From d0c2409ac13b2bf21e63da39af688b28ef55b72b Mon Sep 17 00:00:00 2001 From: Aly Raffauf Date: Sun, 9 Jun 2024 19:25:55 -0400 Subject: [PATCH] secrets: added syncthing key and certs --- hosts/fallarbor/default.nix | 9 +++++++ hosts/lavaridge/default.nix | 9 +++++++ hosts/mauville/default.nix | 10 ++++++++ hosts/petalburg/default.nix | 10 ++++++++ secrets/hosts/fallarbor/syncthing/cert.age | Bin 0 -> 1996 bytes secrets/hosts/fallarbor/syncthing/key.age | 23 ++++++++++++++++++ secrets/hosts/lavaridge/syncthing/cert.age | Bin 0 -> 1996 bytes secrets/hosts/lavaridge/syncthing/key.age | Bin 0 -> 1490 bytes secrets/hosts/mauville/syncthing/cert.age | Bin 0 -> 1996 bytes secrets/hosts/mauville/syncthing/key.age | Bin 0 -> 1490 bytes secrets/hosts/petalburg/syncthing/cert.age | Bin 0 -> 1996 bytes secrets/hosts/petalburg/syncthing/key.age | 26 +++++++++++++++++++++ secrets/hosts/rustboro/syncthing/cert.age | Bin 0 -> 1996 bytes secrets/hosts/rustboro/syncthing/key.age | Bin 0 -> 1490 bytes secrets/secrets.nix | 10 ++++++++ 15 files changed, 97 insertions(+) create mode 100644 secrets/hosts/fallarbor/syncthing/cert.age create mode 100644 secrets/hosts/fallarbor/syncthing/key.age create mode 100644 secrets/hosts/lavaridge/syncthing/cert.age create mode 100644 secrets/hosts/lavaridge/syncthing/key.age create mode 100644 secrets/hosts/mauville/syncthing/cert.age create mode 100644 secrets/hosts/mauville/syncthing/key.age create mode 100644 secrets/hosts/petalburg/syncthing/cert.age create mode 100644 secrets/hosts/petalburg/syncthing/key.age create mode 100644 secrets/hosts/rustboro/syncthing/cert.age create mode 100644 secrets/hosts/rustboro/syncthing/key.age diff --git a/hosts/fallarbor/default.nix b/hosts/fallarbor/default.nix index 15db342d..268fe540 100644 --- a/hosts/fallarbor/default.nix +++ b/hosts/fallarbor/default.nix @@ -25,8 +25,17 @@ networking.hostName = "fallarbor"; # Define your hostname. + age.secrets = { + syncthingCert.file = ../../secrets/hosts + "/${config.networking.hostName}/syncthing/cert.age"; + syncthingKey.file = ../../secrets/hosts + "/${config.networking.hostName}/syncthing/key.age"; + }; + services = { fwupd.enable = true; + syncthing = { + cert = config.age.secrets.syncthingCert.path; + key = config.age.secrets.syncthingKey.path; + }; }; alyraffauf = { diff --git a/hosts/lavaridge/default.nix b/hosts/lavaridge/default.nix index 1f915f70..a272bb3d 100644 --- a/hosts/lavaridge/default.nix +++ b/hosts/lavaridge/default.nix @@ -25,8 +25,17 @@ networking.hostName = "lavaridge"; # Define your hostname. + age.secrets = { + syncthingCert.file = ../../secrets/hosts + "/${config.networking.hostName}/syncthing/cert.age"; + syncthingKey.file = ../../secrets/hosts + "/${config.networking.hostName}/syncthing/key.age"; + }; + services = { fwupd.enable = true; + syncthing = { + cert = config.age.secrets.syncthingCert.path; + key = config.age.secrets.syncthingKey.path; + }; }; alyraffauf = { diff --git a/hosts/mauville/default.nix b/hosts/mauville/default.nix index bec2b1cf..3d2067e9 100644 --- a/hosts/mauville/default.nix +++ b/hosts/mauville/default.nix @@ -25,6 +25,16 @@ in { networking.hostName = hostName; # Define your hostname. + age.secrets = { + syncthingCert.file = ../../secrets/hosts + "/${config.networking.hostName}/syncthing/cert.age"; + syncthingKey.file = ../../secrets/hosts + "/${config.networking.hostName}/syncthing/key.age"; + }; + + services.syncthing = { + cert = config.age.secrets.syncthingCert.path; + key = config.age.secrets.syncthingKey.path; + }; + alyraffauf = { apps = { nicotine-plus.enable = true; diff --git a/hosts/petalburg/default.nix b/hosts/petalburg/default.nix index 23b3c9a7..6df1fbd9 100644 --- a/hosts/petalburg/default.nix +++ b/hosts/petalburg/default.nix @@ -25,6 +25,16 @@ networking.hostName = "petalburg"; # Define your hostname. + age.secrets = { + syncthingCert.file = ../../secrets/hosts + "/${config.networking.hostName}/syncthing/cert.age"; + syncthingKey.file = ../../secrets/hosts + "/${config.networking.hostName}/syncthing/key.age"; + }; + + services.syncthing = { + cert = config.age.secrets.syncthingCert.path; + key = config.age.secrets.syncthingKey.path; + }; + alyraffauf = { system = { plymouth.enable = true; diff --git a/secrets/hosts/fallarbor/syncthing/cert.age b/secrets/hosts/fallarbor/syncthing/cert.age new file mode 100644 index 0000000000000000000000000000000000000000..131b13ca8d0d9da94808219e289988cd08b7adeb GIT binary patch literal 1996 zcmZY7{d3cX0mkvJFAMcCAO#9541AOw94578%d$*ETFbWlB3rg>%d$-=*s`qn-Ii=w z5-Cu&kz+s!Zy^K{a%FI|ytQe8!V%tIT1ueDMj)l54KK}l-Q5fyWhv_{Ocw8F&_F}+;?eVS4p%`=<O@vZP?#;ADa6eBl%@b^6f%qm zawd$xxETNmN6Cx96oSfeibFu4o{YI+yo9MiCL0M4)qrdW1S`rQ7J)e~AJi2&D_I}$ zTgn!_C&ZM~&XhVPB{MdZS#AV_%yl4o%yKw z9Ym1H`EkKIRLgNW39cwTRtqhlIa@3VSmQQ=)RWGN(+GhCkr(~-<*3Kcl0IJ$f&F;} zMr-Ii6V-ZAyAyG$;}MYz1S<|AkYjZbRHZA%-H6vF01)!jl9Zl~7Fi{TYDzIR2@xhX z%DSwe(F4X)E+V3jBqe8BghfNbg2ALsMoC4%4`8_hBN1-1I%P=}i?