From f59344809eea6af5228c9a4dab5427bbcad2638f Mon Sep 17 00:00:00 2001
From: Alexander Heldt <me@alexanderheldt.se>
Date: Sat, 20 Jul 2024 21:13:31 +0200
Subject: [PATCH] tadpole: Add `ssh` secrets for `codeberg.org`

---
 hosts/tadpole/modules/ssh/default.nix         |  22 ++++++++++++++++++
 secrets/secrets.nix                           |   4 ++++
 secrets/tadpole/alex.tadpole-codeberg.org.age | Bin 0 -> 3756 bytes
 .../tadpole/alex.tadpole-codeberg.org.pub.age | Bin 0 -> 1072 bytes
 4 files changed, 26 insertions(+)
 create mode 100644 secrets/tadpole/alex.tadpole-codeberg.org.age
 create mode 100644 secrets/tadpole/alex.tadpole-codeberg.org.pub.age

diff --git a/hosts/tadpole/modules/ssh/default.nix b/hosts/tadpole/modules/ssh/default.nix
index 33b2881..a99ee35 100644
--- a/hosts/tadpole/modules/ssh/default.nix
+++ b/hosts/tadpole/modules/ssh/default.nix
@@ -13,6 +13,28 @@ in
     home-manager.users.alex = {
       programs.ssh = {
         enable = true;
+
+        matchBlocks = {
+          "codeberg.org" = {
+            hostname = "codeberg.org";
+            identityFile = "/home/alex/.ssh/alex.tadpole-codeberg.org";
+          };
+        };
+      };
+    };
+
+    age.secrets = {
+      "alex.tadpole-codeberg.org" = {
+        file = ../../../../secrets/tadpole/alex.tadpole-codeberg.org.age;
+        path = "/home/alex/.ssh/alex.tadpole-codeberg.org";
+        owner = "alex";
+        group = "users";
+      };
+      "alex.tadpole-codeberg.org.pub" = {
+        file = ../../../../secrets/tadpole/alex.tadpole-codeberg.org.pub.age;
+        path = "/home/alex/.ssh/alex.tadpole-codeberg.org.pub";
+        owner = "alex";
+        group = "users";
       };
     };
 
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index d3a26d4..eaaae22 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -2,6 +2,7 @@ let
   # see `modules/age/default.nix` where these are defined
   pinwheel = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMoI7Q4zT2AGXU+i8fLmzcNLdfMkEnfHYh4PmaEmo2QW root@pinwheel";
