19 lines
1.1 KiB
Nix
19 lines
1.1 KiB
Nix
let
|
|
contact = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO42guJ5QvNMw3k6YKWlQnjcTsc+X4XI9F2GBtl8aHOa";
|
|
agent = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEN0+tRJy7Y2DW0uGYHb86N2t02WyU5lDNX6FaxBF/G8 agent@burrow.net";
|
|
forge = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAlkGo4lwpwIIZ0J01KjTuJuf/U/wGgy4/aKwPIUzutL root@burrow-forge";
|
|
|
|
operatorSecrets = [ contact agent ];
|
|
forgeAutomation = [ contact agent forge ];
|
|
in {
|
|
"secrets/forgejo/admin-password.age".publicKeys = forgeAutomation;
|
|
"secrets/forgejo/agent-ssh-key.age".publicKeys = forgeAutomation;
|
|
"secrets/forgejo/nsc-token.age".publicKeys = forgeAutomation;
|
|
"secrets/forgejo/nsc-dispatcher-config.age".publicKeys = forgeAutomation;
|
|
"secrets/forgejo/nsc-autoscaler-config.age".publicKeys = forgeAutomation;
|
|
"secrets/cloudflare/api-token.age".publicKeys = operatorSecrets;
|
|
"secrets/hetzner/api-token.age".publicKeys = operatorSecrets;
|
|
"secrets/forwardemail/api-token.age".publicKeys = operatorSecrets;
|
|
"secrets/forwardemail/hetzner-s3-user.age".publicKeys = operatorSecrets;
|
|
"secrets/forwardemail/hetzner-s3-secret.age".publicKeys = operatorSecrets;
|
|
}
|