nixos/.sops.yaml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28

keys:
  - &sefidel age1jt8xg0lvzj5q4f7fn7nw670qsszm3kv3caa654eh62azra4x44zss4fad8
  - &sefidel_pgp 8BDFDFB56842239382A0441B9238BC709E05516A
  - &host_alpha age100jkyvgl8hqkapw3s4s4uu8jjgfkjn8kyl769x8u4x6tddk6rezshtf6gr
  - &host_kompakt age180yj8dn9jhjzj9c0y6qr5fa76g0ls3p772dvn60nu67wveqv8pvsahvur6
  - &host_haruka age1hn509x2uuk0nrvfkaexwrengdtngh8uwx6fxldfgn8f4hhhsqdwsgnprr7
  - &host_kanata age1p34akfj7gynfkwppk2dc80u5dsfynzllrvz5qwemuxrqhdp8t9xsqejy0l
creation_rules:
  - path_regex: alpha/secrets/[^/]+\.yaml$
    key_groups:
      - age:
        - *sefidel
        - *host_alpha
  - path_regex: haruka/secrets/[^/]+\.yaml$
    key_groups:
      - age:
        - *sefidel
        - *host_haruka
  - path_regex: kompakt/secrets/[^/]+\.yaml$
    key_groups:
      - age:
        - *sefidel
        - *host_kompakt
  - path_regex: kanata/secrets/[^/]+\.yaml$
    key_groups:
    - age:
      - *sefidel
      - *host_kanata