxQ==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-05-18T18:34:30Z", - "mac": "ENC[AES256_GCM,data:ay8ylTBNXr37TCDqDAkbQ4NcCklv8tUJUUpQZTQCgMHHWtCr0wLCyTUPNUOoHOkjJPAZtDuAXVuG5UPGv93gdZOVXlWpFfZt2Je6YBhcP3HLYXgLNLoPPhqqwnyz30ec7Ux4sx7SyLFWPe+0vV0wv8VFzoI731nhgY88McofvC8=,iv:tCZ/uYsu5rWRf3CburxHOx+3+scZZ0JwLEn/BqCoGsY=,tag:rlkeDvJcUASA4kaizCtj7w==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.8.1" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/brawlstars b/sys/profiles/secrets/hopper/brawlstars deleted file mode 100644 index 54294f6..0000000 --- a/sys/profiles/secrets/hopper/brawlstars +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data: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,iv:KwJ2aN5mhXJjxL/toMSbRJqvuPgclAWJK5YdoU7us5A=,tag:HQcjTFAtTZrKCXau4/QqSA==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBvRVhvM0I0Uk5uSEQ3TjBv\ncExIS3YxbjRXY0kvd3JyTmhwWHZkaXU1a0Y0CkNmcFFvbS8wL05UM1A5K1M0Y1Bj\nRjYxVFREZjVKMjV4UW5TSlNUZTNrZk0KLS0tIGp6UVBlQzAzYUw5bnNIVjg1WkFN\nQnozRlhUYnVNM2RDdDFlcmFQZk5BQ3cKA8Pjse8ase9Xzg3kd2U8AKotlaIcSdux\nq8EL6rtmYmvpRV02vUYQxWxxj983BtKkR4pndd6o+MBNau4JgdYYEg==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBKeGJFSTJ0WnVkL0MxUUxn\nVWZ2UWFnSHR4a21kbFRtSWJ3NkhJVzlxVG44Cm85VmVpdWFROUFOYm9sUGxZUkg2\ncEljOGllTGRTMlFzRmNPV1B2WThYcWcKLS0tIG9MclVPT3Z2K1RadDR4bEdYbytn\nUVBYRVRjN0pqOXNYZyt5VVA1RVZGNEEKDwlbaCimx8n4FPN3cJ3yR4QE7m3VUBSX\n2o3KmrlRI5/N4CaKuTNI3GjPXUbtrC/+shV1fsqo1tE0XE3U6qB+og==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-05-03T20:12:24Z", - "mac": "ENC[AES256_GCM,data:M+XkQx/Ix5yEEtDoBD9RDYkFXHntkfOIFc4FlJgIXbJcArE52NkLuZSy7ZVvVoByeg6FlHr5Wj5EgHIcpIbUe31GW+2kCNh3LYaqUMRZmtxcP0Hk+4axgo2mCpp4us43W8AHkBu0weJmvQTixBUMXfP39Mdm/Qp3Wz6q+pCNPlY=,iv:mosXJmbrbXWwY5YH8lVG3lNmUZG9XD9yWvmBF+qyVRU=,tag:UWohiixM4e71GyAQCkS3Qg==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.8.1" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/code-server b/sys/profiles/secrets/hopper/code-server deleted file mode 100644 index 0defbb2..0000000 --- a/sys/profiles/secrets/hopper/code-server +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data:e/taTwDXTyDPREs4C8rCQmMRfphkOfOWIq1evkfWSSvB53wTLQlnHuaOoj0e+Cj7cS7trO/YlS323HjUsL4G+p8hiw4GiWzlP9UE7mJFPNnCurEG0JRKJsqeDji3rqpabQ==,iv:vJRO7sjwCIqS3VsWn50KOOeHVMxpscsgU9TEzEUvoyY=,tag:RLIg8+PokOGBWRIW2QCcsA==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBUY2xXRkxjd0JqNWNuS1pu\ndVNUeE5JaWN2QkRUZzBPdnNCZjg5K0kxRnp3ClErcHk0MTB6aGpWYjcvb1NIWWVC\nY2NYbVNxRWVRbk4zdXNmcXpkRHRXbHMKLS0tIGQyekRtYkZOYmRVaVRVclFEK01Y\nZFdFZjlkTmFpU0lyZEs0Qkl5aHhEV0kK9bTzLFDrLCVGJiPLCwPLBtZm1Wl9pmqC\nMcMhpaWFPrV9VBbTXtHYoojDrwc+dHDvWIskBixhf7P7R+dOOpchhw==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBLQnlTVGdMV0xhb215b1I5\nc2tqTHhHeDBMK29Eclp6NjVELy9reUYwTjA4ClBrVS9hWWhCeUsxbEJSNG9NRmZl\nQnZGVHdXM2svM1Iyc3NTT294NWk1RDAKLS0tIEZjUStFZDJoOHFrc0hsaUMrNXl4\nQys1M2xpRVhkUmI4U0taQllSWC93YXMKDJdRDZGGP/RFqquIY6m676vOL0CxEkrd\npIpZ88Y9/2oX0FUHxm8vV/xHXyKfWm5lU4xEcJ1tBV/Zm0jLbLQTMw==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-02-26T14:40:16Z", - "mac": "ENC[AES256_GCM,data:HdBVk9jF3snPRsp0Q8HJHuP9H0IN+FKXfTzqyb9B6+Fx9zfzJdMavFrbKeLLCCknAKLYArAtYDhjsoEGTabWnnw3vB5Xp88DdtQfCgblQ6vCpiTa0XuFPcbRfgyPfbLACXWuUAKpvuNpzMripi2cPWI1U8+LF0IDYdBDeG4PXsM=,iv:NYxkK5Fz8f1zTROc8uLuuUN1NO4MHt4ldF488vKj29k=,tag:9fT5fWje/KNCWebzNTPDIQ==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.8.1" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/default.nix b/sys/profiles/secrets/hopper/default.nix index 7952071..f5c8d03 100644 --- a/sys/profiles/secrets/hopper/default.nix +++ b/sys/profiles/secrets/hopper/default.nix @@ -1,130 +1,21 @@ ## TODO use defaultSopsFile mayb -{config, ...