From a871f9d2662a283dcd13cd4116cbd1a25c07d723 Mon Sep 17 00:00:00 2001 From: Alexander Heldt Date: Sat, 12 Aug 2023 20:36:01 +0200 Subject: [PATCH] pinwheel: Add `alex.pinwheel` as agenix key And rekey existing secrets --- hosts/pinwheel/configuration.nix | 5 ++++- secrets/pinwheel/syncthing-cert.age | Bin 1151 -> 1153 bytes secrets/pinwheel/syncthing-key.age | Bin 774 -> 731 bytes secrets/secrets.nix | 2 +- 4 files changed, 5 insertions(+), 2 deletions(-) diff --git a/hosts/pinwheel/configuration.nix b/hosts/pinwheel/configuration.nix index d551f67..b8e4795 100644 --- a/hosts/pinwheel/configuration.nix +++ b/hosts/pinwheel/configuration.nix @@ -195,7 +195,10 @@ ''; age = { - identityPaths = [ "/etc/ssh/pinwheel" ]; + identityPaths = [ + "/etc/ssh/pinwheel" + "/home/alex/.ssh/alex.pinwheel" + ]; secrets = { "syncthing-cert".file = ../../secrets/pinwheel/syncthing-cert.age; diff --git a/secrets/pinwheel/syncthing-cert.age b/secrets/pinwheel/syncthing-cert.age index 43b51b263c632170f83ac77f8a5f1dc751eb5b23..f30e96da550e073c005bbedf572fae94563ced0c 100644 GIT binary patch delta 1124 zcmey*(a1SLr#?S8xg^-a(!kOpFw-Lvpe#Gf)HlSaEUZ*p+n}VdJj~QBH$6PVII$wBvLeaL&nL{)r`XXql1tZ4p}06h zH#Nn`)YQ;YAvIe&$vjXY&Df+U!q?Nl$JyH`y*wwWAE7L5XC^F43(bF(8$voLH)gvIODzYfaGBee%GQiX&Ki|0`+^N7PC^e!O zWL>##dQoa(aVl42rB8Zhptf6Pm3e-MYh;n3esYOpP;mj5uCA^^W@d?RnNxPQhed?G zNvLIghJI+FQD9)IcDie^k!wMCWQAp=bFg!ifnQ1_SN+bn^^=t3y;uHsWq&m-k6o{7 z$9Xx+ZtIz=w)@7OSzuqZ@p$t5yKA-{3p9yZsrg`6t*Glw*8?mQ9gc3@ZFu@u<&p9>X4K9v(qkDZ2hxm?(d)b zw!N}n9wBVOvBu$2(Y4sj4yX5B4q2ky4*8{fL)4;QNvUUU*Q%N;b67elfN#;}IZQ}0W@axvb57#<;r94d2j1D<`L6XotS>*lZgI8GMFHE{om$7;Zlq_kr%w)3ln7w9 zIIr5ynk2h1(1NwTWbclnkKgHb6pMa)u;oIm=8SLdyY8BJA6myOyx@3R?39=PrJijl z%)G!SD(SR0E!6Tfi|3PnAExo&og{2x9d_y4)u35dFRNZ}dchIQuUFG9v1y6_o#IsA z)T#$RVlHsL>iT&0$=&X@+fm1sl)H+G>jV~u72WM_4ix)duxh@+^TK+w9mxuJbMiP2 z7m0DFXWqSd+4$?H*2(HI@0x@!-+WoVxk38HPAAiZO%rULs^m^42ka6&5ZO}ujost8 zYiH$zbGNqsYOYf>DCE}XdGqZ>+UG-87suZ2o6)mTHlS0mYR|&W;_{h`7rk93Gq-Qy z%h-wkR%~1^c+HW2OQWJL5` zq57}SS4^!JXD^M++&oQVC-ZJsr;Xjqo^$>6kxcp|xc7b2ytOaw_g<)(+%Fk=Bzm9M zD(2Xg?_xf_xcjF@b;}-+i@pl8&S;)I&ET|aTBD90`$?6>2{o6Fc`lLLb7Rx&qSv+t zO7G@qO{`726Cmaoa^afD2d@_*G0WU86dhWcZ(FpFD>iMh?Crhvr>veDSm}LOQTMTy zQC#T%8IxygrrB?GHf(V4kam82zj||DPkr;3n`;+HaC)}eZE%fPpS}BNY)+g(UmO3S g%lgV0H!NPUc$Z%NEUEIZ7r)TP49)hJ2dmrK`9p}06h zH#Nn`)YQ;Y!ObtxF(6&RvZSCe$}!xfsxUjMD9XIbsXouqFeJGw-7&{MJs_h%KP$w5rHdJ2b=3tRO$qQrjdozsT7yIKn(C$H2_lE7{8c zWL-eEvRYh$m2P@bYGQG!LZrJ|hC;Tff;X3=OIW&pI+w1lu7Y2&Z>nin&SDD(m%TOw>SNz8q)ZTNuUORTc}$BZ{BrKT|1Wx~mQPc4 zZr7?~j@fYSpdNGm#PH}U$)!q??eAObJ|8}RHOlC5bN6?{<|#Wi*gT(b^Y*I$_k(Jf zi>sch=S`~l=G(mMW1+l!!G||XmcGlL=6X`5eAd5pzeEh%k6qYwYte^V=^&+!uVD^n zT(v?jMx2_$|1s)}^t7#K#2z`u3k1Y4>P%FeWv#OK(bHSKPo^feOZL}uDy=%cG0%UN zg>ab3J)DLg$`cRelWACo!