Gitiles
Code Review Sign In
git.clicks.codes / Chimera / NixFiles / 694958e5eef2cb74001a0b034a561fd3b3ef448b / . / .sops.nix
blob: b4ef113852be2334b4ad0bb4ac7477af4b6926d4 [file] [log] [blame]
Samuel Shuert659b5642024-02-23 20:47:43 +0000[diff] [blame]1nixpkgs:
2let
Samuel Shuert2e42e672024-02-21 21:49:28 +0000[diff] [blame]3 keys = {
4 users = {
5 coded = "BC82DF237610AE9113EB075900E944BFBE99ADB5";
6 minion = "76E0B09A741C4089522111E5F27E3E5922772E7A";
7 };
8 hosts = {
Samuel Shuert659b5642024-02-23 20:47:43 +0000[diff] [blame]9 shorthair = "B5237D6B63AB2E13FDA07170E5AED9775DD21543";
10 greylag = "047bf8897df877fe86133e98522c6d280d545c00";
Samuel Shuert2e42e672024-02-21 21:49:28 +0000[diff] [blame]11 };
Samuel Shuert659b5642024-02-23 20:47:43 +0000[diff] [blame]12 };
13in
14{
Samuel Shuert2e42e672024-02-21 21:49:28 +0000[diff] [blame]15 creation_rules = [
16 {
Samuel Shuert659b5642024-02-23 20:47:43 +0000[diff] [blame]17 path_regex = ".*\\.sops\\.chimera\\.(yaml|json|env|ini|[^.]*\\.bin)$";
Samuel Shuert2e42e672024-02-21 21:49:28 +0000[diff] [blame]18 pgp = nixpkgs.lib.concatStringsSep "," [
19 keys.users.coded
20 keys.users.minion
21 keys.hosts.shorthair
22 keys.hosts.greylag
23 ];
24 }
25 {
Samuel Shuert659b5642024-02-23 20:47:43 +0000[diff] [blame]26 path_regex = ".*\\.sops\\.coded\\.(yaml|json|env|ini|[^.]*\\.bin)$";
Samuel Shuert2e42e672024-02-21 21:49:28 +0000[diff] [blame]27 pgp = nixpkgs.lib.concatStringsSep "," [
28 keys.users.coded
29 keys.hosts.shorthair
30 ];
31 }
32 {
Samuel Shuert659b5642024-02-23 20:47:43 +0000[diff] [blame]33 path_regex = ".*\\.sops\\.minion\\.(yaml|json|env|ini|[^.]*\\.bin)$";
Samuel Shuert2e42e672024-02-21 21:49:28 +0000[diff] [blame]34 pgp = nixpkgs.lib.concatStringsSep "," [
35 keys.users.minion
36 keys.hosts.greylag
37 ];
38 }
39 ];
Samuel Shuert659b5642024-02-23 20:47:43 +0000[diff] [blame]40}