}i1lr1{HKA{R) zWeg9QGJymXuyEkeHqpU^aYAXUL>#CSFld2f7_dk_0a58COWDf0&|u1>4Uz>N;51NTqb zTh5@?Mq$~<6PXwUv&pAD5Z2JnUu657qLK8JeF}p;h^jPr?Ke}ftJh} zZ5%ZcNiJeClL|+iGIALCiuijvHSFif|bp4$%eF+`*$K06ZlMhtC)E`USoVQqd z_p596PrhJx?mj5(y;?pnxA&dyR}<5#=6>6A&p2zY0uP*e;irLpmj_*&c1-}kzF*(? z{lL7(&5Qfb-g+_h&glb_HklW8wz7lgi|R}E5^KFOYxe15vznXeHoC8~w{>)*AU_^? z)HMjTPq?CQ8h3o)eVu+^$CyIRO=R{e^BG(By~C*e<)xXP?tiq0etERr@a2Sc@BL*- z@|yIEZd$#5u=(V%j_UPo5u>fi9Bz%B8ueuA{_?L)%kEC=8NLz@e21-E&;MZEf9i|) zg^S&N&pvGbF|zp4ku+Cxb<6QqpyAb3qn=T9;`7npjoxcmGWpGSp)aXh^T#e4_LXV$ z+SQ$Z=4*rUGc)$BcI}y8r~7D4!=|M>8;;C*d*|@cJu5z_-qtmDK0o31l>_IxE*!k$ zc+yhy!o`zqk4LbzuS?@rUzk`0F%LeJC;!RuTxD&F-9qnjDZXyIw&1tzlCWV1w*Sz{ z>kIDues^@n_6_)8%g3dL+ijnDW;Wkm-oJ4tif*3u@J;Tm#@N-5H(%d$an-#lnjeLq zX`k=>7dr6+=J3`L-q@*efBoogdibUrXLG||JFWhnDe^y$+`8@IiH6DHzYl&g_lG0= zp}sY*mbUNnjhY*e(B7_!;7-l zMrdlpH$@J5FRDqyyx#5$8Ij zS1c{dTMnL22>sn1i}5NKyWhHO&t@+?ZZWh3uAA(vzMH9=HudE{TGUNOM}OKQ2h#)_?w7-OAblY{TjGg^`~(Y(CesVPw NcUikWJilW0{{WyJ6Bqyh literal 0 HcmV?d00001 diff --git a/secrets/hosts/fallarbor/syncthing/key.age b/secrets/hosts/fallarbor/syncthing/key.age new file mode 100644 index 00000000..ba007f37 --- /dev/null +++ b/secrets/hosts/fallarbor/syncthing/key.age @@ -0,0 +1,23 @@ +age-encryption.org/v1 +-> ssh-ed25519 c7E/gQ ++8AjXZiIIGiUo3TFYrqL8RiSkCPF96//teEM84omn4 +M3UagDv8Jbzk/LcO6sMPZ3CbretJH4wd5FiUnJv/1NM +-> ssh-ed25519 d4UErQ fW76KhMamJtDe0Nq4B6WL21eQqXaN7XHVpuog4qFsDI +tJqOwgEmqMPrvyH6HZiMkDlql5V+ZzxgvxS6v+UVGGE +-> ssh-ed25519 1mX44w X36PTBvd1bVRrdNResAIYSYKfcE3dIhFystP70DF6D0 +oiHoZMcynbkDVkXvEHGrvVIiQQRhXC2QP6o1GBF5Pw4 +-> ssh-ed25519 nrny8w aZlui8I0dwdKs7THXo8OnhugUZ01rakFLsgpqTewZxA +T4e8ZEgBrwOyXXtE7pdyN/iT2Z4yqVAfQuO13K0mlm0 +-> ssh-ed25519 W5caqg L8L3k4ztt3gH6uITQjz1iiHOgj2C+HQc5CsTg4eC4i8 +GtCwFtMsPT3ATHzhJmptEIraq/7+OOLSGiQ12vnTyWk +-> ssh-ed25519 xIeYNQ KGEftyrahw5t1sivLb1iTIFNUWfR0GntCyr58908KSc +s7Yg4rPCHu2BGzTvWFX31wh7mDpaCKmj2ds7lZWx884 +-> ssh-ed25519 GrlIbA Cy53lNMapjnenklZqKafkn2gfKhDlWYl+MVX/bAtMmg +rIjGSCzoCKU4tCerC3TXj8L7rhknqhEp7oWT4TyTXrE +-> ssh-ed25519 g+apXg QX4OHTDhjdP7Z2caOQq9t3jZeliUFdjAQRJs7BElEnI +mMxCxwGbx1E09RbDvAxaAxdCPf16st7qqPF0JMJF8M4 +-> ssh-ed25519 osHDzw IKMSHzvHgsvZ5nowqti3uLrDiDWLEGEfLploPbNcUVk +LzCEn0NED9g7taGoVCT/ViiOLho548FC07eaqOsiges +-> ssh-ed25519 s3sc2Q X24GfGbe+7cXvBLx348Lxe2aTRJvtu/3x3UVeSKwABU +SKRH5S+l8haiXHDV5x023StxueWEu04j4WudQHmgvGo +--- CDDsK6rXzWkDpIIn8wQ/C7qdCq1Z8jezMXx9NeGrQDY +@_ *`Vf٥<\P|"$gDE8an34N%BrVD}!H&[[  w3˶_ WaB;iJ q̸  -]?ӪA]v ň)p4&2u8*2RC?