}: let - # autheliaUser = config.services.authelia.instances.main.user; -in { +{config, ...}: { sops.secrets = { wireguard = { format = "binary"; sopsFile = ./wireguard; }; - oauth2-proxy = { - format = "binary"; - sopsFile = ./oauth2-proxy; - }; - # grafana-pass = { - # format = "binary"; - # sopsFile = ./grafana-pass; - # }; - # wireguard-config = { - # format = "binary"; - # sopsFile = ./wireguard-config; - # }; - slskd = { format = "binary"; sopsFile = ./slskd; - # restartUnits = ["podman-slskd.service"]; }; cloudflare = { format = "binary"; sopsFile = ./cloudflare; }; - # jackett = { - # format = "binary"; - # sopsFile = ./jackett; - # restartUnits = ["podman-qbittorrent.service"]; - # }; - # betanin = { - # format = "binary"; - # sopsFile = ./betanin; - # restartUnits = ["podman-betanin.service"]; - # }; - transmission = { format = "binary"; sopsFile = ./transmission; }; - - # authentik = { - # format = "binary"; - # sopsFile = ./authentik; - # }; - - "kanidm/admin_pass" = { - sopsFile = ./kanidm.yaml; - owner = "kanidm"; - }; - "kanidm/idm_admin_pass" = { - sopsFile = ./kanidm.yaml; - owner = "kanidm"; - }; - - # firefly = { - # format = "binary"; - # sopsFile = ./firefly; - # owner = config.services.firefly-iii.user; - # }; - # firefly-data-importer = { - # format = "binary"; - # sopsFile = ./firefly-data-importer; - # owner = config.services.firefly-iii-data-importer.user; - # }; - - # "keycloak/db" = { - # sopsFile = ./keycloak.yaml; - # owner = "keycloak"; - # }; - # - # "lldap/jwt" = { - # sopsFile = ./lldap.yaml; - # owner = "lldap"; - # }; - # - # "lldap/password" = { - # sopsFile = ./lldap.yaml; - # owner = "lldap"; - # }; - - # authelia - # authelia_lldap_password = { - # format = "yaml"; - # sopsFile = ./authelia.yaml; - # key = "lldap_password"; - # # owner = autheliaUser; - # }; - # authelia_jwt_secret = { - # format = "yaml"; - # sopsFile = ./authelia.yaml; - # key = "jwt_secret"; - # # owner = autheliaUser; - # }; - # authelia_session_secret = { - # format = "yaml"; - # sopsFile = ./authelia.yaml; - # key = "session_secret"; - # #owner = autheliaUser; - # }; - # authelia_encryption_key = { - # format = "yaml"; - # sopsFile = ./authelia.yaml; - # key = "encryption_key"; - # #owner = autheliaUser; - # }; - # authelia_storage_password = { - # format = "yaml"; - # sopsFile = ./authelia.yaml; - # key = "storage_password"; - # #owner = autheliaUser; - # }; - - # brawlstars-api-key = { - # format = "binary"; - # sopsFile = ./brawlstars; - # }; - # wakapi = { - # format = "binary"; - # sopsFile = ./wakapi; - # mode = "004"; - # }; }; } diff --git a/sys/profiles/secrets/hopper/firefly b/sys/profiles/secrets/hopper/firefly deleted file mode 100644 index 39d7ea6..0000000 --- a/sys/profiles/secrets/hopper/firefly +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data:ayddgvGv34a02g+FcccUScOZAjlGvr7PL9EKJqMVj+3qPvrk/nVZ9JLkUqV70Q7hY2rICQ==,iv:MVmTYZj2bSAz+C3/SO2//gT6wkUwndRKjKhBTbVIjVg=,tag:nkygHiLXWHceGMXH4Ez2KQ==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBKdk1KTkczV2JId0RzOEhK\nbDYza0M3UFMvdEhMaW04VWpabUJHYVJjUHhnCndMYytJdmgxeGViZDM4L1BUMzlF\nUnMwMHpQdlF1WDYyTzNRRnRBZG9SR0UKLS0tIFBwU3Rta2krT25Ob2hJWGE3eExl\namZTdWh6U2ZIL3lQcXVQd1FUSko5aXMKcGKGc/HLGtQCUzjntEZzb1ENCRY+6Ia/\nhL7sQqWQmKApL5HMqdVqord2bzlZq/D+mUMJtbDcgQ5Xttbg/8a/SQ==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBMMHJMWHBDZGdJbFJibGIv\nN25lN2NwK0dKNEd0VFBxUXdEMDV6RnI4TFN3ClZvSGRpY0RtNlREcDRieHQ4MEJx\nVnRJa3VPemJtZS9DU21HUEVWOTdXRHMKLS0tIHVKa25IZjFwenpRM0VaSnJsSHhD\nMHhXcitscjByaFl4azBMMmdxZDlkN1UK4oKzevq6OGLVaj2TDtSEV2520GL9Qtae\nI/B13oBqLEjHgLcw85COsHDLppPf3viXB4jtaiy+VXgu0SwWhBtGUA==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2025-01-21T11:41:05Z", - "mac": "ENC[AES256_GCM,data:jXcLpNqb4L5FcQsjOv5OFBGw1AHpbTgJANjRwln5OW9rYmF2pOxZ/jjfgvImoTSCm86dTA4fJR2FnSujZu0jHC2sUNGoIaU4aubGll0NP40CNETfHm9wAi/Q/VahMjCKM2wGHyuNekCM5bPXnJgGG6wLDKoAaHZLazXI1iSzFBA=,iv:RatoXbQS0/2ClOekk0R5QvFY1JhboaIsny/cAQozc9E=,tag:tD+zY68J5L9Vp0UjzEO8ag==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.9.2" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/firefly-data-importer b/sys/profiles/secrets/hopper/firefly-data-importer deleted file mode 100644 index eac5c05..0000000 --- a/sys/profiles/secrets/hopper/firefly-data-importer +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data: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,iv:gXckW5jdV3b1g6Er0pWaeBAbUDfkx3K+FTG5Rio9BzA=,tag:RxIYCdhAovSO2LaMbAgm9Q==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAvWDBjQjIrTkdNMFBMeW1K\ndVJwaXZvdkhMZlZoS3Z3aVZramo1VWJLdEdRClQvbk1ITDNYcUJ2eTlyQTMzQmp4\nZlFMVGVKU1drbnJneVlvOHVobjg5bzQKLS0tIDI4anFaWDhGeCsyTnhKWUI2NWw0\nL1VyK2p0VkRzUktyTTdQenlxTTJsOUUK8R+OZZ7o4gT0wHGLi4DTcWUSHGOg20a8\nbs0TPt4rpj6tg0aw/9e/pmUX39lJ6WYKwSWYNckjHMLWXjhTg/zsig==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBZeEltNU1YWHFHY3pwcXdM\na1VhZHJxMnVTREpzTkVMTURCZTNKVkNiL3k0CmtzZGZjdjhKWm1mdjdQZ1VqVjUz\nUE8xaUxwV29aMFE5RW5lNkE4UkR5ZFUKLS0tIFhDdldMOHFzckFQVDlYVkVleUI1\nVFB1eklMMjE4MnBnZUFJQVNBRlpjeEEKjKlhj/lqfd5pMVWhfJOq6yFqEwqsMCbc\ngDyxmyf8sRALL5/WqZ7W+udReI/Gwt3ewr2VYmcNj2WnZj3MguMl+w==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2025-01-21T12:11:39Z", - "mac": "ENC[AES256_GCM,data:eVwt+Zl32OqMvevQjeKCCiQd6GR5r0Y69T8MJFUl9EZwsOo0qgJsmth8z6TPM/RkZub1UxCtnRE2kyUGZijVGdiBbUh/qsOXd+W82I6tQtK8HUCg8IcFOJ5qj8wpQ/sWd+FMhK7vesNxUM5Sk8WjmX0htSIAMLq8pw8L0wwIzjU=,iv:tqTlAx5cn6d8ZGAItL6lBiH44X9WjpvAPIY3VOa3RS4=,tag:Qj1Vv79nFGA+zlL18dZtYw==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.9.2" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/grafana-pass b/sys/profiles/secrets/hopper/grafana-pass deleted file mode 100644 index e876beb..0000000 --- a/sys/profiles/secrets/hopper/grafana-pass +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data:+jzTvF67htgSLx3//yu4CeH76/lQdxwcJSSplJm9eaVNs91PXF7hnZrEVyjIvMLi8lwOTSrH7SZJXOvZsoLRZHDdWC88+H32jsjVOopJgowAAQHuiKyQJjCACN5OBslKgTQEYo4eKpC8A1fliKf0fwJW+HY9pC9WUbZUkbpc9scMrZJIVb2Tm6UQoPoiEn9PbrC8tgGT1lOEk5EeiMgYg1JbEL7hcn1epuyYPYw45TV4SDLlnvo=,iv:qscpjBl/ifRGmjSHLUZ5rgC8oW86k1ca6JMna+VOFdM=,tag:Bsl3nrKTHrt27Xq/eLDLvg==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBYejVUVmNCQW9hSm40dzll\nT0Q2STNrNEt0OG5GcXlYMUpHaHpZZFdoejI0Cks2aDJ5b2R5d1BMSSt6UlVVelNL\nai9NRVNreGRZNHFvOVFJcTcra3M1K2sKLS0tIGFvc09pTDN6TGJuMU5XWG1ZT3c5\nWnJsa2k3U1pleUNuZmVzYnRpakxqalEKdNWuvPa9fm+UOiiZ0fb05Cw084z+tz5q\nnC8kK1ZAWvLKPgb3yNhfzrmVbdCfxvxnGYmV3f1SkVFaZv1XMJQCtQ==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA3STVBMjcvMklVOFRuSThM\nWmtoOGxBYVVVVzFFVzNTSzl1TEEwckxsU0VJClFvcU9BbzlWZURSclNFek16L2I0\ndU95VS8vQlZqL0FIak9XMjBmWFdEVlkKLS0tIEJtb0FaZjZFaGE0S0MwNEQ1RnU4\nRUFSWG9LR3BoS21ENTMranhTQmcvTk0Kgm8BjUznYhzRbYwlettBVVK6r0bYkFFi\ngulgnbUSol7nm+eTsDLASZtm7V5Ms20Hv1/SKRry7Jr8zYZjWUqJ1w==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-09-30T09:41:29Z", - "mac": "ENC[AES256_GCM,data:DvGuAiiSDScG2sWLq/SMCDvJ9JtS4nO+jqVnDmvRyjz14bRyiOSW/5p1vIaOgqPpuGKJ5OM+drlOdJpz8Co17OesQWWTH1GxRBkF3GkInG9xlY/PwlW/4R3mw1+3NIUE4xy0J1szU/27n4v4ToQ92Nn6NLe1fqZBH921xq9PcYA=,iv:1/pIrLsgLYea7MhxcchiliIDvNMTCjmLr2G8yhAMX6E=,tag:HcT47ZSCWkfju2kTitgdAg==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.9.0" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/jackett b/sys/profiles/secrets/hopper/jackett deleted file mode 100644 index d929e72..0000000 --- a/sys/profiles/secrets/hopper/jackett +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data:1p3OQ+qlo1ewqD4VPvVsyqZecL87sHbEQGyJ3Fepvahe3NsMmsDL4k04bBmsQLpd3fVj65WTtYv7cC5Cjy83AMcHVaX8/AVWh/9qdijmWlmp7RNwGgdyPMs48gM1677X8mUt7AohmlI7A+y6/zaUQl2C/FSGXYJaMOVkeSayMRHu+B0nBIVxNXo=,iv:69xkQvwZND3qfIeRJmOiJ9rp02Y1a/xexcj7IyWlT2w=,tag:GYC0JL1QTouVDPXQsaSH0Q==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBDMElTQis1R2VCSjAyWlUv\nVUtFSlZBT3V5YVdpc08xUUl6KzRTZEQ3QUQ4Ckp3clF5N21TMzJqNnJMakhwR2VU\ncm9GSG5SRjdLNWNwdUpuWWxka0lBaVkKLS0tIDVIckttQ3EyQTBEZnBxM21pZFpy\nZjYvcXpMWTVldXdhUmx3RzJNWmdMN0EKceUMr48QXIm1/6CiQg7J54nMSSuHd1fU\nKsL0//t6nmcnuZDWqsxTw4V8/i18KLqB8DfI3Naca1kiT/Eswhq/mA==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB0bWNkQ2MvdG5zWmZXVkhJ\nUmwrZEM0UkRMUkk4dGV3bGoxRk1DU3UwalJJCi9JRktZOG9aRFdPcHZWdjVwa0o4\nZXkzN1hCVkFEOURhbjRla0JIcDJLcXcKLS0tIDAySitMSHpqY0ZnbHU5UjBxYU1a\nL0JaemNyT2REUThtNDEwREUvSDd0ekUK3J7gYbDWZjHJ5+QCE9nUKQI3LsU7yZK4\nGtrCM8JFhNUrglhhtBiIyez2O5BiDpqpflc/jcTaz0Eq+PkNzX35WQ==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-04-08T19:29:32Z", - "mac": "ENC[AES256_GCM,data:fOYBWvnmxQZ/Il+OP9BYbdJ1d58INKjQ7UVHARNkCju+GQ9qfl2tlqhQ/x759aSiPatiVDA/PyXBMBPCIIJA6gaBoitDfoXEwMoNLApcT+LMw1oDLbxBoZRivOKKlDktHEE3FFKTH9Wz1RsG74d5NptacLxvZqgdPLUyVIJQkV4=,iv:nT+twZfMM057UlamPjveu55NdMXseu+HGL2TjuetSAA=,tag:dZXtoqLmgASx8Hz9Af/rJA==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.8.1" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/kanidm.yaml b/sys/profiles/secrets/hopper/kanidm.yaml deleted file mode 100644 index a4da6a3..0000000 --- a/sys/profiles/secrets/hopper/kanidm.yaml +++ /dev/null @@ -1,32 +0,0 @@ -kanidm: - admin_pass: ENC[AES256_GCM,data:FjF48e3KmP/I0Mb4/tfdI9jNRIrqlqVQ3JvDC2c+i+hE+omIQeKYxuU2cjaIBRO9B5CfGBhoip14fhe7Ubtga4IXiJLdnRczk6fQOIKrgDMjDSJvs06i04jeqg7lx9BChK5AzE+aRzSyuu95dyTmlPKUyf4D/G5x99B1KtRf/hY=,iv:no8/rZz30EdVwfc5r6lm/SuAA02JJaIPyHEWQEjOFus=,tag:6ValsFgRNmi9O01qZyUk8Q==,type:str] - idm_admin_pass: ENC[AES256_GCM,data:sCtefK4kxzMw7s+3f48PAnGNYQYum4DyjgeyYLUCPhq1vOHGBzgDcFaYrGvf5ID2/0kEUlT7lYKgtSU37DGY5zCGEbG5diD2lMBZ6BW64f1qpgx+0opOQjcAkKPrVtmHYm9iCvU8pZXvha0nDzS0Z2ZJM3ejUCW7omLTSLHzKFs=,iv:X88hU0Sd22Iky3cZTh/m1AjZybGe4MAIBJ1isnYQEPk=,tag:UTw98CWvj8+xRrYuifU/Tw==,type:str] -sops: - kms: [] - gcp_kms: [] - azure_kv: [] - hc_vault: [] - age: - - recipient: age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8 - enc: | - -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBFTWxhUzF0QXZmME1jcUR0 - TUZ3WFFDT0VmdE1mUTZsTXlwZGlncHNuS1cwCjRpR1ZsMlFEQWNVd2VLMVlaMlVB - ZUp0Y2FEQTU3Yk1TR3ZzeE0rdmVJM1kKLS0tIDZZbjl0VHhiNzRta0MvUUtla3Y0 - OW96QUl3dTM4Ynhab1ZlclZ5S0wvL0kKw+VSMQNTYB+7dJxhGttf7/Ol/rWhM56r - ga6NOMewGceUwiX9WEH89dsbRpnRq72SXmkt70w4dUVTdrwLm5oXqg== - -----END AGE ENCRYPTED FILE----- - - recipient: age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw - enc: | - -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBIQi9rV0Ivdk52eEh4OTVG - bmtmdHhtYVRvYzc5WDRmSy9qNFNLQzZpZ25FCjNzVWJ5U2pDU1hYTThzK1BQWms5 - TUxhdDhrblN3YVYrZDVERGRqSzNBZUUKLS0tIFg2Rkc1bFBTVEhXa0FVbzZhZyts - eERtNXRlV0RTb2xyc1cvNm9oN2RGeWcK6f6acq1P3Ds/SS7vrye2gE1/bUvEqe2D - gXkYQGsNWxyT3MAXTK09m59D4TqHEfYUykO5pCmAH8tiHN3pxJXEZw== - -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-11-27T09:47:11Z" - mac: ENC[AES256_GCM,data:EDCfpkGnl06wOXwbcg8cQBlj+OV7/KsiVhGzx0Qm8/kOB8CVvjumK/LQZC6FG+oJDs5TBDRGlM8uJIJL54wpDn7F3YgO6KR9d2hmorL2mza8rsxHH1T9BpQCXp0ENPiQKN2EZ5vLnjTOvYRJK1w/pMDKr6tdwILlcEYlWfSUuEo=,iv:OxANZ49WSfh31H9FxLkJSg22oTfZctWazEEv941orlw=,tag:xouSzvJATMzua7q0Eq07uQ==,type:str] - pgp: [] - unencrypted_suffix: _unencrypted - version: 3.9.1 diff --git a/sys/profiles/secrets/hopper/keycloak.yaml b/sys/profiles/secrets/hopper/keycloak.yaml deleted file mode 100644 index dd46c4c..0000000 --- a/sys/profiles/secrets/hopper/keycloak.yaml +++ /dev/null @@ -1,30 +0,0 @@ -db: ENC[AES256_GCM,data:aO/UVjVSJTk0XhDf2M+B9WzO1PkRv2Y0oFtj/kZBFv+hmhsCy4l7tg/FtpduZWK9SueWAX+k7a52UwV5YXDbLt7ldW9gS8bN6XZZbiDj/rBNgiJBF/ILrA==,iv:5KzLZ456gdD7L87NAMXWdZ/LyQW0SzKqdvMZ7BbaMic=,tag:0mD1tXDO4Hc2Y0LmrFWWwg==,type:str] -sops: - kms: [] - gcp_kms: [] - azure_kv: [] - hc_vault: [] - age: - - recipient: age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8 - enc: | - -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBQelJoTzZ6YzJsQS9UVkxG - QzVIVTBtdmZpWTlwcFNwMm0yYzFvOHVIRjNvCjc5bmJxVkVmR2hSUDAybVZzOEQr - OEZ6bU4xNnhpcnFjM1I3MXh6elloMGMKLS0tIHZXODNIc2dIeWlxYmJNbTdDZHJP - SG5BVXc1UFQrdWxaa0xRZUdDdVVJS3cK3XATi+vFRe+0p977oCkprA+c+GkDIWNb - 9+sAS789Bgjf/z9s2TOKyBWFawZWHDbhwz+4MG0d5ELQIhdoma9RAg== - -----END AGE ENCRYPTED FILE----- - - recipient: age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw - enc: | - -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBFQlVscjh0SEx0V3dWV1Fw - aUxLNndnYkNGMHJUczJ2djgxczdMNW5DZWhRCkZYdTBJbTF5MWVTRzcyb0tGL3Nu - UlFpSzlzVVNoTVprRTd0Rjc1ZUhraGsKLS0tIFJ5S3cvaDJoSHNmamtrdFdxYklo - Rlhtd21GUUl6WkRaV0NtNWlqMy9sSzgKBF3Gj10sIuLdWrSphZfoVnjdQbIiy9IO - 3rQAuIw1osKIf6TA2qJ0P8RGX4OgfhM8Ofst0S7+SqgglOl0LkXS+w== - -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-11-27T08:56:28Z" - mac: ENC[AES256_GCM,data:gf+TwvZXThH9B5sQGhb49dDfQwpZy3kIwlVfLn6qCbe46evwsXPucp657KBWju+i0p8ByR7IhALEK/U/GX9FBK4Qspw9y0NRMRvyk3zVRszUxUz3z32IEnYvTCapP7lIdeAVppUow6tL3XdgZGyni2H3liUilqiZ6NGw0VlvtpU=,iv:wTMAaiB0Wd5szU9g7Pd0OV04ddlnn/p50lbO1rmmAZU=,tag:huRsSwiBThgxm3SX5k0U/A==,type:str] - pgp: [] - unencrypted_suffix: _unencrypted - version: 3.9.1 diff --git a/sys/profiles/secrets/hopper/lldap.yaml b/sys/profiles/secrets/hopper/lldap.yaml deleted file mode 100644 index ce56028..0000000 --- a/sys/profiles/secrets/hopper/lldap.yaml +++ /dev/null @@ -1,32 +0,0 @@ -lldap: - jwt: ENC[AES256_GCM,data:kFvBDxZzZw3rgk7yhEc6LB+vqLJktwtc3xJlSxnm/kURXM0yh/uqhfjr+7PJF5CZ24rH/eEolLKnLbxMh196y3/vZx54RI9gEx6L6P+XcLffUp+QQUvlTrcIdhS+NuwdI0cFIuhBsIde/AFGzTouQlHLQg/cofHneP5CbCpUcOByvJKwHQtL0aelDx2WTQsgoRkCe9FBd8ORUfbwowb6ooBO+M3vQMY1t3JCsOH54IRylLietKyLJqkzSoozD9Icxk7E6Q6V8YZRVlKOVFhRBn89oHbh+eiIxDMWhe/38UDimYeS1re+kTtZZv1IuzOW8r/LWmbeqS3H9MClj6x6EQ==,iv:Sff5shR5CocdHdUxKwBiyRIT9d6U83k+1Cm83Gdu0dA=,tag:Pa31iMzZyUwUX+i2LrdhXg==,type:str] - password: ENC[AES256_GCM,data:mwPwme/th/mzjxFha/4atBSi/xpg5pEhiKl1j1Dy98KJt4MxH2qz5Y2W/xjS5StEz0x6wLu8+LNsPqMyw+FlE3/sf15oD5ehvcMUbVCokeSAwCjri+Kut+T+nY1h5vStogXHtvMQAd5nvp5SFji4qYBXfuyRE/nfhUTi4ik/q+rDSY6e8yvSrGz48NWRKjfYAYp9DYgBDSW2AF07qQb/bRHMe7MAEC766b6S/M1AUzv35yFGoxtCki7wrUXWiz7VFmJiX3gNlCbcuE2/TXGWlQWVkS/1l+TyTVb2RcAdRZyQcwVvurOF//EmA45ktMHreh9FVGwoIGPTR5ThS1p3LA==,iv:xMp63D4ELTSVidg7GEzQTeAW2M8KNKaasEqkLiJMN+0=,tag:j63xikfu6H1DfKHEO+Ak4g==,type:str] -sops: - kms: [] - gcp_kms: [] - azure_kv: [] - hc_vault: [] - age: - - recipient: age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8 - enc: | - -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBKU3ZOQnE3bStmdVlOWWVU - cVNyRFp4STR4MFRhNmpVNmpVUUFCc3dFNnhFCjVtU2J0cGhVRVN5MFFobTMrQzI1 - VWoyaStZR1BPM1R4TUs4VjNVR3JrWTAKLS0tIFk2ZTJyN0ZpVFdtZFFKNjRacnFn - bitxRG03RU43ZENId1dIL3RWQVlQT1kKpGj5BKFO+iX8WaHbGOlUSfOp8bIJS3wS - 6Kqt1qkEPywYHgwd/amuELbkthu7mxCx4k45EEaN5gILyONGYJxR2g== - -----END AGE ENCRYPTED FILE----- - - recipient: age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw - enc: | - -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBiejQxVXlVM29ldDNWbnlC - OTl3SmttaVlIUCtTK3ZteVRCY1JHYUg3cXhZCnNDY3JON1luUDcrS01xMVRGWVkx - Q1YvRzFpRnpybnE5SnM5NGxqUWVpQ2cKLS0tIFpIcEsxVkpRSW5KcmoxMVMrUW13 - WFgzK1BpVks3YmcxT3gxYzl3eHpySFEKJwsayqczYl2bFViRTWlP1p2OomPA1NnE - EKU51AINXIYfnNaXzMKWEj52yoVLvtKiA/rdJeVVOOopwD+qa/lRkw== - -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-11-21T17:19:18Z" - mac: ENC[AES256_GCM,data:6r8Y79Z04G+govQEwHe+ASatz1tMkn+c/M482tyOK3UoJGkV3XghrEs2M9s3QiFF3yG/HJ3naIG6DNDlqZdVKzNDdBBIlMsFFi0nxCKDpr1t+kFfljblw0rVKDE2jd+W6BSPF9hTmNQEoCrOiXNuIUdJdKTB1b4oJMp+hLGq+gg=,iv:WOmnVRRVF0agBf4Bftk+h0tZuPqxHn5M4mdwEbxqANU=,tag:Q9Nn6N4J5vGKemx3m5wNfA==,type:str] - pgp: [] - unencrypted_suffix: _unencrypted - version: 3.9.1 diff --git a/sys/profiles/secrets/hopper/oauth2-proxy b/sys/profiles/secrets/hopper/oauth2-proxy deleted file mode 100644 index 534deb2..0000000 --- a/sys/profiles/secrets/hopper/oauth2-proxy +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data:jvzEDBxCG38o0tvGPHvMDvY9cnTkLdZlnhUWeEHDIPGKztfQ/HRPQoj9yBLGMEnuIYhWUCYJklyEDc3BcULRLskf/jEWs+6UoP/V+DnNNyMXf8NF00xrOA+QfGxDfK3k2Wdv9MV0ZAHuldzc6/DiWnmqPOtKXHIrcZUVlcmqw2LcN/mOFvop74y8j6yJ07UA,iv:toRLJ+bZPtL3gtTpSsHbk9hKbW9PKIb9H/lAMSaPF68=,tag:u+6PwiTkjFF/TKJIewdQ+A==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBGaEpxdTRMY3F2M2d2SjNB\nKzhyZjBFMTVZeHJiUi9JNTBBVDYwaHo2UUFjCjVqbTVQTG11b0RUUU8vWU96SXMw\nVmRBMGlBcHVzRGpZYWZLK1NHZXlvL1UKLS0tIHV4RU5BY0t4WXU1bE1JcThGWGpQ\nYWxkS3h4OTkxNFE2RERObi9XQ1d5SkUKZ7w17h14jYOIj0YaIo5aknhLIkhaMEEy\nLD7ND/Hi5+jJo0FtYYpZLIVJvAcOjQq/OTeaE6hrHelnsUKLJhk5PA==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAwSEpIOWVjb0xDM003QkRB\nSGVyWlpyOFNjUmVhYkNQMHFzVmRQSzRpQjFvCjNZaUFxeGNDbWNMVytOaUJFYVZS\nRWE5OGIxNllUY0toajBaVjJmcFdpcmsKLS0tIE9wdjVOd1ZDaDIwNnZOK2gxZGxS\nckdNREtKNnNGV3p3aWJueENMYi9EWjQKwrZI1MOWWrGzmxkm31tQzD5apsih0Rdj\nvJAp4PXLVFHusaByR+fr/lErQ8Km22R5jLZvrtcTXBkDtKrBG5AQEw==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2025-01-20T10:11:17Z", - "mac": "ENC[AES256_GCM,data:QDXvlOqSBoP2XPyY1eUG51ygnc3aNf+M3BwXCekHLXE7uUSJETYb94gXETkh3ygPHfOGKv4d9mGpmreejkuJV8DaYjmE8/L200HLJBRskN8MUkfnYKHyNwh2kCHGux3Z/1moeXofU9pu2PyYnajESW8v5TNCIFBUSs/Ide5v2KQ=,iv:AumUp97UDADaAmLTfAId3jLtZi08ZQxnal77o/7pYME=,tag:I8YZOzrK4yTe4i6zNnrrYw==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.9.2" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/serverenv