c3d2/nix-config
c3d2/nix-config
23
7
Fork 3
Code Issues 12 Pull Requests 2 Releases Wiki Activity

Format

Browse Source
This commit is contained in:
Sandro - 2023-09-16 12:38:02 +02:00
parent f217e6a088
commit 7cd9f77803
Signed by: sandro
GPG Key ID: 3AF5A43A3EECC2E5
1 changed files with 35 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

35
.sops.yaml
View File

@ -84,6 +84,7 @@ creation_rules:
- *mobilizon - *mobilizon
- *ticker - *ticker
- *polygon-snowflake - *polygon-snowflake
- path_regex: modules/cluster/[^/]+\.yaml$ - path_regex: modules/cluster/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
@ -95,6 +96,7 @@ creation_rules:
- *server9 - *server9
- *server10 - *server10
- *polygon-snowflake - *polygon-snowflake
- path_regex: config/[^/]+\.yaml$ - path_regex: config/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
@ -145,18 +147,21 @@ creation_rules:
- *stream - *stream
- *storage-ng - *storage-ng
- *ticker - *ticker
- path_regex: hosts/auth/[^/]+\.yaml$ - path_regex: hosts/auth/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *auth - *auth
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/bind/[^/]+\.yaml$ - path_regex: hosts/bind/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *bind - *bind
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/blogs/[^/]+\.yaml$ - path_regex: hosts/blogs/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
@ -169,120 +174,140 @@ creation_rules:
age: age:
- *broker - *broker
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/buzzrelay/secrets\.yaml$ - path_regex: hosts/buzzrelay/secrets\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *buzzrelay - *buzzrelay
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/c3d2-web/[^/]+\.yaml$ - path_regex: hosts/c3d2-web/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *c3d2-web - *c3d2-web
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/caveman/[^/]+\.yaml$ - path_regex: hosts/caveman/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *caveman - *caveman
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/dacbert/[^/]+\.yaml$ - path_regex: hosts/dacbert/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *dacbert - *dacbert
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/dn42/[^/]+\.yaml$ - path_regex: hosts/dn42/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *dn42 - *dn42
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/drone/[^/]+\.yaml$ - path_regex: hosts/drone/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *drone - *drone
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/freifunk/[^/]+\.yaml$ - path_regex: hosts/freifunk/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *freifunk - *freifunk
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/gitea/[^/]+\.yaml$ - path_regex: hosts/gitea/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *gitea - *gitea
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/glotzbert/[^/]+\.yaml$ - path_regex: hosts/glotzbert/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *glotzbert - *glotzbert
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/grafana/[^/]+\.yaml$ - path_regex: hosts/grafana/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *grafana - *grafana
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/hedgedoc/[^/]+\.yaml$ - path_regex: hosts/hedgedoc/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *hedgedoc - *hedgedoc
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/home-assistant/[^/]+\.yaml$ - path_regex: hosts/home-assistant/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *home-assistant - *home-assistant
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/hydra/[^/]+\.yaml$ - path_regex: hosts/hydra/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *hydra - *hydra
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/jabber/[^/]+\.yaml$ - path_regex: hosts/jabber/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *jabber - *jabber
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/mailtngbert/[^/]+\.yaml$ - path_regex: hosts/mailtngbert/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *mailtngbert - *mailtngbert
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/mastodon/[^/]+\.yaml$ - path_regex: hosts/mastodon/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *mastodon - *mastodon
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/matemat/[^/]+\.yaml$ - path_regex: hosts/matemat/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *matemat - *matemat
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/matrix/[^/]+\.yaml$ - path_regex: hosts/matrix/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *matrix - *matrix
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/mediawiki/[^/]+\.yaml$ - path_regex: hosts/mediawiki/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *mediawiki - *mediawiki
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/mobilizon/[^/]+\.yaml$ - path_regex: hosts/mobilizon/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
@ -295,60 +320,70 @@ creation_rules:
age: age:
- *oparl - *oparl
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/radiobert/[^/]+\.yaml$ - path_regex: hosts/radiobert/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *radiobert - *radiobert
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/server6/[^/]+\.yaml$ - path_regex: hosts/server6/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *server6 - *server6
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/server7/[^/]+\.yaml$ - path_regex: hosts/server7/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *server7 - *server7
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/server8/[^/]+\.yaml$ - path_regex: hosts/server8/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *server8 - *server8
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/server9/[^/]+\.yaml$ - path_regex: hosts/server9/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *server9 - *server9
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/server10/[^/]+\.yaml$ - path_regex: hosts/server10/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *server10 - *server10
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/storage-ng/[^/]+\.yaml$ - path_regex: hosts/storage-ng/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *storage-ng - *storage-ng
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/ticker/[^/]+\.yaml$ - path_regex: hosts/ticker/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *ticker - *ticker
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/prometheus/[^/]+\.yaml$ - path_regex: hosts/prometheus/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins
age: age:
- *prometheus - *prometheus
- *polygon-snowflake - *polygon-snowflake
- path_regex: hosts/stream/[^/]+\.yaml$ - path_regex: hosts/stream/[^/]+\.yaml$
key_groups: key_groups:
- pgp: *admins - pgp: *admins