=Bo{B zirhczf49)&;$4=7T7wh>N_HA7iYpLBPncnZF8#(vN!7n#mTYAE_JV>j4 zw)mM~izx3JzLWgd58jpjxV_?l&(`zl22mO@~NNjN|yi#pu6p;5-disOw%eff-H{DZS@cWQ+yxFs-J=vX;Lz{2ObSTZPtJ6?Y zvAxUHAtdoFFWTS!zh#}D=!Y#4awgkP8oVnznmfJb-OFF<|FbV%?#x(GRN`xsti^Gb zF;bU})9FIfI(O4{{hLuYRg-mhPux_wgX7-+rT?QpsQediEsrz%;QH2R#l2^N2B$h^ z916Uu{p>CO!|nQ!8=aJYH(Za?ozhUhga4yg^fH|k*Hs2_qN{K0jtk41YrB7G=8J*HlPm-S^W_*>-xwzL8Q diff --git a/secrets/pinwheel/syncthing-key.age b/secrets/pinwheel/syncthing-key.age index 47183377d6940ede1e5cdc40aa0198e2324ddb96..a72aa2311afbba2c5cf29d2db5a20a5512992514 100644 GIT binary patch delta 699 zcmZo;yUjX5r#>ps*uy*6JuoRZL_gEhxGXs&%rz}r+oCcfDlaV0w9u_cKP|&M!pAw( zlgquJywb6})FZIe#U-P{#kIt^Dk{Vz(KOr9(Ma3GIlwtB z%FI9ABCR5sD=g62Gt4i&FeD%hzLQB=k+yzCPNq+4 zU|DFrM@T@BV}Wa)xxQJXV@9#Bk!5~}Usg^@s$W!PVO3FTdU&F5Sh0CoX=0GEmq(D9 zDOW^5xNEM3r&(I0dvbXom#(g^g1(cxp}&ihd3a`cWkj~Vv!6kJpl`Z=fKixlpMSUs*XC0vtvPDbp5ElTP^+`IJ~n=xWW-k9qt6#|m(33jHJms@Ai;X= zN9m6F1}Aoz?w@!}Gv~0WY5S~(^}AjApH4ZVt@GMs&)b5M{XZ98dCo67CE}y0V1{kX zk!g1qy%8~aYLZ)dyN=I(nql~|*Gk)8RK7HmjMWiQXm6NvanI~``jZ~%R`yuVtUOs| zVfdF*hoQ56=Z)+WdAn_v?Ek%xal*Z&F^87AvOW-cv}jHL)D4oV9&6n-mdsyyaGPqy+=dM*wKc84|{0ZE<+)?L_g3t;-n^jw9^ldx8 z+FgHrOJis;BGQu~{%+N3(JY3%`*|(}9Ga@P2 zfGgZ7%fu`&yu#GG(k;Ndyu2tf*~h~#vpBWHr^q?k+`!zgB0nX-HPF!|nM>DBp}06h zH#Nn`)YQ;Y!ObtxF(6&Rz%jrj*)Kdd&(Am~t1`s6puQ^9E62kxHNdSZFDS~?E5j|f z+{?=`%plW%E6>9-t1!>l)5za2!_w5mEhWd(r?fcCzue5bD%-d$(9_@8C#*8pJS{05 zWSy&?O>%LpuWou#YGQG!g1w!sf{ItJLS$}9YGI_df})PC0ar$Hu!p-#iF3Z6mw%d@ zd7*c`W0qr8rAcW}Syom=h^u*^zl*<%VWy9^n^%>&S8hadWRRa;VV^F1bN^xe0X}V#tXSQ2-rej61nQ3TQ zU|EnWmxQK&lCD`&!tbAK!HZtjeqv`ms`t2j-Q8&S>#;T_^0y8b-I`p~>LOykhgW5d zr06r12+ieen;HMgTa`YJ)Vt7VVKC#qg;-c{o`bEl!jHqPpXCmPwoQF=j?tsc^x@QI#=G|p zs4qL{(z?C$%N+K;cauJSpYeN%z;Dk5>KPNy%e~)t?%{s#db`kvH~Df`w;o;S=G&q7 zW$EdK_``PtIU7wmlot5<(ta^a(Y3Ey42_|OxNQ{F0ccrLokoo}}- z)urQ1RQ;VJ+qL4hE!xHulGyIfSH4-`lxyd_BNvxDKIU1ey7BVleZtqiRK!Qrf7TC+ l3@sOqocBXn(3Phz^7@B2N1{Gg9bSFNq%HYyf5z>1rvWN;E6o4^ diff --git a/secrets/secrets.nix b/secrets/secrets.nix index bcbf0cc..999b1d2 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -1,6 +1,6 @@ let pinwheel = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMoI7Q4zT2AGXU+i8fLmzcNLdfMkEnfHYh4PmaEmo2QW root@pinwheel"; - alex = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILTw7VCV4z5At0e+oCG+3I3tSyhmLJgQkWlhaYJVlyS8 alex.bennu2@github.com"; + alex = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINjSFvlbdy5D59UaVWjRMyBndiAT2MtCeT+6GuemkuYe alex.pinwheel"; in { "pinwheel/syncthing-cert.age".publicKeys = [ pinwheel alex ]; "pinwheel/syncthing-key.age".publicKeys = [ pinwheel alex ];