b/sys/profiles/secrets/hopper/serverenv deleted file mode 100644 index 6ebf081..0000000 --- a/sys/profiles/secrets/hopper/serverenv +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data:GOiWi8l61RgpVeKWrlfwxWMbda8FgJGlHXl910qpblaTsxbrIe+aZoEqVyaSST/N4kip7m2fQsCaX5C827XKR16CZ1c5R/3oql8gDcu6lrkDTIbbttN/RUVfX6LD1Y0b,iv:nwZWzKpz4y7+LKDHoojMWBKOvybZeo/d/ZSzsMujXTI=,tag:SHnv4RuNrsQpQ30x1gjIOQ==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA4clpZQ0doNGJwRkI3QXdX\na0RpWnJoSjlveUhzK1lPaXRYRnlhcFZPZVE0Cm1xamVNMWxVeVhXdmhWZTE3TDJa\nZnUxdWdwVU5Bd3czS2FRb3pkWDFrcEUKLS0tIG5BS2ZDN21Tbm9FNnZoRUIvV0N2\nQmY2UHowS24yS0hYTXJMKzJJdDgrTlkKW80YjK/+FF1jjqNFoJLUTtZENRS7D5Bq\nFq7Vmu/untXqA7yqojI9Og7pdWyAnAf737kq6XusCBA3KMz5C+BgMg==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBkTmJYZzIra3RIWHFyT0RJ\nZ0JoeGduL1RmYWN2SC9Ua0RIN0dWSEN4QjB3CjgzMi9sN3RETTArRnIwNGZkM3FD\nZUJFVHpEdE5YVHhQRmoxY3VWWnFQdG8KLS0tIFo3Sy9qNE1nV2dWV1hSZEhLUENJ\nUk9walpjTUp6aXUvYjlIR2c2dlNscXMK3ZT6xLYaKtwxfEqhhxN9fgr4sBYMSHiY\nnfcj5NNxOYgY8q6Z7oJ9Yzk+8Jrv7SS/eIMCt+rk9+UOu3xl+r/TBw==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-02-16T22:49:25Z", - "mac": "ENC[AES256_GCM,data:1V7ZORlvxVVynY7rkKxkEw8MLonW5BwdGqvZ8C9Y9QNIu/udVmQvFMOxHVkdTcYOgk/4pYK/jKNkaPCPtjfJvhnSQ3ZKfOQJWfTVhq+Ba8f2HYc2qLUDupyMtjhBY7W2Pt9yAlJHxpozblCnGty958yy7Z0V0NiiO9ETA837fUQ=,iv:IqAr2BETDyPSdhzYWKEts+9AK5coOGY5/99QZ6HufyA=,tag:3oes+CnEb4zcdNp7QQOahg==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.8.1" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/wakapi b/sys/profiles/secrets/hopper/wakapi deleted file mode 100644 index c977e93..0000000 --- a/sys/profiles/secrets/hopper/wakapi +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data: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,iv:IDFSJC77vrlknBHY8pLVrgvP/MfoDfVHBUXEhEsnvJ8=,tag:UaSjAjxBu2sAuFysgk7FlA==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBXenVVOGZQREJQdHRFOXRu\nbEV6a0VBTkhvWnVGY01HbjlHQmpoc0pkbkI4CkJFNGpSaWdnK1pHdC8rNk5qZmFv\na2c2VnZCL2Vqc04wSnl3SHVpZDI0U1kKLS0tIGJQWWRxUlk5cnJ6ZGk3aXlFc0cz\nRHRma3ZidlljdVVpQm1BU1NBZmFNMlEKYEEzo3TkebN2s3Aaqycl3sUSI2S4f7nK\neqRHJ0cyA/fZP9y275CW/mHWY9Yblv6DmzIvmlnMwGhrT45j1VMbRg==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAwVk05dVZOZzREM0dpR0gy\nOWp6TCtwODNMVldUVENkMUtnTWZiOUJSYkhBCmNSUWxNclB5ZE91cFVPSTFPUzIz\nSWRoUUVJdDRwTVM1dDBwclowSlNCc2MKLS0tIEhqU1NxaFltcEo4akx5bVFQdkhX\nV3NvTGV3OUlDdUtoVEZoRTVPYlY2QW8K77rvyrNR45P+UweOpKUMFac2PPfPMZ3f\nQxebgvBUQJtSFdjs1+unvuvejdu0le5Yp1LliZfe+/L7ErXJjRsVBw==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-05-21T18:11:49Z", - "mac": "ENC[AES256_GCM,data:hIc1MfYDcZWh3RQcSJ1aHaNFX/CtfUtUJ/TW38AYDr9r0xdW7qiPIz5d/VCAKEbl4TGBxRDHZwjtFE4l5ZtQhHlZmgFefOAzHaKya/lPwjseR6wj43IxCuUQcHGEPK0qtojlq/0xgRGqhcOxqrBuQZflGNrHUO/fUPjCWErPv88=,iv:ymIX0XSRk2+zBoS9WL463beYwFMZJzjz3o42JUwdLtc=,tag:zXlnM33ZlLNo47uVhXXtKA==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.8.1" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/wireguard-config b/sys/profiles/secrets/hopper/wireguard-config deleted file mode 100644 index ebbaf81..0000000 --- a/sys/profiles/secrets/hopper/wireguard-config +++ /dev/null @@ -1,24 +0,0 @@ -{ - "data": "ENC[AES256_GCM,data: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,iv:j9OIb4P+wSicxghVbuh6C7Sv6KLqjwFQ7uYLCGMeEPU=,tag:hqRxr0p7CPiSfPP9GMLfuA==,type:str]", - "sops": { - "kms": null, - "gcp_kms": null, - "azure_kv": null, - "hc_vault": null, - "age": [ - { - "recipient": "age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJVlpJdUdEZ1lNT240WHZt\nVnFlSzFQMjhMc0F1LzBvWExnc1dEL0RPTGxnCmFKeU5zOThOcVc4REhNeDh4Y004\nbDFuSVBtL0MvQ3RnS3VZakN0cGVJbEEKLS0tIFFuWTJRbFg1OHA4dnBvWEdQZElm\nNENNSEpPWEtqWS84R3lhNmRCYTdFSDQKsY0PV+8vYLGcU/KxeQZMWCkbkGUfR1gh\n8Tdt7Jo8Xvd4HFwf8a0XegxMxqQk8FE/44RnkwG8xf6HHXLuXxkmlg==\n-----END AGE ENCRYPTED FILE-----\n" - }, - { - "recipient": "age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw", - "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBBaHR6bXdSZWlEemwrQklY\nRjFFU0VWZGNZYUxaaXVndjNpQ1FrUStQNnlNCkVpRmFIV3lvTHBSSnVwK1BhWGwx\nOTkycVVlNDdwdUlzbG5Tb1ZDMFExbjgKLS0tIEY0bVp5akRzeitrZ3ZEaVdueVM5\nVUp4bDhaVk1SWWxXM1pJdWs3UGtVNUkKIScfgHBYmQJE52GtVd32PEuA2/oBl30x\nclfnEzkCCAayBnFFoulY1LkNGelfJMr1/cTK/i9S8Qlts0Vn2mTBnA==\n-----END AGE ENCRYPTED FILE-----\n" - } - ], - "lastmodified": "2024-09-29T13:16:47Z", - "mac": "ENC[AES256_GCM,data:DcUk4FtCLgPf8YrlngmnCrflMpqL97QUI5s1eZTaK0ghvD3Ae0qlZ7whcUdalROhO2vsi5XHvDAXMSDhtbfnrEnuTJpwilONMRs66G8mJc9/fnGUAfEBNiZve8FXki+vjaiYjmCVX8VWGMq2NP3Ax4DR7+/obOjOKA9m1CThNH4=,iv:sT8H/ZK7TXOGq054w4jUWqVB/l/nHzXtg9DQJ4HF9Ps=,tag:S6RH3STimNR9KSeRP5V7gA==,type:str]", - "pgp": null, - "unencrypted_suffix": "_unencrypted", - "version": "3.9.0" - } -} \ No newline at end of file diff --git a/sys/profiles/secrets/hopper/wireguard.yaml b/sys/profiles/secrets/hopper/wireguard.yaml deleted file mode 100644 index 530b236..0000000 --- a/sys/profiles/secrets/hopper/wireguard.yaml +++ /dev/null @@ -1,31 +0,0 @@ -PrivateKey: ENC[AES256_GCM,data:Eh8XY8HqxCr4kdutL99GBhNJEjT/QP2pHQhTe/O8juiKPHslzcen+x9JeJM=,iv:MC+g84kqoFqaD0N/WvKoEgy1kl/Z2SgMqpm3AqjJ1mA=,tag:trvHpJbSI6CHNp4ihwpiIg==,type:str] -PresharedKey: ENC[AES256_GCM,data:fT9RIvz/gXAop5UDlbWwVV1yHErbDW4ff5j2Xo1g1nVTPGzbDHZPtZD9+ts=,iv:sHrGX8gxPVkAydmalgUuZHKUn3O82eo7/vv7lA5hqDQ=,tag:/vb/zgrm/dXm1LBzojrlGw==,type:str] -sops: - kms: [] - gcp_kms: [] - azure_kv: [] - hc_vault: [] - age: - - recipient: age17pdqkpfh6kc6wm7gxzdnwf6vphlwddv9yfpdu3j76e24y3amd9tq3avfc8 - enc: | - -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAzYU05MHNPUmYwUlJ0empa - QzBJdUt6WENYNUp5ZVZ4ZjZ4cFl6eENXREhJCjIxcmRQbEpHNWU4VHFobFZJVlhM - eDE4bmMrZ1BnTlJoZXVpVFVWaW5sek0KLS0tIGxVZjNIMmVoUEVQaDdQcE9PWjht - NzkyYS9zY3Z5OG1ib0ZyN3FkYjlZOFEKmvYIrVv5qmwh+XEmKeCjcTGbWufg0PH0 - Vrws+EngJk5ceYTmiGK1k1/9CNPG+0sdUgr4VrVv6DFKTzOgWB/YVA== - -----END AGE ENCRYPTED FILE----- - - recipient: age15mgf89h220puhz48rjpwxwu4n2h4edur60w6cd8gku2hh4e5kqpsghvnyw - enc: | - -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB4eXpMT1kzTE1zTzQ3aFp0 - NHNVcFVVTXRVSEQ0QUZrK1FCTDI5WWNQbkNvCkoyUVdPVHlUdlM2RUtIOGFGQWRY - ZjJpTml5aE91MW5VTWZveGhVNXhETFEKLS0tIGM0ZDJVOWl3NVYwYTNLZEFaalY3 - QUp4aFBaYjc3YUp6UVkwZk9UVjNvWDgK+WBJxWWLtg+lTn7CkVqvJwnE6mZRImhL - k61Fabbqpm0FGtnOgQW2mVndd1jJEsCvJxfGix91nbXJLjImPXnlTQ== - -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-02-10T17:04:29Z" - mac: ENC[AES256_GCM,data:h4gfNcQX9dnm38JBvN3wCEbUefLqO7GdjmcX/7LHQIgVllo6nuPWrThJBYCSU7apwMkGiN+UfJu4+QBgqHTot2Ctiu6jCtMb3bszGDx8pagJTNYlXAsaR9i1/RHgorBfgDwvkMWucTas4/ceIi+P+wv7u63TA7A2TDj7xRTVXoo=,iv:yBO9KwUqtIwXA/UrFhII7x+CyStW1okAh47MNGOwStI=,tag:0xw7Lt1qr7J0Ba8Mzb+IYA==,type:str] - pgp: [] - unencrypted_suffix: _unencrypted - version: 3.8.1