|l|aΣW|~e-*̡;Vk;e$o[AN~dlcҭz[,C -TШf_ß_4OBifl|N%Wy/љ+\Wlj@KY>u6 cѲ0_m]a \ No newline at end of file diff --git a/secrets/hosts/lavaridge/syncthing/cert.age b/secrets/hosts/lavaridge/syncthing/cert.age new file mode 100644 index 0000000000000000000000000000000000000000..6593286415b454e197cb529a350fdbf04487502f GIT binary patch literal 1996 zcmZY7`Fj%u0>*JvSV|s1V4*84l>l2=2_?y7l9>Ru=02L4WRgs0lA@5zOs2_XGRaKN z!R0FLvJZzKtY{SbzD_RjrhyhAM^z^m?sPNkKL>iz!jo%O*5n(U4(-gx_kS{RYBh z7NxACVD&}CKgjg#GF3{bEGzri@|E% z>V^AjG>F?oOc_r)oMCrCrm3{bEo)Fr3MLYKP;CmSVv|fZNGYp^u#}!I7I3ZETFf#rQ;A0GlqvuxSdQ(lX?YR^3rZFuNRY`$#-fqKjdI>0 zCqq0E4BIF}F+@hf21C+jFt`aWC@JI^DN-a{OQSAZkg<4zlChTZ;bE1w#HVFv4AJ<3 zoB-K%Hd}u!C8kPnLFsXaRT%$0 zImXoB(iuweTC9It(Zz&NObH4qNzj`LYP{$~JUY+^;jjqjvWCP%(txUHwFY;g2xG)u ziV$K2ST=087X%VY8nQysFIBB^B7?vY7YFd?GrS8Wb4>57_^1Oe#ld?^i) z1<0VlIRimk(c+eMULmy!6-kqhX&}Ii<6LO3* zAY>>lsPOBBG>!wDs3ieMAQaK^iG0o!^kySKnDhGTV7*7jdwJB3X!>h{kg&FtrY$(1^IHp`Oodbb zKWQAYQknoCGP$gD*vi95e@)U!6o4tsNzM&sQFV-IAW_=S>FfcW#pTY!VNc91gaLvq zxdkug(+4nx8O@>gB4{XKnhY;MY4qW(B4%9}Nf>2@h!DKiMI;>#hD0AOSyiQkd_*ko zN&tbR#h@buxP%)MxRXxjY`VNmq%cE_4I!vx69b?^95A+R?%$6usa`OBMY!{D#q%@n zKN#8Q{flcL|4ba&i{>X)&m6MsyVkPZ!>gK>xh1N%X22888z-MU*7v?;^|Dvbmr?XP zP4**dkV^2q_p-cPpm`PRIlpB=s2DBmiXR=(R_b@u7&pY7=y z`p&UkuT;jKKHZcrgSv|i^A5CM?nnc>PFAlh3wCrwG~YuEI5+a@J5kk7{zntz|^VVYfWf2KKM?5{=+5y`g!BS|9*W`{g=DWymxQm>CJ1W ze)C@Y^v-C*?seOr%nV64-yPN6*xNVvmGzfic$VBRtjj)@y#M>*J-_YE@7r|t_}mY> zpIdgMd+6f!ia|Bs-}q`>#h9s`*auU_{kg*8(!@FjdRBH1YV91{_{`xNV0h($t0%rF z`|;|K2&`GD=Ku!?kolY}>MP`{3QruXvGI z>iy5cn(_^!XTX5poxAcP_UXLVrTO+-&_{1pQu=C@@Ajg4%++~>YPmP8^+w&N%YQuc z*tS!9hyRfHX$|~T-yd$ZX?1FoOiUE# TESP=s&bY5HPvUL#WZw8c$3_u7 literal 0 HcmV?d00001 diff --git a/secrets/hosts/lavaridge/syncthing/key.age b/secrets/hosts/lavaridge/syncthing/key.age new file mode 100644 index 0000000000000000000000000000000000000000..0165fa66dbf32edd26fd222f01c5d513304de7ed GIT binary patch literal 1490 zcmZY8>#x%U7zS{OmypE^r~y8l;EeDA#`bi=my)&+mIVeO9e~bGk9J1QP8zO(_jKeAwx5=&?D0C*I$t;XS21s0&6ohu&2PV7e-`AW~~m$4W)V>(~1B|=K5IG z$8pd}XAM|sl3Aiq1a(>nmD>eNk`fGwrfsyS8YP~r;Q-IDTv|igeI*jr5(dg>de@t& z8MYCiUYKxn77+@?3eFOoASRtm*KA^uk~C1vB$dJ2sM$zx39DvwLxK=Ts$80f+A&9h zas_HMX!iM5x>R6?G?}S+Jy6R-^=eB*XKHd>t@gFBE%7Mqk%BddCjkH%4Y|IM@z_ED z+9TN#hgASV#Q^J@g;J>CsVTDf$Iez+&_IaKHInVLDEsgW0Ubp{#OKA;U`1;OA*3hqf_DlHj&wTtk* zpsy22q((FeFB!s=Azh|N0?Ku(l-!9|n+~Uz6Kx~c5haLgr(&84(KZIvgqhj^8mO`9 z@79MbtTSG>!umroQWey+m*)FOK{Zp7z^j9rRERL?5zxtmfYQ)v#~})vu8&DF@nX6l z+itbu$0{k9jzT?^Q=22K1O(G}8y^poSgYPhq;jpOt>XyT=>vGa)W{{ZLDZ`z;tmjy zrKHZdWkLvzUA!>i&fRn9Mep?a!