From a411e45bd26e9162184a7520ff809555319191c9 Mon Sep 17 00:00:00 2001 From: Alexander Szczepanski Date: Sat, 31 Aug 2024 19:12:50 +0200 Subject: [PATCH] desktop-2024-08-31-19-12-50 --- .sops.yaml | 7 +++++++ secrets-vps-arm.yaml | 33 +++++++++++++++++++++++++++++++++ secrets.yaml | 29 +++++++++++++++++++---------- 3 files changed, 59 insertions(+), 10 deletions(-) create mode 100644 secrets-vps-arm.yaml diff --git a/.sops.yaml b/.sops.yaml index 96e5f8a..a54248d 100644 --- a/.sops.yaml +++ b/.sops.yaml @@ -3,14 +3,21 @@ keys: - &alex age1gjhlw6vkfers3f76yug3alwupe4jckjhg8ncr8kll5gj5g6wlqtqacqa73 - &hosts: - &desktop age1m873zl0umr6huvs7ft98t7dg3wqx7skzgdrd6vjzeh8h6kkgdghsy5atvx + - &vps-arm age14l4v7kmtpp49mgngftlqquqe2u0mpdnfvnmtgqzv5zlsxh8mpvdspk3mel creation_rules: - path_regex: secrets.yaml$ key_groups: - age: - *alex - *desktop + - *vps-arm - path_regex: secrets-desktop.yaml$ key_groups: - age: - *alex - *desktop + - path_regex: secrets-vps-arm.yaml$ + key_groups: + - age: + - *alex + - *vps-arm diff --git a/secrets-vps-arm.yaml b/secrets-vps-arm.yaml new file mode 100644 index 0000000..e97d5e1 --- /dev/null +++ b/secrets-vps-arm.yaml @@ -0,0 +1,33 @@ +borg-key: ENC[AES256_GCM,data:orZrofxD48iKAM/yqO5HzbzAzWBCVe+ms/Ou+TE/WR6D0fJHWelEqGeVNOTThRriAZxRk8PB6mv1Xd9RzNE=,iv:BKbBRGfdfmqUJJj1miy//TrWzhJkddx8oooMf2NMoUM=,tag:cMoDTyFvCCZcSAFYQ6X07w==,type:str] +webdav-password: ENC[AES256_GCM,data:Sqkiyj2DLsQL9Q8oTz1RMW9o8rm9VIw8dahpbuWmhaA=,iv:mMezlbOA9YZJNQcE+q+GXA0usFwANzPclxMcUFTOKPY=,tag:Kt9uGWUzwL7AEkGDc+xQiA==,type:str] +goaccess-password: ENC[AES256_GCM,data:TjNCvWUdf5CSEenpJ5/mfBu2GvAHpgey4qHUQf7/UbWuLAvi,iv:ZNCqz4JLQ+RAYITF6hoI5UBlFCK+FsNKTa+Fx0J+mj8=,tag:Fs8eF92Ym8qWf7vGPiikUw==,type:str] +frigate-password: ENC[AES256_GCM,data:AmuhZojbQH9X+I9hkeaWTn+USaX9e4cB3IRo37eAJnaHpXO8,iv:HxlkYjlGxdGnh2YOhl302BPJXpN0m7VdURxwsD9ZYPU=,tag:CtIuaxQipBHQF3ZPTxS4DA==,type:str] +sops: + kms: [] + gcp_kms: [] + azure_kv: [] + hc_vault: [] + age: + - recipient: age1gjhlw6vkfers3f76yug3alwupe4jckjhg8ncr8kll5gj5g6wlqtqacqa73 + enc: | + -----BEGIN AGE ENCRYPTED FILE----- + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBSNjFBU1BWbXdHYmk3RzU2 + YS9wNWJhYkpzYVVOKzVzN2J5MmgvWTQ1bUJNCnNFQnQraWRSTzhjbU9DU05BcnBL + MWZIYVpBOTdkODAwTXlPaEpqdkZQVG8KLS0tIEJDLzVPMnpCUkVxblhIRlFENHM2 + YXAzSjVQOHg5RGlmLyttMmthOUI1SDgK6uHDyrz0dHYneRq5w8G2fVC1d6xm0eyB + AfOM4VG84iTVFiZvptMJDPFeqFVUQHLpu6ve7LJqe4nfKuqMjzHEtA== + -----END AGE ENCRYPTED FILE----- + - recipient: age14l4v7kmtpp49mgngftlqquqe2u0mpdnfvnmtgqzv5zlsxh8mpvdspk3mel + enc: | + -----BEGIN AGE ENCRYPTED FILE----- + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBZSUFibDZiMDg0dlBxMVh5 + akxpOHRRc2FwTjYvT3pSVVk1ZW1kbnRKQVM4CnA0bGVoRURjTzRNUm9yQUNWVjZs + SFBNajRCOWtjV3d4ZFNEYVh5cUo4bWMKLS0tIE5HNjhveGN5enk1SXQrejhzTGFI + NGhpRjZ2bGFZejRKeXMyVDJCaGlGdnMKpQuBsddTjRomTL961uOh/nh7lDj6z3V0 + NOHESrTr5YkALwbP7+ZViBbwSyXm5OJDi24LjvT3UunO1L6U0SYhww== + -----END