wiro.world / dotfiles
yep, more dotfiles
fork atom
dotfiles / secrets / secrets.nix
at 9c5f9665ae5a09a17e0be63c494ad3fe93a4f2c2 1.4 kB view raw
1let 2 inherit (import ./keys.nix) servers sessions systems users; 3 4 nixos = systems ++ users; 5 home-manager = sessions ++ users; 6 deploy = servers ++ users; 7in 8{ 9 # Used in NixOS config 10 "backup-rclone-googledrive.age".publicKeys = nixos; 11 "backup-restic-key.age".publicKeys = nixos; 12 13 # Used in Home Manager 14 "api-crates-io.age".publicKeys = home-manager; 15 "api-wakatime.age".publicKeys = home-manager; 16 "api-wakapi.age".publicKeys = home-manager; 17 18 # Used in server deployment 19 20 # Defines `PDS_JWT_SECRET`, `PDS_ADMIN_PASSWORD`, `PDS_PLC_ROTATION_KEY_K256_PRIVATE_KEY_HEX`, `PDS_EMAIL_SMTP_URL`, `PDS_EMAIL_FROM_ADDRESS`. 21 "pds-env.age".publicKeys = deploy; 22 # Defines `LLDAP_JWT_SECRET`, `LLDAP_KEY_SEED`. 23 "lldap-env.age".publicKeys = deploy; 24 "headscale-oidc-secret.age".publicKeys = deploy; 25 "grafana-oidc-secret.age".publicKeys = deploy; 26 "authelia-jwt-secret.age".publicKeys = deploy; 27 "authelia-issuer-private-key.age".publicKeys = deploy; 28 "authelia-storage-key.age".publicKeys = deploy; 29 "authelia-ldap-password.age".publicKeys = deploy; 30 "authelia-smtp-password.age".publicKeys = deploy; 31 "tuwunel-registration-tokens.age".publicKeys = deploy; 32 # Defines `SMTP_PASSWORD` 33 "vaultwarden-env.age".publicKeys = deploy; 34 35 # Not used in config but useful 36 "pgp-ca5e.age".publicKeys = users; 37 "ssh-uxgi.age".publicKeys = users; 38}