   sombrero = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO/NltCo1L+X1OIBfIKzfrbxLpCOerQ4vTIs+QPTXkf/ root@sombrero";
+  tadpole = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDbyj/vYafqpJH33jFz5HV+gwCiEIJTpxKrEFrBWx73A root@tadpole";
   alex = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINjSFvlbdy5D59UaVWjRMyBndiAT2MtCeT+6GuemkuYe alex.pinwheel";
 in {
   "pinwheel/syncthing-cert.age".publicKeys = [ pinwheel alex ];
@@ -29,4 +30,7 @@ in {
   "sombrero/alex.sombrero-github.com.pub.age".publicKeys = [ sombrero alex ];
   "sombrero/alex.sombrero-codeberg.org.age".publicKeys = [ sombrero alex ];
   "sombrero/alex.sombrero-codeberg.org.pub.age".publicKeys = [ sombrero alex ];
+
+  "tadpole/alex.tadpole-codeberg.org.age".publicKeys = [ tadpole alex ];
+  "tadpole/alex.tadpole-codeberg.org.pub.age".publicKeys = [ tadpole alex ];
 }
diff --git a/secrets/tadpole/alex.tadpole-codeberg.org.age b/secrets/tadpole/alex.tadpole-codeberg.org.age
new file mode 100644
index 0000000000000000000000000000000000000000..b1ad75ee11b80b2e87b2f71f49b4cee4e13b510e
GIT binary patch
literal 3756
zcmYdHPt{G$OD?J`D9Oyv)5|YP*Do{V(zR14F3!+RO))YxHMCSP4KjDPbW|vhNOSTi
zb~H*aswyilG!6<fHmYzj2+DUfPs+~DPxFWfHM1--tMqaW59IO*Npg({_YC*<3CK^Y
zG%5D<@yoF+_KHezH%m@6^+|H{H+3{9i!#zSc15=>HCsE$JW#>EDl9FdEFe6+%rYX=
zJ1H~NE8W}GywuS@FElButkB4-+_Biu+^jOuIFc(UBT2i;$Ji$%DLE*kG^fBl!lx?J
zDW|x~AkAGn(jX%_%rMl`NZ&cfHJ?jYS63n5qcp=MHNeBw$l2JuFugd!#Kbky$=EQ&
zGSn$4Ro^(Tyinh~(mXFXpqT6A6Jyh(Ol4ncRKM43k?apz{(VJSS^4%YD(bVOKCP;~
zpL!<rv(z*0<NL0(YdW9y{9o;V-PyG~*U;E<+AG~pPj~8wofDF+`Xalr%f3guG>+@s
z5$&AUJ5wLjf829wsakMQzu9Gv&Lw4Y*VgMCQZ8%^G`xO@{ZZ1a=WHvZ<JWiC@!q~0
zvoJR2OXG#vJJd`6J(!(xcN;rj|2@$a2KsUNTSG$mzWlvDe~sM6u%f8{87*lJ6H2E_
z=N)}Ki95JBwz5BA_R}n*Pd2>_`zA+(E!4Ri@uuP~)8ietcCL$a?mY3LqkYNaB5Bbh
z%e8(vOCP-{lzqt9P`I@rRp+Op!v@6zx0U&R2i0i(z7e@?q08Y#F|W7Y&U{_kpsl@i
zvT}j=#}lW`Hm;ld=dk0UHFsv)%4GRl&gQjnT#%xv7qYS5^TmnsubR&sZ)!hFcdb6V
zMoEE_JID8P=Fe@4ZXI2w0meHE4(uzb`d+~;5>%ajQY_F-?S6y%x&>2aB!9djw={6=
