From 8777ec0fb80eee224e42f23f28413091c15879a3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Torjus=20H=C3=A5kestad?= Date: Wed, 1 May 2024 19:10:01 +0200 Subject: [PATCH] Add ha1 to sops --- .sops.yaml | 2 ++ secrets/secrets.yaml | 59 +++++++++++++++++++++++++------------------- 2 files changed, 36 insertions(+), 25 deletions(-) diff --git a/.sops.yaml b/.sops.yaml index 8c5b2d1..31cc261 100644 --- a/.sops.yaml +++ b/.sops.yaml @@ -4,6 +4,7 @@ keys: - &server_ns2 age1w2q4gm2lrcgdzscq8du3ssyvk6qtzm4fcszc92z9ftclq23yyydqdga5um - &server_ns3 age1snmhmpavqy7xddmw4nuny0u4xusqmnqxqarjmghkm5zaluff84eq5xatrd - &server_ns4 age12a3nyvjs8jrwmpkf3tgawel3nwcklwsr35ktmytnvhpawqwzrsfqpgcy0q + - &server_ha1 age1d2w5zece9647qwyq4vas9qyqegg96xwmg6c86440a6eg4uj6dd2qrq0w3l creation_rules: - path_regex: secrets/[^/]+\.(yaml|json|env|ini) key_groups: @@ -13,6 +14,7 @@ creation_rules: - *server_ns2 - *server_ns3 - *server_ns4 + - *server_ha1 - path_regex: secrets/ns3/[^/]+\.(yaml|json|env|ini) key_groups: - age: diff --git a/secrets/secrets.yaml b/secrets/secrets.yaml index cff8b76..0ba9a75 100644 --- a/secrets/secrets.yaml +++ b/secrets/secrets.yaml @@ -9,47 +9,56 @@ sops: - recipient: age1lznyk4ee7e7x8n92cq2n87kz9920473ks5u9jlhd3dczfzq4wamqept56u enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBQOGpRSFhKWFNSbnFxSHpN - N2Jxd0NIYWdlMVFNMmFRRGF6bi9BUmxLN2wwCm9sWlNPNlNkQ1BySlZCQUtkWmQ2 - WWJ1TGdEZWNMd2tranBocWsxVysxbm8KLS0tIFZoaDd1VHlQRDI4OXg0Uno3Tmpw - RSs0U2wwMm1ncXdCWW1xMStvOW1CM3MKFrivUqmNYOTCbFbBzvy2JdI2BH6eVS4/ - eihoHdqvAPP0TJcuiDH25gNyfgF4kpSdgh3qwfGW8zPf6bNBE79qEw== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSByeUhyd0JVK3VFQ0o3MGpW + Wll5OVoxM3RyZkhTWGd5alNCQ2Q0M08xYVRzCnQ2dzJ6cDE1OEdEYklsblE4TE5G + UXUzMktqcG90WGg1dXRjNVNFMlVGcFUKLS0tIEJhVjd6cW1HMEVQd1BVZzB5Q1Ni + UnB6VlJRUGk3a2tiZm5oOGlZUmlvaGsKvH9dbhN6p7cHGZJt6G97iI7ewdgeOXn0 + vEGUHfTdVNhMJOzI9o7PLL3Q5yLlhpB+0OeVwkiK0dL5lnpbkvwBvw== -----END AGE ENCRYPTED FILE----- - recipient: age1hz2lz4k050ru3shrk5j3zk3f8azxmrp54pktw5a7nzjml4saudesx6jsl0 enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA3dnowZnRSRTUyZWZMRDZG - Nk1nZDlsVHhsbjZjd2oveXgvdjJndThvUXdjCllVa1lDcWNSeEhmZ3dOQlRPaDQy - MXorZ3MvcUpZRHZlL2NHUVludERmc3cKLS0tIHdZVWdmSk4rSVNWQXhLeVJ0MHcz - WThzVGJIV1BESEhGUldoSER0TVFJYlkKCRiVrlzD7q6dL8Gc2oVe+fAVHnBnyTQV - 0OH/gAPL3NXwrGG8SDJ6+I5L5Gj7lSyId4HEjqlUeoB8sbhL+HP5nA== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB3YWdyYkxOalVWNHlXRitY + eEtMTlYzRnZVa1M0U3I2Y2U0K0FTYUtqWUJzCjFWOVlkT1MveS9zZEJKME4wbFdO + QUlJakpFN0ZSNytQVEY3cGRNN0daZzQKLS0tIDJRUktTdEZMb1Avd1o3aFdUTDRN + amJVNVROSmNxU216VVM2eWs0djZ4TUEK47OCGaIR4F4q326vF7fGhX/T9K5Oub// + Rykfsz6jYCN8D6go7onoOOrneyVuOEW3p3GSaYSnkJkgqdAyVCh+0g== -----END AGE ENCRYPTED FILE----- - recipient: age1w2q4gm2lrcgdzscq8du3ssyvk6qtzm4fcszc92z9ftclq23yyydqdga5um enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBwQmNpS0UvL0xVUEZMUkIr - WUo2WFVYdmlBMHBrNzBMOFVKNWw0cVhNTXpvCkpmaEh2ZGhqR2NmNkkxd3JkaFFW - NUhPZzNndDM2NEtuNGFWMGNFamU5TWsKLS0tIDFqYkxiMlFoQ3FkVHRjYWdtVnEr - LzdFdC81ZG5HZnVFdDREcFhrbzk0a2sKR4OYnXwoGlOQytZIr1zhHunaF23fcVgl - FMxvO2wYfk7/M0Ma+gm7XMK6ADy3ht9rJ3/ELS29e5XtUNWnrEcAVw== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBVdENaMEI1MC9HQ0JsOHMx + Y0x6L1hZQ2NLdGFzaUdpcHYvSlhqc21RMUNZCnE5U2s3NndDRm9RSHFDd3JTTlFs + ZGEwZ1dxbHYrdUc0V0o4eWhyalcvdDAKLS0tIElLVGlzZTA1enV6cnpYR1k4blFm + STZRRll3WXgydklHV2J1b1hLYmNRVW8KNhOEUcPlekuMP5ruXWTj7FpymCjU84FG + NWhlAbLXNgKarvte3qyof2dNK944e6Hjc2VR2PAfGJ3WcCt3VqHlIg== -----END AGE ENCRYPTED FILE----- - recipient: age1snmhmpavqy7xddmw4nuny0u4xusqmnqxqarjmghkm5zaluff84eq5xatrd enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBkWXBpR24yRmQ0SUp3elk5 - ZEhUMVVxaXBWYi9aL1p0YlIxeTFUV1pJQ2lnCmlvR2IvVks5dUhhVkxXYmxDVFFH - ZDdJWjlOaUQ4aWV5ODh5ZlgxTkxCancKLS0tIGZMRTF0ZEl1Y1NzckpwdUZERlJS - ODZDbnBaam50NXFxa1dldGg2VWVtTWMKBnMW8l0L5TTA4P0E5KLPb93wCVdYeu0e - IzoY9cW2ubHp/4M+cx8mC/4uJriq8uLq5q2B1Ag8AbD8+R68OR0psQ== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBWeUVyQ1o4S0NURXVDMTJT + QithLzFwOVQrZ0IvK3I1bEVGYVFGekliem13Cld1U2VQeTM5Umh5Tjd4TWdNcVkx + VTN2MGpCdlpsWS9zUHNvK25RRExGTWsKLS0tIHhXN1BiMmdHem1BcjViUTNtMzZz + a1VwUXlnYnljc1FsNkltV0VvWWlZalEKwxJfWniozjONme/HGMtPVr1+n3XX+eUO + LKYji0D604eX1H8sO3v00hCXjg+z4atbgd7R23S4x15+4hIhTLqgsQ== -----END AGE ENCRYPTED FILE----- - recipient: age12a3nyvjs8jrwmpkf3tgawel3nwcklwsr35ktmytnvhpawqwzrsfqpgcy0q enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBIWWMyQk9qREFSYk5PbTRv - cEpoYUg5d1NHZ2FzVGVQMkMrdEcyVlkxYkUwCmt3UVBlSEROSXBwc21tTDN3OEMv - QjE1eEJpM3hHQndMZmxxaDhNS1lYaTQKLS0tIFBQOW84blJkN3VncSt3bXpiRC9q - K1ZXejRVVjdTNER1ejVuRWFjYWIwWm8K+Es5emxg5AWryOueqPVQzN52H4t1ZWKi - risTou+uBzZS9UwAqeiw4z00LIAcNMjZv3WdWWBn/9bwXxnqfcU3Vw== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBnamhOQkl0aGZOUGdBaTRt + dmxTTHlRZlZwUk10ZmMvZUhFeit2akZwYTJjCjdkNENMVmlQM2NPWm1WN1pURlpy + cXkvd083VE1EbUlNYmVOdFdPMVMvL0EKLS0tIHJ2Y3c4bGFBRDNGa3Z0ak1PRHJq + RDFCQWpIOEVUZXhkNDFSemgzMVlSR1EK6hNpuxydI5SH7/3mDeQhC1iHUP8ipLYD + hx6lCN7sgsDQl4hyg36CdpXnVDsuvW9MKQELtwPZ/7lOEtRcC2BL4w== + -----END AGE ENCRYPTED FILE----- + - recipient: age1d2w5zece9647qwyq4vas9qyqegg96xwmg6c86440a6eg4uj6dd2qrq0w3l + enc: | + -----BEGIN AGE ENCRYPTED FILE----- + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBRRTRxaS9jVGVMdWxGVVNx + dlN5c0lYVHduTFpLTElCa0NzUS9ZZ2cwdnhrClFpaDdjcWprWkhmcDNMZjlTQkJh + OWhiNVlRTHlaNkF0NW56alE0K0xRQVUKLS0tIE5PUlYwY3loblZZRUNLc3NvRU9R + Z3hwdGJEQWNxRm10dEIydEY3ZDFBQVEK1aeBQlOcHRJ88iCRSbB4WTccPJmxwf/2 + lRqyRYXPgXiLrJbd3R/ax0nSwun4eDvNSGX9/CFppOzKWCsvmaPhVg== -----END AGE ENCRYPTED FILE----- lastmodified: "2024-03-11T19:25:54Z" mac: ENC[AES256_GCM,data:GbbdzjkjicbNPoiKXpeAXzkrmQlgLUg90B0ynYfbB9JX0m4W7hfogVJ4Fcx5t+iUeG2LPkCxq7vYnD1+uFJkND1xF0rc9dGi43SBtz74giQTJck8/mK/iWyDdgDlWxtO78ghHMS5OxyapOvk+K2+Ga9zJ1f3S64lc2xqhyVSFfk=,iv:jRDgu1lSuFRv8VeVbiyx+DfywaLlZJ0Xla++M277SBg=,tag:aV757MJJUNg77//tON7h1A==,type:str]