blob: e6240995882853f338888463d93ff2ae2091be3f [file] [log] [blame]
nixpkgs:
let
keys = {
users = {
coded = "BC82DF237610AE9113EB075900E944BFBE99ADB5";
minion = "76E0B09A741C4089522111E5F27E3E5922772E7A";
pinea = "8F50789F12AC6E6206EA870CE5E1C2D43B0E4AB3";
};
hosts = {
# nix run github:Mic92/ssh-to-pgp -- -i /etc/ssh/ssh_host_rsa_key
shorthair = "B5237D6B63AB2E13FDA07170E5AED9775DD21543";
greylag = "047bf8897df877fe86133e98522c6d280d545c00";
saurosuchus = "12f47c96d9066c52897cdf9ddf581f86799fb07c";
ocicat = "58BF6324CE6D45E156490D0F4579865C9D4CE67E";
emden = "885f4e98f4af60985337992e13c8703177858a87";
};
};
in
{
creation_rules = [
{
path_regex = ".*\\.sops\\.chimera\\.(yaml|json|env|ini|[^.]*\\.bin)$";
pgp = nixpkgs.lib.concatStringsSep "," [
keys.users.coded
keys.users.minion
keys.users.pinea
keys.hosts.shorthair
keys.hosts.greylag
keys.hosts.saurosuchus
keys.hosts.ocicat
keys.hosts.emden
];
}
{
path_regex = ".*\\.sops\\.coded\\.(yaml|json|env|ini|[^.]*\\.bin)$";
pgp = nixpkgs.lib.concatStringsSep "," [
keys.users.coded
keys.hosts.shorthair
keys.hosts.ocicat
];
}
{
path_regex = ".*\\.sops\\.minion\\.(yaml|json|env|ini|[^.]*\\.bin)$";
pgp = nixpkgs.lib.concatStringsSep "," [
keys.users.minion
keys.hosts.greylag
keys.hosts.emden
];
}
{
path_regex = ".*\\.sops\\.pinea\\.(yaml|json|env|ini|[^.]*\\.bin)$";
pgp = nixpkgs.lib.concatStringsSep "," [
keys.users.pinea
keys.hosts.saurosuchus
];
}
];
}