zU)I`L$9wkX*~S=4AF(;U%+psz<E6*6iaEEhKe|?s^Sb@dtGWeRyO*dwp0FcXvVE0O
zde&yiD1OgNYnvC=I?T6u7`n@CM>Ma!UEI`fckF_B4>}br{?Tk5xxGbp+U8%86P&s(
zx0?j;8Y_DmnM%Y&^u)Z`+-kAV<!PR!p0@rfXXbAUbG|HRxE89T{>Nj|u4x<gsJ5l{
zaVC^4_^S7(u0VZBxjN$){f=KZ70M^x`lc!vR{pd-Cv9uSGUHG2i%!}WYE6#*eLQHr
zV0F=fil7Dj2e)3CGqLW5)#-;8_Qyl-6!&||&U&j;dWl~_A(N}<*DJYXcHLW_t!Hid
z@qNx_cj3!z3oI1<9<4jEK;!tct8S9J?N3~}dxYcszF0<)i65Ki1qfF4X7*k6{<HPN
zuj?!sj8BXH1t%ReZ_IPOKK<C5i5#1gw2r#*d}4c+Tl<z-(8OAjy@dbdTpqCxlMXxS
z%IL<d<ZhjG&pY&*tC9UX%O93Jof_c+6>P`#d=>a!rHH@lO*#6&GH5Yd!OOz;i<dmv
z|7>;GAC(ug)!san7L#F1>HRu!=P%8p5?%|cZW=CY+0!)to8?}Ut8Wjv8l0ND)ud|i
ztxnw#x4KtWC(CZ|<{N!`c);bZ@{3h{iJk1{A07F3B(LpN;j3t)hC+{Q*9GO;(IO_j
zmo#5}Ye+P$GdQ@B$K}>iv!pElOtrpi^2bi~<j)Gfx-8|-Mnm0V)6_ySeTg3C1pCHq
z58m))sCN|>Zj0K{dhW~g{uyhn#JGjT*G|039l7>sMXW%<>}R)rd_Vu__WOuXTdh@x
z+<)Bum{kApV{h$7neT7;bbHpk?s&qOR1xS|b#Gl~k#^6foy(TE%H2A5*xZcaIIGCI
z15@U(h%TBqM?g_aPe50*ta{GoPXEOzcP`E7%U91$YRWhkYBbBNTYsLL{qEfkoBJol
zc~?f(@44~Oa@%Sh7yin_Ojqyo1mt`_%zCDA*5`!#Z+X{0(m(&{`9_!L3obBoXEQv%
z`gvc;0sqJ9UoPI4h&aNurS9X7L(gBlkhD4;<*d`i5GtcpW8XaG$%Oif!ss7UIOb2=
zdF?`Vp7Qgk>TU%MRz(AENx|i3jFh`oxr+SWnYR?==YHbj4{^Tua6`t8!l%2B@f5yN
z{+g?Jv(M5$``oF-#a_10Wn65JPJH_%;kv8Z_OGuRj~k!9bUsbsqRHlo*A(1(bE+rW
zKUS5odzexEar1|H7EeB36ufSbXfcV?&gTWk!&mPNGf&)A;(ephKWk;>f%yi%n1rue
zY~VkBMB%uuPjaN}!aw#)Kgf$eTAIV^F?r9#NxAQS=~wuLT<m#q;Tad_JKg2)rp?k4
z+Nm@D)z-QP)BpP2UaJ&$@0$0m)GfOTGHvBQRNLk*t<9?_4$<;@VN-KiEB)c@eIomF
z>pc$tIjoU!!1tA8;-m|rU!T+nde3`#(SG6qG3Mecu}o&23I4UWO(Y*SuUHql?^y60
z!D&ZsUEMP=c>V6}X1^}X)>?10&egCw#5dK)LiR`2p4`+9_fl)7dr$w)Y1O<SvxVK=
z;+}ctiqFz<7I8ks%teJ#MKcs%T#8`+JY{=&x=Vt~BM(D~95t5Nh54q56Js_?e>|bN
z>a$B!<&}4mNt_3EUds5i?0qilq3-=%Cxreyo)NPzF5C1}d9hia{j+^1_z(OKIUnTu
z`oFCA1bc?b515J{*w|iGZOhqz*?o;>%1yDCdlO>${nz*fo5laztl>XnNtBdhX7~JN
z?hltwU9bI@a-IL<-NRhJmoOYK*2*_yth3zl>bl2u)~P$yx4(*en!m9sWTWJMmUCg#
z+P9l&TM1e%dg<QA!72A;?=#ICKSJc6eZJ7VSA2?*TuHg&%!3Jnd44XtZNfLzoH!jR
zIy2Ty?WEhxH_^XevFv<Nc!(o6N!#n*_gS93MW+;Vy$X2cZ#T(q6w~vOGHETE8g~BN