AGE ENCRYPTED FILE----- + lastmodified: "2024-08-31T17:12:11Z" + mac: ENC[AES256_GCM,data:2S3+2zoLv3UCSPNyQIbhNtCV0AfURxtCr/y1Sk8gJr8n4D0LBhahFqD3iEvFzSINdr4fUUJl1c/VsKQt1cP6S/knMeHwe+JMXdBActMxSO7Rm2VgiZu0xHFEOVVmU+HgobWEMx+NYDGz8X/BFxzwYv7SweO+nC0aNkT0ycsNKu0=,iv:DIRor8SRVKbR9eKePQJdAL70ucmLLR76HXJFFiE1MPs=,tag:X/9b6MQT6KPDvx9spLWOVQ==,type:str] + pgp: [] + unencrypted_suffix: _unencrypted + version: 3.9.0 diff --git a/secrets.yaml b/secrets.yaml index 2e86e3f..5b71960 100644 --- a/secrets.yaml +++ b/secrets.yaml @@ -8,20 +8,29 @@ sops: - recipient: age1gjhlw6vkfers3f76yug3alwupe4jckjhg8ncr8kll5gj5g6wlqtqacqa73 enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBrTmFyZjFIbGdaeXdQanFH - SkpBQ1ZYQTBCUDZNdWM4OG16WjFkN3ZieDB3Cjl3WWo3d2p6TEVIdi8yMGg0dk82 - NHR2UzRnK2lBSUJrTnhyRHpoVDZNNDgKLS0tIDNWQThOeGdBM0VvbGc2N3A2RnZ1 - WVd3KzQvMExLeVhQZFd1RXBhTTYwQ1EKyvPeEUQ4ItxZ84/2cS2f4ZrZfpjgJL/M - 63y1PKvqK69WD3x6OnDEQ93sgAm7XPsZ2esWu0xMghWiSfB1yf0n1Q== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB4a28yNHo5NjdQOElETzZk + cGpmUjFjbUJNSW4rRmltRmFkWHdob1BGZVVjCkhjVkRLVkxveEd3ci9BeHZZR2Yr + WjFPWStGYmNEdDFXRS95MGpqeDZNK00KLS0tIFNqY25UU280OVFsc1h1YWViQ0wv + dHFEaTYxWXZxMi9lYm5XZGswWEZKc1EKRIybb+mCHUjqvZq3EV+60OF/uG4fQFqM + qWugZq1JVdoTsfmGSpWq2zNpAenu7tzCIaiiZxZOATy36iKDnNBz/A== -----END AGE ENCRYPTED FILE----- - recipient: age1m873zl0umr6huvs7ft98t7dg3wqx7skzgdrd6vjzeh8h6kkgdghsy5atvx enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBuM012blVQTUNZY0t3dk9T - Y0d6OWpoRXNGdG93Z0dvK0NLVGhiMUVaMkNvCmRxeG9nUER1L29ueU1DY2d4cFk2 - Uk1UNEdGRlA0U1hrcmxDNFBWZTVWdGsKLS0tIEVFVWhBZHZlQWx2ak9iLy9FWEFV - NmVEbkNxZlVVUVprNVZrRjVQQXRPSHMKp6CrhQJJlw/pm+NfjlO+TFtGfgTEoyYu - VuxhS4xsyEtPqVbNjlEmu3qnvmefuoE9XAE5+HoJWngeKUWBc7i0Lg== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB3NnhQYUs3MzhQcGRiNUxx + b0hBcGgrWTgxOEJ0NGxRWUJRR0JqcnRucVNzCjRrSEdVS29DVkFNUGt2V0R6S1U1 + NmtqdEFYTm81eEtqemtxZjVxWTNTZEUKLS0tIGhwSmpnTVF1aXp2YnRmQ0h4ZnhT + NXVYOTdXMStNWWE1Y2EzZnp3YTJ0N00KAMt5hpndOIImWlIeQ+WCoL80eam1kFrx + chMq3vvG9sggMk8snIR6IbLsLYul+aNVmUrKajAtiJVCRr17wawJew== + -----END AGE ENCRYPTED FILE----- + - recipient: age14l4v7kmtpp49mgngftlqquqe2u0mpdnfvnmtgqzv5zlsxh8mpvdspk3mel + enc: | + -----BEGIN AGE ENCRYPTED FILE----- + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB6aVlYeDJTRkcvQVgxOE1s + YTRtTFZoK0NFVE9MUDRuNzlIR21qbnJkQWhRClgweUF6WHQ0T20rVUZsR1NEdThq + d3NpZGNwZitPMUxvbTExcGN2SUxvbzgKLS0tIDVyNDI0RHUyMVhCQyt1alVvRkMv + V1RLSk14VjFZdHNzY3pXVkFaN0xsZmMK0M9maFOtSfVnx5KIZUVkPM76exwlUmmp + K5eCA7c5T6JCNhiCPvE5gKMy+AWMEJWngG1JHRIwi7YXblyE9X4S4w== -----END AGE ENCRYPTED FILE----- lastmodified: "2024-08-31T15:55:06Z" mac: ENC[AES256_GCM,data:KQraWMxoXkcrEHCG6R+M31qRCGMwXekA9hIgyULXLaCjkHHJ1JRovgMD0ujTgZVseLipXBCXzH2RJvErNDhozXyrSEpzU0hBb50c0BCD3yaSPojTFCHDGIt/9qi4YHVnOHBP7jVxrFSGk84TNgMqO16dUNsMu6faEYX8CpkHoZM=,iv:ci/kWQCWuV98YdCtgKqQCOgsfAup/pG4smoWvFXRWX4=,tag:2ivvnVo0+ft3BIts3axMGw==,type:str]