commit 3ed74f0d170ee3b32a4cd2554197c3f27d4205fb
author PineaFan <pineafan@clicks.codes> Sat Apr 20 20:41:36 2024 +0100
committer Skyler Grey <minion@clicks.codes> Sat Apr 20 21:38:02 2024 +0000
tree fba22aac9f40ba7e01dbd55a93b7b0c47737fdc8
parent fc05cfbc234c56c0424eedded7734e493106bc3d

Add SOPS to Saurosuchus

Change-Id: Ie333c73a102de8270202c29ec8605ba4d1aaa473
Reviewed-on: https://git.clicks.codes/c/Chimera/NixFiles/+/635
Tested-by: Skyler Grey <minion@clicks.codes>
Reviewed-by: Skyler Grey <minion@clicks.codes>

.sops.nix

diff --git a/.sops.nix b/.sops.nix
index b4ef113..cac2fee 100644
--- a/.sops.nix
+++ b/.sops.nix
@@ -4,10 +4,13 @@
     users = {
       coded = "BC82DF237610AE9113EB075900E944BFBE99ADB5";
       minion = "76E0B09A741C4089522111E5F27E3E5922772E7A";
+      pinea = "8F50789F12AC6E6206EA870CE5E1C2D43B0E4AB3";
     };
     hosts = {
+      # nix run github:Mic92/ssh-to-pgp -- -i /etc/ssh/ssh_host_rsa_key
       shorthair = "B5237D6B63AB2E13FDA07170E5AED9775DD21543";
       greylag = "047bf8897df877fe86133e98522c6d280d545c00";
+      saurosuchus = "12f47c96d9066c52897cdf9ddf581f86799fb07c";
     };
   };
 in
@@ -18,8 +21,11 @@
       pgp = nixpkgs.lib.concatStringsSep "," [
         keys.users.coded
         keys.users.minion
+        keys.users.pinea
+
         keys.hosts.shorthair
         keys.hosts.greylag
+        keys.hosts.saurosuchus
       ];
     }
     {
@@ -36,5 +42,12 @@
         keys.hosts.greylag
       ];
     }
+    {
+      path_regex = ".*\\.sops\\.pinea\\.(yaml|json|env|ini|[^.]*\\.bin)$";
+      pgp = nixpkgs.lib.concatStringsSep "," [
+        keys.users.pinea
+        keys.hosts.saurosuchus
+      ];
+    }
   ];
 }