z)-&I>{$AMJbLq3`q$>dzv{G2-Oq+c&-KcZ@kK@0eaCAo7$|%=wdS<2UAZ~T+JgY`U
znY;4xM-0-bpPY<tA8`7lyd?dr_Q6X9(=?xHoi3<<_{qR!V~t`!dRK9XSO28zhptFp
zoLV+-=9WF%FKaH{D4+A_=Yd<NP8r<#^<A#gX7Sa^7>~1kYf>ic;ZbzWfBEdlq@8Ym
zHwf<iF!`Vq|F;~y$v@8vp4-82{@x-RyO#|TPrHTc&u4v3xe--+<evDcLZ`&{o%fv2
z{)|wGzsT04&gk-1du~DL&AEMTM@|LpujJa&_vzL%@3)I$JB0*tyMEs2uWn!q5zd<3
z8}ci)y5hNJ;Ix<b{9lV*ieK?0^Y?_f;)CAJak&#`s|DX&wZ;FEoKS%LmtBqrzpc@U
zx_6hGPb8vCIitkj+b70Xg`4%4&3V`6>n^Anai&;fo#>>UFC%OEW;0H&pFZ=`9BI3}
zvywVuGq12def<5wOtIkJI~pk;yQ;n(>D8_+x18uE!gTz;OMr6MflD?viGK==;vIKf
zZ0A$spS_9u;5=Kq?}ic8C2F6!jn4=8-26J@!eh=Y`p;FhKQS<NhCd42#g+K{-t!z@
zt#i!_r?5=*P6*ni=jZ<M$mAbwTUTE6<=x%k>cD<;N$@$_zzaX$Gz7nX`$)xS<;@b2
zBj29<K6WtTqQ0GV(%v`+wTfMdYuTlDMgF|M==qaOC+j`i@|iidEHpg%=8c(kDs$Yd
zUE5dsKen6qbko+~`9*dyF@^JzMR(mR^$feWmp9$m_gTslsU2O;QU%5bs}qGM^{@K=
z%GlkLdr{F%URN=`wGsKVcH}yVbey_Ux4Tc{@8!IiSI>P)o7o=|c=Ocp5XPsL^>=hb
zUoK_X{cCOXb4O{n9UB}S{`<U^WM#f{;VI9yjZ>z4eQI}@mt)$;qKiAlDqhaB(-0H9
zQI+A*eaR$i3F|Sg)2#oT-}&BDbUE7aG9jk5&P3OHhwxp|JjXejg;yDO#(Ovgb$wVf
zRciOsSxYQ!-h5%&cyL*>`>RmV`ImepT8|v@n*Z>vmEygXiPQ8y+_`>0XzxBPmKo)X
zABx<n{@3Ms^Zunz0<)II|9ZrI=)$FKQhBku#g!|+{(cj8v|^j^L+QggE52R&khoks
z;kf(OpQ4h6i&D3Eyo!2QWqL`<_ne4WiRqRHIv4i5xbemR!-mjo`3shwQY+JzPL%M`
zaKB-<`tg<9{kuI(b~L!3*LU9bVBImMJsWqn`l;-h*%6{J>APEAxMz6E1}^rqtxGR<
ztGtOZeXXQ=E!4Aj(cUM^Oio(guGngCXL8cgQGM53^Nq(E>(x>-ekbY3^OfIx<zpMK
z)BUpS{O9z*Vm~XlM^~RT|64ITlFe^+TFLJc6^XM?k7Pd#l*=j=kvWq2IIv@z%j!dd
z<vJ=mV*lB=S#j9hQ8s=3`pD{2&e9Wq`h>n}5m<F8>2{*gBkRuN6T7{60{*7jU-^7-
zroHQdug4f9byM~fB&c5Gy-;$>(L`j~*B1`1B9%+FWj6ef&n!N8_5YTSS5NhwTqQg&
zzHM@*aBNpoo08A`pFQ<W>ijq3<n637dR+hP?e%?dS3AhK?N$4wny{CwNi9x)1z!C3
zoT5MDWX|@^$Cc5_RUv!hGq!0N@0j!B^t9s~v3pPd@V<Y?cfQf#NYSb5BNR2ZK1&e0
z`Qq!klkR5sJ(xZU&N{bVp{iQCg*|~YVRruK*wWe4-!mQXNZ65MYW?-Syp^NZza?He
z2W`0@$!<HhampLZ<edA>`#*@6JilP`X5x~Ly`K(ktUn=aB#>2q_~za8mEJEO{J+~6
zz5UMgXVFXC`Y#(Y{$Fr7R4OXAEX}BS!;G7nVgG;0|4BTu^o7K|xyhUP?ydMbIr$2&
z3HJ_vu9@Xr3+nb|9QPJHEw6FVSZdQ%v%eP_HrpOquDvm*>V&KR+aFf!*Ec`da7m*<
z@pG`c*22kp>H;5CUNr@rxhK{Cxx6<}UVqQ0s^Y6X$y$f^uU(n6i?L*SUcr-1OIBRk