=k?Q^Y`9n_dWaZ!8NmvuG*5>4etmo`Df9#S6lKo zd*{#Iwnjbr&X!fsJ+}|@2>>2lSpM0S)fd-dhnJlAXwJk>ymI5*+)tmMb?dwFqkAs@ zH!*wJeUMUx}W&cGWp{-|a)!w2;O@$%MI88FR9O2u<+cDd*NR`*tY)71=4Kd=fzhBz|}8SuRpnA z9{uRiPaYy}&HL(c*4T?Q9@Bn2_90?yes||Y_tO5efUt7iod>Sn!RIj>ZjP;5v#|X4 z?Bi#CckiFvU!OYiGPWIqPfe}u9mX;z4jj7l`mV9b?PEJHN5Gq3etrF~1G{Tu8z*nf ne_`cwXU;EA?Ygz;sXvCx9(?WkF2a0?f3gz!c54{jvv}|SFjx;Y literal 0 HcmV?d00001 diff --git a/secrets/hosts/mauville/syncthing/cert.age b/secrets/hosts/mauville/syncthing/cert.age new file mode 100644 index 0000000000000000000000000000000000000000..38dba1199fa80fd33322b49f263a3cf18723c301 GIT binary patch literal 1996 zcmZY8`Fqob9mnxd9!N3JWk6F>c)$?IHk=^ImMyuQmgPh7DciDSkM5}~J3eAdvV2H3 z=|dh`j&e8SfrYEhwn9^ma&}o6Wx(3ejszZ_P!`&ywD5$hq#MwbmW{4Ihri(UyuZ)q z%f@33F`ko3Vm>MGa|J056d_f^LUk^eXoy9%dOc)RbBG0qlWIKSSCXK>B{<1uFd|`3 zhSi8UfcJwXpAXBRh8UU)nXsHfhg2yorlbS5xSIrHev<(pQ3A}8PO}d~qSgW%af@ZW zV1;x}6E|Fo!jwfK)&2qyz_U7BAK*24j3Iakx0MVf2guTl(Te9K)ad#NE#VNV!dz6u ziltB@#XDh*iE@TGo53D6hc!+<6)xFhf?3lfI+KEq9Iinb28Ly|Htq0-?Pjx)7JX8R zPIxUwLMF{6cizNXk&=!y>Ad-35VwJ_3SyEFEn|MCK3NWfw1P#jJgBwsPEDE?%2YCx z5DG}hCxi%jxW-F-36<5n88A?gyQUx|&2nhuRQAiW2h0_XX05hJbn=a}}MVo4- zGo;D`=#$No%R=#HV*vtFCOH7|p`bTl)igy2+?RIAoJAXAvZW{5Y*LztnAAycGAjtC z5*(CS9fNEMlNVYjrR_?uic&a(28ds~IlH zn%FeYH#^+LMkW}ia~N1kf{kgsj7xAViHoLYOa}P`p=#2>X-En|IU&g4dV^O&k#g3S zV9AI-ixPfPn@pm?a-ocvsNronU5?X|YOzUjr_&k?K?SEflo1PNIT6jpwYZODWXuX> ztsIj#xPgGrrSdeU!FVd$L^~p0goF@|ED%}B3mUR^sVP7!5{TM8VIOSF=Tr?14QlqM zeJem5v!ZaUL@#b@0*=uwnha`<355)L_+j=eM$5 zU7r}@$XWj~ugLPifNPIN{#n%+2tdzNlONeElyTcQ0_1`mb-! zov07|>(3xL_l*wv$oc<9Z^xrweZO>atFV7{&G}kuo8x);mDY6J>OjQpEjImISCz*H zw(h>@on%Aq_C7snXuc?H#XurA$T(o{5eDBkjHs7pc z>-~ks4>x~3bmCiTL>s0%1NX1!`QY>Fe?K)Mu9^AniQ>Y=)9ZVe)wEYtk7$2?-feN? z;J}`iZyx+*+oiq8Iv!S8P}kfwJ+Ajg{^Qffo(n%Zdk*OrpS@FY>2G&9%Oj?bm~&`l zIFx2kpa zAE-US`^>y|*PTr+I<2%i#?I-TU}guW9`p12#m)|R)9Tf2)rCVBj60UTRWbWy<^1pA N9kZA0pr=*r{y(yL|HS|R literal 0 HcmV?d00001 diff --git a/secrets/hosts/mauville/syncthing/key.age b/secrets/hosts/mauville/syncthing/key.age new file mode 100644 index 0000000000000000000000000000000000000000..a6b586fb7fac805a45c8a2cf0ae81c51dcd7ac8d GIT binary patch literal 1490 zcmZY7+pp6E00wYF0Cj4-5g_3tE`l%4*hs|*_wt#!Z# zHe|wie^3ASYf z;mSCuDMOB^L5W5vk)~W!62@)6gvGl-tm6_8)NCaMK(-Oh@s*rBPFFAl*Qwc>KGeq< zFYG805sNkBqgtt$7e_p&vV?+IMX;4sxG|)R4Qx1)G>(aTA);0ye5YOHGj1viTRenm zq{EeaS%gaTyJL`sO$*|X1fub?H8v%-EjgUQ8uCz~9NGsuwi`innjke|feUu6N>A*n zrj%1$EGXtAOI zYDD2_fs1>$hML)i&&mh#(}&~H|CNr1{2P=M_~g*XxB zi&)EcNzV&`)G&#WNVT3GvmAmkRtG1?4PLd{5~6W>MblGEuBT)i?XFMCk+#Xn;d~l! zdt??OiF_p}h+e&b0FijyWVs&5ChDm{-X5T~KN=_CP+ZM=trCYCTod)HZ65KNh>WQz z4TE_F(0MW$^JtPtX9#h2lg5ZZ1260ol+YYjNxM?0HL3|)ZS%>Xz^WCw;Fw7Pbj%n~ z!