From 2483443d5738320f14c600fd4e5d3f0e0be01206 Mon Sep 17 00:00:00 2001 From: Markus Heurung Date: Thu, 11 Apr 2024 17:23:47 +0200 Subject: [PATCH] give muhh@cube access to sops secrets --- .sops.yaml | 4 ++-- secrets/secrets.yaml | 27 ++++++++++++++++++++------- 2 files changed, 22 insertions(+), 9 deletions(-) diff --git a/.sops.yaml b/.sops.yaml index 502b814..ba9723f 100644 --- a/.sops.yaml +++ b/.sops.yaml @@ -1,9 +1,9 @@ keys: - &primary age1awjelu4fqh5jyc49p3sujn0wc7zdz9xmj2aajaz7mp5fkwwtj4uqyp8fl8 - - &muhh@cube age12ex4qs4090ea5nzus6uf07z63pqh8yqae6gytdx93vuedlr6cqdq4nk46q + - &muhhcube age12ex4qs4090ea5nzus6uf07z63pqh8yqae6gytdx93vuedlr6cqdq4nk46q creation_rules: - path_regex: secrets/secrets.yaml$ key_groups: - age: - *primary - - *muhh@cube + - *muhhcube diff --git a/secrets/secrets.yaml b/secrets/secrets.yaml index a7fb273..5d3e946 100644 --- a/secrets/secrets.yaml +++ b/secrets/secrets.yaml @@ -4,6 +4,10 @@ mail: address: ENC[AES256_GCM,data:MdODBjT/vGmoZidXYppWX0EN,iv:Ai2YVodb/vOEyCK2spnH1vwPJrdvqIHM40ZGhALHq8A=,tag:ge1dIDEgiSYVJGNwuq+qKw==,type:str] username: ENC[AES256_GCM,data:492WNo3Dw9hFMUnVEGW/Cd6L,iv:WWbO8gX9kqiFsNGYPnp44m52fMkeHojiSXGhcl2a3wM=,tag:fILTYxn3QY1xvwLuU8EdSQ==,type:str] password: ENC[AES256_GCM,data:Oa3tYztCeY0Nvun+34bAji+9b/g=,iv:Sbx/d2H35wlPvsfomwAF+aT3kBCV70+GDi0Lj5lqTII=,tag:xHC6yGlsTroja8CMOTx/rQ==,type:str] + icloud: + address: ENC[AES256_GCM,data:7/4rd1ZneKI02kw=,iv:bBUrG3j+S3FGFGHPfbaSi7WnuVS9hliZU4Bxw1MrWDU=,tag:7C8T3artkNO68EctuBhb2A==,type:str] + username: ENC[AES256_GCM,data:dP/Ft1dlbqxHJC0=,iv:it+Z+ALPGOc7ZyYqrtgiZxuL+pPptmDaT4Obh2XArPA=,tag:0Z7Ll/4iBHN51KKSyN8kpw==,type:str] + password: ENC[AES256_GCM,data:KL+QQemQ9z2Le2o=,iv:3J+Qx4uknKVlNrB4EqP8orxa8IrLEgT8MDa68JrPUeI=,tag:gNVr9ohICAgOHSMwIlcsmA==,type:str] sops: kms: [] gcp_kms: [] @@ -13,14 +17,23 @@ sops: - recipient: age1awjelu4fqh5jyc49p3sujn0wc7zdz9xmj2aajaz7mp5fkwwtj4uqyp8fl8 enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBrVG1iNURjT0IzcEJzZllI - dk5XZWpvN2kzRnJFYVFXbW0wZXJwU0YyV0VzCkxEbVcyOHUzREFyTlh5emZNN0lE - bHp1T1JXUCtIZ1pUa3d5ZHNUanBTM1UKLS0tIEF2Q2hTcWZmdU1DNFl4SGVzUXJR - aHFLbEp5TjRlSzdvVkpEdU5RZ2RKUlUK1/GYeQir6dDprPMJrKI+4tBJokKc8Azz - +pnBPXwXhAHIHXjKv88trcRkmFraOYkAu4lVpdyt/4FtbtvFvouBgw== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBxZUtJWkJJcHFVbkVSTkIy + MlBNOTE3YlN3NEFDb2c1Z2phaWlZVzdJL0c4Cm4vRjdPTkdrci9HOG9BcEp6clVw + UkhONmtUYjNNaDNmbEZwNDFMNTFlcjQKLS0tIDhWU3VKdDZjZ2MrRWZXRngrQTRs + eXdUT0M3Uy9TTkliVU5sRkJwbjZpTUkK+Qq2+h1TSGGy0IOc8w/ECh1AoaofS64H + pVsWEJE1rgOQoD2iD15mG3zw215F5eQxoV/K10w/h59rxY31iVy1YA== -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-03-29T16:25:56Z" - mac: ENC[AES256_GCM,data:C1M3zxOYKLA8acsZVubXBure9zda2SyPWRqv2howmHgrBujkrZaqSL47kt9a1E5simqYdCmzqlLIhjW5wRq/kcunFFTewgZ6QFqVUphLHk1WHxm3MHF7oYDUr9E7Z0BH/SYHim7Ruc2Cc0Hy0YdH/hjgcf2vdqjWFWMTX3aeo0w=,iv:mhEgskDzDz5sNSaBIfEmI1tbXkkRnG5ruzK3TL0lXys=,tag:y+IPy1uYzbCAALEZCjYz8w==,type:str] + - recipient: age12ex4qs4090ea5nzus6uf07z63pqh8yqae6gytdx93vuedlr6cqdq4nk46q + enc: | + -----BEGIN AGE ENCRYPTED FILE----- + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB4dWpuVjdiMWg3K2hKbFRJ + QURTV3oyNU43NmZ6RUZhenEybElldlhSSGcwCmkzNnNWc2M0c3FiQWk4Sk9aaFhT + VDgwdFNwV0FRa3E2UEdiV2E0VHVld00KLS0tIGkxa05MdnIzaVE1dFZ6NXBtblRY + SEFxb2UwbDFiSG5QdzVWRk02b3lIZDQKYF4Vv3FwvKv3uwACRXb/jwD6Q5rh39Yu + w7J86gsX7Yh9Wm65y+CW1JE8EN72mhBbYwve3lK8twDjxmLhYOMjIg== + -----END AGE ENCRYPTED FILE----- + lastmodified: "2024-04-11T15:20:09Z" + mac: ENC[AES256_GCM,data:k6sIben6qmbR4vdHKjbPXfbycAoJC4nDwkb5c8EF1tBCyPM294XUK9DJ8MrEtijB7snp6q5hbFOxeYm4saTdUCmIA0OJi09Gto+mKbPn4oUWu1IGOqphe+71JBsdC5VK0X7C/6AskMpGHTjVFzEMSCNG1QlWwqjbj+nooMxT5X4=,iv:Mw3mrFx/CAmuCplqVcXiUDBEeb0bqK0Y4kTCZxMise8=,tag:seTx8hAi/8oGRCwpv9Qdug==,type:str] pgp: [] unencrypted_suffix: _unencrypted version: 3.8.1