From f92159ab3b06575dd2b0fd410241f13ab836510c Mon Sep 17 00:00:00 2001
From: Alexander Heldt <me@alexanderheldt.se>
Date: Thu, 15 Aug 2024 15:31:44 +0200
Subject: [PATCH] pinwheel: Add `ssh` secrets for `backwards`

---
 hosts/pinwheel/modules/ssh/default.nix        |  19 ++++++++++++++++++
 secrets/backwards/root.backwards.pub.age      | Bin 418 -> 417 bytes
 secrets/pinwheel/alex.pinwheel-backwards.age  | Bin 0 -> 786 bytes
 .../pinwheel/alex.pinwheel-backwards.pub.age  |   9 +++++++++
 secrets/secrets.nix                           |   2 ++
 5 files changed, 30 insertions(+)
 create mode 100644 secrets/pinwheel/alex.pinwheel-backwards.age
 create mode 100644 secrets/pinwheel/alex.pinwheel-backwards.pub.age

diff --git a/hosts/pinwheel/modules/ssh/default.nix b/hosts/pinwheel/modules/ssh/default.nix
index 229e685..1237ec0 100644
--- a/hosts/pinwheel/modules/ssh/default.nix
+++ b/hosts/pinwheel/modules/ssh/default.nix
@@ -5,6 +5,13 @@
       enable = true;
 
       matchBlocks = {
+        "backwards.local" = {
+          hostname = "192.168.50.202";
+          user = "alex";
+          identityFile = "/home/alex/.ssh/alex.pinwheel-backwards";
+          port = 1122;
+        };
+
         "sombrero.local" = {
           hostname = "192.168.50.200";
           user = "alex";
@@ -48,6 +55,18 @@
   };
 
   age.secrets = {
+    "alex.pinwheel-backwards" = {
+      file = ../../../../secrets/pinwheel/alex.pinwheel-backwards.age;
+      path = "/home/alex/.ssh/alex.pinwheel-backwards";
+      owner = "alex";
+      group = "users";
+    };
+    "alex.pinwheel-backwards.pub" = {
+      file = ../../../../secrets/pinwheel/alex.pinwheel-backwards.pub.age;
+      path = "/home/alex/.ssh/alex.pinwheel-backwards.pub";
+      owner = "alex";
+      group = "users";
+    };
     "alex.pinwheel-sombrero" = {
       file = ../../../../secrets/pinwheel/alex.pinwheel-sombrero.age;
       path = "/home/alex/.ssh/alex.pinwheel-sombrero";
diff --git a/secrets/backwards/root.backwards.pub.age b/secrets/backwards/root.backwards.pub.age
index a9212c9908ce91a1bb4bdda56e877e894d30a495..ffbf056fa692e49c3c8570c4b2b88ca1e9a0bee4 100644
GIT binary patch
delta 382
zcmZ3)ypVZ<PJN(vaei2aiKBN!YI<l`N|BLSURA2IWm>vZWOiAxfuXm#TSb6JUS_bd
z0hfN2S5Aa}iltd$NkOoSn^CrYWwL=qxm!hel5bvVj!U6;alVI}TV+s4B$uw8LUD11
zZfc5=si~o*f_A=NqDP=YsClVzRZ)t!mt{(Ejz@NKZhfVRnSW52QFxeVlu=QVw{t~t
zlxenkV7Y-SSE)xql7XLPzIUFnYkGRFxu1)peyL+fvT15znt6(|g;PnMZ&5)?X0Dqf
zm#(g^LSATUU~qO(v44PXRB48xNnogRP;sJ1n6q1mwnvGhsh7W}OG;vRfJd?km*q-5
zLwn9kndPS~&sh~+Jb0J?!&Tjk9EZb9m-$51%C=W8Tzh%WpC`@Qd$Ue4ap)J%IbNWX
z-n)23c0=n*1_mh|#~)uSO*RR~7;RdAd~%)OXScTWr*n00>71X`ysv6|c1z{Yr{6dA
fh^6OQmWHZXzc$=6HEcz_UVc)zD8rig?28TncrT8z

delta 383
zcmZ3;yoh;%PJMuJdR2HvvT1r|R7RSIn`1z6g>gleafWGnYE-UCQKe~kRbG)nu1S%*
zFIPa0wxvgMV!BUad8KisS42`;p^;}mxj|yON4lq@VR(L`XOwG|d7@!zB$uw8LUD11
zZfc5=si~o*f_A=NqDP>Dv6-81ii>+lj<3FPkgr8iNWE`XnWJN5RiT@isdr|jOHy)G
zS!z&{Wl2OnS7DB0Mp1-Us&j6Bp=W?;fqQC!adMfXV~CHoPgRzYhml`qW^rJ+dq{aX
zm#(g^LRE3OhhwB$scAuZn2SY}X;nqKdrDAhk()<ZRdQyLYq?LVZ<(v1k4tzU*L06u
z!6&bKXH<kmDqE?)PVvmLUH$R=8pZc+jQt86Dpog_&26}?%F!k)^F%N2_ixr`)gR0J
zu1lS|I%j&oy&%zVx8FMWn@rW%XEt?%!e`}x3*WZ>@b6%s{^Y}!iCruae;1US-flA8
hy|m?%{M0g*e6fOr_lq?0|LLx8(OJk5vQI3$3;-4OlPv%M