{J1X6+`7*5oUNDHg#N~RUo2h76RBQzCoxp!9`0+v#x4>9#4{u+1e;M5)(`qP!UB* z>Y#1hG&w8V!RA0+?W~R+b5z%SybIVwe%?_f%Up>Omy|rg0{TDpk7# zhqmr~@!}tm*1_G-Ylmh&-LU4loIAt8|9rW0#ra=P`HOR^1`}W+7oo!9e`}5y9&nzkM2QGk{nWLez zm)0%1vFJ?sE%M<*&p-aly3Z~goPYh^*I)g6{l<-}ZXI#nDW2WGXzJ(Wfn#nGVHe(p z_wPTv=`?k7@8yN^o)gy|+4RuSEsstt3l&mI1z&m&8hFWW&Zp1Jz_H2S2m>)rR} zOx}Ls^nKqSnL2&dx#!At_ak`o?%lgqu2{0=r#r_dt}G{hc%YZsfP>w0f2mIkTk-jN g`Mb|wdhoFY=eLJfY}>o;%DL4DedmkSho5@;KR9?5g8%>k literal 0 HcmV?d00001 diff --git a/secrets/hosts/petalburg/syncthing/cert.age b/secrets/hosts/petalburg/syncthing/cert.age new file mode 100644 index 0000000000000000000000000000000000000000..53079fc60a997a0718d17bd6b8ecdd4b17b3a2aa GIT binary patch literal 1996 zcmZY7d34i;0S0hVX!_Y^9|vkOJi>JqD#50XF^)e}8}c-uJyP zB=8Nq#AVBwTs$pJO=ktL0I3=p0Y!;5@DVKxLq>o@2~eN`qAccRx5JoVO))oamtj*# zn`w53Br>EHL#Pe0WQ}28%AGWEs+?GH<9Uylh(vAbOp*?I?CG$EWGb-JqR&%drwvOd zoN+&dQvJ1v-cMv{fO7|UiqG2eBBXD$fg~gNfnJq8cLn z+O)3(@rk&hzb0j+vY`k>Oc}f!3)d~g` zZV5LFBIUqrc_od}f`MQpk3q*)@@yh%^qQ=s)x@N<3{+J5YYfbVWC5T}F$_tRyvdA~ zaDbA5D3%IQyDRPs1_f(6X>!9L%4WebgBet68z~UBl8iaICWqT-E$Njo&gd1MO><^g zaa&1;M0f&1STFY1N+ch2(LfPF*oZHfva4-*3m6h%#^lQAl0~WFPUw>!$ZBFmiuHMl zevL{*^)cKM7wo>~7=xlsW+&xm^K?qW0%}tnvPO}7(J3~WT=Zj0TC+(qYyzaBts;s- zMB-Qx!p)Yb2xoCcOJlsKm9r+Lb-faKewUb`WG?UhkER2*kRL zlx(3@P9-K=9BF$BE+P4tqZkkbC&F25M3S%~UNY?9bv&&pSkSz`|B`9NhF6LJoI@bN z%rwJ>vh2yxC~uJSaUJS-R0GFI3sf%obDA^*x+Otn_DflF3KQ{?TV!L_WYMmnO-^+| zCsI6{Ks^eL7BsFnZ*P9=C5lerv^2oyB`1dFymZ3sHR@5yZ->o#2N$zfNCHChuBbbQ zdf;$X`;s^r1=!A>oo@5))`KUAAZxPn2qoY2~6pwV}4Br~KyKb1A8kK*z&(!*Z=ciQ0vl# zU0XYvYgetkzjnvbCm(KUzf0Dzy()dK)%^FK!E)D;;)rv9YW$;kkDmF#?BT#n+i!%@ z?1qkgfooUjub!*iyU}uE2Q`1?0fvbD<KDg^s;~N1|GX=*;LvN*!@jk<>))-OLNp1rKWtvH?kqKJ${|w={+#a5bT279%{OXB zzc{4p2ste}fBcCt47TZPvVP-|TRY2rSAOpE%-rk?3?VNzEjv|%?3y(N7u~wva3B}Ycs6qS=n9n(bhX3 zKGiyw^9}_Ih1l6)1N`fvSF85BHys~zaQSEE$*OVGwA{Q2zaCaQ<-e9I=IQ%8XKkzb z=Eqk~?Q{nh9jt7iC;k|c!eeYa7q8W)Ss~bFE%-e0t+HQ_&zAJCr4elYw zZRB%3$Lg+M+ycxXxXw+~s_}T;@4kb6sy?@V6;X0Lv9C_9+WCcR996UQa`olK;8vh* z&6$ti-nK10f6S3jGrzy^pzHHn=O=x8ZBY63ljkk92PR_5r2W^ItosJqndv?`9e8!