zyT$B<mWF_NV&;yd6?Yb{pZ_YYmanFRmD%KR;ykte&M)4Xg&W1KZr4!e_RoscddPS6
z@<Qold@2I%?7P-kuKlpcSKyOMY(Hz)ug=S|QXE;r$?q@Q-%wa7^Z!Y^)73qk3C#-_
z{v?W?JmcjNmzW$BnXhf+saovy*R1H-51%i0rrhwkGgWqu-Rmt92QIs7|0uDFT5GoQ
oR?p-qSNCqeIit_e<>|lqTN<};ozIw?Gdt*A8^?w2mb>MA00ZnVSpWb4

literal 0
HcmV?d00001

diff --git a/secrets/tadpole/alex.tadpole-codeberg.org.pub.age b/secrets/tadpole/alex.tadpole-codeberg.org.pub.age
new file mode 100644
index 0000000000000000000000000000000000000000..cf63ecbccfcb267b7d2ff19338f9c400f1b311ec
GIT binary patch
literal 1072
zcmYdHPt{G$OD?J`D9Oyv)5|YP*Do{V(zR14F3!+RO))YxHMCSP4KjDPbW{lNG%P77
zw(u!5D$y?W3O2RK%uGx&^mZ*bEj99qjPfjrbP6*os?^Vqh~%m)v2ZF#^Vcq{Fbp#;
zN=@|&El+dI4AZvE%+8MtHZxByj5Kp{4fOO44MevsHCsE$JW#={Bs|E=tGviLA}>AN
zN59hB(k&>Yq{=Kk(KW3wB*eHX)7-gCKdHboE1N6NDbuyAxHP#a+_1PRGb}IEy}&y(
z(=j8wASbD+%-gKU&A+O!z$3CCKb=cgS689fB0xX5(A_nl(9E~gyC}`1)Tk_=L_aCf
zIX$W(%AmZ$RJ$lOGRni-$(Jk4*|jI}&B~*OZqIDGsyzPnoiY$kK9IP_C@#X{uI|^=
z-z9$xz6ATFow3<&d;jkNem?zK1rJ~Nh#lG;Dn4!E>}yAMsRyXmba0n`s#xqe({$b?
zy+Z*B1zsKZ9Zs-{aaV2XOIg|$>J>Ua`P2-zr?C&2igTD0PS>3O6(6)p;+6D9S>AWN
z>f5E()LvPvufoGsz$^Q*$|UQ*#(`^0LUsp)T5pFrw>_I(Qg?pkjbNGWY|FpJ@}-7I
zSn9at9Jk7n>EWOC<-EYt{7o$O4VSe8(|2qZ+ET+PwIP1K<iE|ce}DR>D{}IX^1r?)
zb9b-(a=N?jdRIQZGpDufjf?M(v&YRH<klL8^=~Y)``N@M_@1%vhPq{CyXijbFKM?}
z>n7IdFZaK@={>Jr|J|R<Kh)fgmJJ9GoF#T=NzvCMmx4~ohcN%uxTauUZQfgETav*P
zzPj-Qv%=5c-|9}Jd465K<C(#cAc?sSKE~{C6h1XQd@J&9+SKyGtFL(feE;j7a=6&@
z*j;vQ$1Bf6iUJIE3vx5_7(9h!Ke@<r#&<v8`cBHV<BY;PiQCzU53|{3zcyM{$q{f+
z?rXiTzU_14*bfu(Bl{yA;-pvg80BB^yYS0vx$=yHC3XEfbd@jG-4(6f@oBS$iSbg2
z8qqHwDq@eYE1HRhN=*C|^lj>jl26C|t=@F4+x^n{?)=yz*>xS-dGg*~OCP*RS-Gsr
zFGkz+g2DRU+4qih259~|Ijw2ZwuGQ18J-hQ)*Z~QD7;$rHC6lRaqZkLk1r;BB}A6L
zb~t~}P{+#Z#=qM+tFm*ve=-Qfo_$xG;91efP!}h1ygP93ez{|Ou7cUY8>e3Su&{%7
z>+97)EY2Z@xgtw{-dJ7LJjd++bK@k&o7ZM=J<?FMe7f^r>FKZHy&ue&I@EjLuQ~rp
z`OfD?C;ckZl&P-fd`HVO??!ytw$y3jfyFE}y>h1#Og5b4@bm69W0zg-eoO3)k;`9S
zel4Ec0$+ETD|*`1P0Nz`c;^13SflvKa{hVOO(yIy-MS^oQh9Ssc53;WljhO?np_(%
M^q-z}d?K$Z0IP%AzyJUM

literal 0
HcmV?d00001