diff --git a/secrets/pinwheel/alex.pinwheel-backwards.age b/secrets/pinwheel/alex.pinwheel-backwards.age
new file mode 100644
index 0000000000000000000000000000000000000000..32d10b10f942435101aff3da65e4e9e689ddc38c
GIT binary patch
literal 786
zcmYdHPt{G$OD?J`D9Oyv)5|YP*Do{V(zR14F3!+RO))YxHMCSHs|ZMnN>|9tx6H{e
zN(y%mu`o?etTf3k^6>Zfc5zOw$_|W757tkt2o7>gi8M2D&*yS8F^Ei#^6(9HuX0Sy
zF}BP$b1ycDDhkQ4^i9buN;XN(^wy8aPYusaOh>m(JKrzSBT%8(*dro4&(|_tyVN{4
zG1I5QE6uzrBg-f&E2z+`GRY+~%S<~hv@F%r$dfC>E2PlBL_aONxS$|Q+chuW(l8*!
z%gHaru(YVOFxx07yd=29q|nsg*Og0GS63m!J;N!`BP+zn(K0V0x4<ntB`v}-+$F!F
zsLIGNGcd};$hWf6DX%Q5q?pU)+sVTplwO3MYB`y9&>&#xLwBu|Ef*_a*{S9H<qz_6
zTgiPXyv^)F{3VeEc}53r=<0hK*90G29<Qc3U-;<bqT;2tO-Hl*9+qbvTC?M5s*0jr
z%3}lbJ^c0dWv6FIG_nbFKJW;U==xu_t}61r=&3W$pRM}&b@Hs=YvO+1uf6<zahCU=
zlAXN02i~;^T3FNsM|PV%*i&R$r@Z#;R3Gma?x1NLw*$7Vy6FEY);Yhtf7?+$-d$7Q
zhi&@o8eH=w;MI{dp}We{f5<m&-u9_}d1RNh!PfpM%R|06Z2sWnJNs8n|Jh8Nwbz{5
z<~Q+}#WMb~&wKOy^f$RP%k(|Fi(anwdQ~^yw&eR{69sjt$c{Re{C9IzDjv+3^`j>%
zHEa6z>1MfHR$?kFN4wX3-Ff%tVGf>kvmTk;iurwE$(n5~S_>|}yYa`-d#Zj{%a_{4
ztAE(ue7nY^z9M8n;UmrFgcX+hyBNH`DTFeY%xYELdH&UbQ@;fYofrQ(u=Cc}scdl%
z{C>={WQ;zU?eX)m$fAl{7psq-(B5X6I=yG7;;knS4}WKyuKzgrp8b`{Pu@+^VR3xD
zX>TCk)p$u&35^>yt(*7%`~P6Vrs=wy+p^diB^G|1(e=KFd5Umdl+xB$w+}f<c5})s
c+*tH0JmJ97i}tUou6(_l^wmu6Vr4)P0MNl?ApigX

literal 0
HcmV?d00001

diff --git a/secrets/pinwheel/alex.pinwheel-backwards.pub.age b/secrets/pinwheel/alex.pinwheel-backwards.pub.age
new file mode 100644
index 0000000..899eb85
--- /dev/null
+++ b/secrets/pinwheel/alex.pinwheel-backwards.pub.age
@@ -0,0 +1,9 @@
+age-encryption.org/v1
+-> ssh-ed25519 vxPbZg zmEXhSjGacAgRzxO1x4JYfwBfK25t0tqyWZozWE1Rgs
+nWT3vzi+k4YKY+QA6HGjipYrDEzvpHBkID9ijEpt5Lk
+-> ssh-ed25519 Pu0HWg xp0USnGLPDf9bsGTZ+q+xm8wp1IgAwmHY2SvbQAy0xM
+xDvX49MZ3HPd+1wdBymj5eNrKe+qNTXMi41mU5hF08o
+-> ssh-ed25519 +oNaHQ ZtvRxn73tNFjYsPGOKvDCDYsFutLnva/6oVIP1jcrRk
+ElFyETtRy2VrtuI7KZohwV+vEJZsDDmzGz8GFP+UQrQ
+--- YpXzducDp9JxyPFBtt6XLFrpwc0TlzO4XPaltbzx4gU
+XÄ»@F•™þŒm)<^[x6ÃèVÈÄgØ¦qÌbx•™#>eéÌ˜ý_3íd°&vÐ÷æo$ù]ÝEjsSOÞ÷üZ‘M´‡U©X”Û¢poÎë]@WuÐûÅl§ÐÖ|¿Í”¨h¬ýË‡U 6›·‘:…d	n“EZH.{Åòš
\ No newline at end of file
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 73f013f..861e137 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -10,6 +10,8 @@ in {
   "pinwheel/syncthing-key.age".publicKeys = [ pinwheel alex ];
   "pinwheel/mullvad-device.age".publicKeys = [ pinwheel alex ];
   "pinwheel/mullvad-account-history.age".publicKeys = [ pinwheel alex ];
+  "pinwheel/alex.pinwheel-backwards.age".publicKeys = [ pinwheel alex ];
+  "pinwheel/alex.pinwheel-backwards.pub.age".publicKeys = [ pinwheel backwards alex ];
   "pinwheel/alex.pinwheel-sombrero.age".publicKeys = [ pinwheel alex ];
   "pinwheel/alex.pinwheel-sombrero.pub.age".publicKeys = [ pinwheel sombrero alex ];
   "pinwheel/alex.pinwheel-tadpole.age".publicKeys = [ pinwheel alex ];