= RoP*PQw ssh-ed25519 c7E/gQ +Pq8MtD8bJgttPmcembKUZnjgiB7I7V73ZBlXoO2klw +uiEu12D+oEgij+PJKBylAeQofWNIPW2EvQ8FsNZKdj8 +-> ssh-ed25519 d4UErQ Ks0YlzBYirRp9Cmr8GfKY5RIjSQ379Yxst4ft7AgUT4 +WXqiZ+Ltz8oTayOwL1BD6Y4p4XFz+ohK0OSe6TDEWbk +-> ssh-ed25519 1mX44w KapaksEmtLRCRoR9Bppx5+HChhpkIIpAvqvlldP85FQ +P3weMwfL+vA0Zd1G5f1WvCNzj47AgAKcEQqQCVBpG1Y +-> ssh-ed25519 nrny8w gjIoqILh5HZ+/teBexkNnNmWBrevf+7nZxZGw++rASc +0CBotGme8t0aYIob7p2hQFLLTZ+kGZDNg/yfsYBnR9w +-> ssh-ed25519 W5caqg gakyqUNzrvEXup0oKbk0s8Ys3Y57PKtc7cc+pPgDClU +tA3T1VNY5t1i2nHAcf3LR6ssu23IEhOD2ihBPtO85B8 +-> ssh-ed25519 xIeYNQ 2Gr3vqkkgX/sFjyFIvEB2mnZeVGia1gPVWcZJcWucHc +o/Zfz4FZxJfUdkKyJwur9dM2DvhIxO/rpB7J0H7PZyQ +-> ssh-ed25519 GrlIbA 4mj/zNhSi3qzIOuNt+rH599f5Vn7Wq3yCTI0wKSyYVQ +RZRwxzgBKuEORn7qNx/qKiYOpRDAPIGy7wJllHeOYIc +-> ssh-ed25519 g+apXg rCw5RCFEwxvYeTEF4iZw2fIN2F18ROOnBtUQvM3XfgA +r1hv8/E4aR5uTFWMA0iw1aZH84lSF8y0VJJmFdWOT+s +-> ssh-ed25519 osHDzw Hvktgyla+u32Lm40ebpFovckTq2wDMVUZIfOkYg8L34 +9r0n0hEMd6jpyfgI1+Q786PB/pB0QiGKyBp+IQlTzrQ +-> ssh-ed25519 s3sc2Q rgoXVTJDcRxekB+jfOhL4Qn64g55rgPpMwWhGlFb0AA +5U+Jf3DAWCPaVwxuXIufAzNMSvqfgdauwQseMqdghTY +--- B5WpheUYBu1Y9WcucM7b8Sx52o+jE7qFIqHChSa/3DY +yg:or(;`$z5溸^ArTz~6A 5.h*qrB|ޫd6ʦ Tu +7b>hY + +^Tf*]bZ Ј <6-a;*Oɚ*xGcAm, _X^˺(V'i`HGRZY: pjd|+ec4@IaHsqP ވˬ$Ou^&"yk lP*ABh+.'i,~sc|LQ!)iX5+_SJPFn(0_0!e)JYUZ;dJqK6>NxDsa)g>syZkJi&Ol%c%s8B>VucAs zU2v#@FYC-Y%nAe~+3pZ6nlPbCi9xKyIL!#vSaK+_EQiv;A}R?{O*|U%k$5%)B@2<1 zVCFr&HO3fnX)dbjJol=RFRICK^H&FQ`dm0V?2R3^tbr!f>n8%u7~1r%IEo zJ!8%xjR6JXSO}*WD4Jwk?kMC-qB)C6qp;z4z-6KB$=(_T#-mwIT`nQ8%?!tElr^Xz zjzCdsjYTk<$g_wi6%o*|iRFrgLZVTZSK-AFop$?@reChmnn2kEoBa||@f(vqug{sF zq=J|sC0_EyLcO&z#?m;Uwon9PNEuPUlp%1f-s%TU8u6Ftff%ZFmdjowg6p9ms85tF zDnR1xHV18rz;0)}Y;N@EWG0OX6l%t4Xu)#-QDt)$8j7BV+0rC<;gMhjvQ!Z_aHOPoR z$dXprMR+1?g3Kze=X&Eb(M*_ACjt=Ubon(P$*?{s6yP$H8!P9OsF0^vhR+rRW0{n+ z(NNi=(qMGf&y!?W#`u5$&(fnaCR7Qq-MEvpI{qrc*2xki*R6UJCE8`jv2&QJ=c z*oTVZa^ zun8|-r5H_L!=^{q4sW?r`&f@`~G8r!Kar(%XV95E&lvl+Iy~Vb?eQyHcuJ;ZZ#VGZy)lL{WnWZ6BhJY zuu^NiKwzjFnL4ShI8d*g(v?dacx=(IiyTi_{uRXwY}1U);O&rg51^Wf0w{Qldc z^MBg8dp<%gj#Ynl>4$uy(!4M8M%zo<54ET-o*O3}iPVi7>|7uYySMx2(OtDKE!NOq z)i%}Sk6e2^W7(j#&pxW!RJ&|GnS8zfwZ~`W)A9D}YfnY*zp{4jp;MA>{f0RU`+U*$ z)u2HG*Ey=1w~yWNhs^S-?m10XZT9?`5mc4=Kid~AaILU=Czi&lx*{`I+HW_1$S2`N zoqWVIa^}3qVao^8GVh$|uAG`%3-25~rkmtDf7)<*z?=Jn$EJ4NB`!^P&oCZY^TAwi z*OMh*pQ$)!-Ofy~zdZW--UHJRd1>80+8&==)@rQVQU%=aOkdPa)xB}$&c4}aZC~`Q zo4lhk{}V$Ux~)9Kb?bZ^JW)ce`1zmzjU#EI_1^F&iRvSrVdZH51F!8}-!n75Xsl|} zo~N&3kB;t)=5KVC@3nKp>>=g{HBCbvd<*Kh74DYlJp)}E>2V0!UwRvPPe_7YOd|yqzbKcm!#H5~ct;>Tgn{D0xn=5~V-yL;w+^WRp z3rn`0VY>XgHZHB%&~Nbf)!C2J^dJ9zXZ-O;&#G!K5ANan9qz8Xa%ksfT}5h36RzJq zd}|##%5`PTcRt&|Z-#~+Tt4XDc&ujL)%V*oTV~H~84)|zB8>ap0|26swOaK4? literal 0 HcmV?d00001 diff --git a/secrets/hosts/rustboro/syncthing/key.age b/secrets/hosts/rustboro/syncthing/key.age new file mode 100644 index 0000000000000000000000000000000000000000..be9089b5a259a2adb2a63221aececab1d20b9064 GIT binary patch literal 1490 zcmZY8TddOr00v-_6EtZ!isywO7^XmCSPs2!oe)gV)^%OmZQa(bo42%G*LGdkwO!kF zkQf346dwdk@W~(;PdI=eCov&J2=PHgJ%-DJ3SJ+S_$2X?5JJ@F!~36n`Sa(Ob!}D~ zs9roAna*H~cpM7a2-1U^7{Nk`Y`JyLO$)NKTwjuj@GvF)hk_6xREF!fX`TMBEQZd*N@B}Kqfe3lzw$qZ5NwHaG1)|4!p zb-HTWR{|&#HYg*@H`2*e!C$U5aaDHpgiM8I`~QT=&e6Ip)1Xi*>ohuPlw8}&&1q1M zj*XPt;ZO>&{3K(l5UT`}mKX3H8?*~iL^_V&%9vs;l1wOLG<0d;KGbc@Xswcv0Cglz zg}4tFvlSgdVh$n)*u<3;78`Rz&cyPy5>mCtQtSX7m&LJag)xHmL=OzsuV&4xs(Cck za?;}nww#KdO&N5xt1j66aAX z6{cVefVyoB%NBEdX&f?<(9nbkk~8_BiU(vvg{mZKbSB!cfcV04O;5^0Nl#RgNH&@b zxsVrPRue@nlXlgjkhGwR#$t9Evr>M#F4J7y2T&|baU^0{h*WCVJH{|KQpBiJ9yIc4 z!XDf8N(Iefq$DU0?dJG}+$2iS#g4-90wr`AT`93Rj_6L6cZ|L!=6n6QL6Ho!GLy`s zun3e3sdlSd!r*R-GT1gkD;>}9jf^dn3)vB#iQ~DvP-6IY_Mr#(sIMYIg3W>%r6OWN z$H!(U#6O359ws47*Waan@kCPp>1f>~@N38p(z zlPXuTz$O<>N<$u)ot;gzTo3eGWQ?ZMG8m2<143z#LY*B|u~bVdR=b{G)I?mA1Ps{z z?y1-J66M9S@BDmYH2dsZ*LEV;;d5|uDg_lE1HW0Io=-j+cP{MPed*}G2avD6T=i=8 zPU6HDlj$@0`~z*hefRip$7Ze_Sd{&_^JlKzy0BMy|Ip^mAFbaU04pEde0+Fv<9Aax zZ@kdH^xn+$!5?B`{?qxtPAwKL9^Ga%a?@1r@}3jt->h%iviA0o&u=6KSFVyj?)k&p zG4kih&QH$5Wq#egElaD*m+V_p!00gc_Vpth4$Xf{jqZCpy<1E4$7>HeOUFmsuuqt~ zZ`4oT^-c%-HyIn&;dJXXH1)*N3HcZ6`fYkK=5~MmVJ?=gUKzg}ojiE<0Y80b!J+Bii6u`u3s1l_f5{^oxM@D5P` literal 0 HcmV?d00001 diff --git a/secrets/secrets.nix b/secrets/secrets.nix index 63520b98..231c18cc 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -15,6 +15,16 @@ let "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMs1oChR4z/gzFkuKddB+1XrwfG2znlWbdnP+hNAdNdN root@rustboro" ]; in { + "hosts/fallarbor/syncthing/cert.age".publicKeys = users ++ systems; + "hosts/fallarbor/syncthing/key.age".publicKeys = users ++ systems; + "hosts/lavaridge/syncthing/cert.age".publicKeys = users ++ systems; + "hosts/lavaridge/syncthing/key.age".publicKeys = users ++ systems; + "hosts/mauville/syncthing/cert.age".publicKeys = users ++ systems; + "hosts/mauville/syncthing/key.age".publicKeys = users ++ systems; + "hosts/petalburg/syncthing/cert.age".publicKeys = users ++ systems; + "hosts/petalburg/syncthing/key.age".publicKeys = users ++ systems; + "hosts/rustboro/syncthing/cert.age".publicKeys = users ++ systems; + "hosts/rustboro/syncthing/key.age".publicKeys = users ++ systems; "spotify/clientId.age".publicKeys = users ++ systems; "spotify/clientSecret.age".publicKeys = users ++ systems; "tailscale/authKeyFile.age".publicKeys = users ++ systems;