refactor to use common components

2024-05-11 12:07:42 -05:00 · 2024-05-11 12:07:42 -05:00 · c3644453ca
commit c3644453ca
parent 1ec7eadcb8
12 changed files with 62 additions and 222 deletions
--- a/secrets/nix2l001.age
+++ b/secrets/nix2l001.age
@ -0,0 +1,32 @@
+-----BEGIN AGE ENCRYPTED FILE-----
+YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IHNzaC1lZDI1NTE5IDd6MzN5USBZK2x2
+S2tVOWplL3ZnaFI1NjhpTHlDS0lCOXdjVFExd21jSEE5UVNDUGdjClBNNU1ZbWtt
+SWNuSGkyRVo4aTlhbkxWNkN5Wk9MTnFyOTJFOXFucTgyR2cKLT4gc3NoLWVkMjU1
+MTkgSmh2TCtRIDRwcjYyWk5TcVlWWUY2bzBRamhIZXlIcW5DNjczcTdRNWhhZVQ5
+ekIxaU0KbUNFUWdDR1dHRldGZjJvOUVPMlZ0MkZ5L25tRTNTVTJ6MHpsck0xWkVU
+OAotPiBzc2gtZWQyNTUxOSBTcENqQlEgOFVvSzhVdXN6SzZnTjBQREVVS1phWFpQ
+K0NhUGo5ZlhhMVBLRHIzcW1SOAp3OEZDWHFyZFhFZUdVQWRid1RNK0x1QTFJWU5D
+eExaOGRod2M1QmY3TmNRCi0+IHNzaC1lZDI1NTE5IEJZS0crdyB0dUh3dUo5MHNi
+OHNnU3g5K25lV0Z0dW93UFJXR1RWTXdxd0RzRFFOTUFrCk9XTEdHdGpNT1YzVzJI
+YmdoZGJ0Wmpuekd4ZmdENFIwamlkODBGVGszdVUKLT4gc3NoLWVkMjU1MTkgWHpm
+bWFRIEdyVEFDSkNqWWRiSlZpSEhLTnVQQlJqMFlUcTNmanNocjVSdkhQWlVHQncK
+U2VNZENPNGJKR0dsRndMZHliNkltQ3hyekFIb1lodHZaMW1MdFhTemk5YwotPiBz
+c2gtZWQyNTUxOSBSNSt4ZncgbTViN1ZpL1ZlUytaSUVvSUt2cUtWNWp3U08wNW1E
+RnZibWVtSGRYbWdBVQppRzR2dHlTRExaZ0F4UHNMdEJiTGZjcEFQZlNHM3lvZmlK
+MFE0RmNrM0d3Ci0+IHNzaC1lZDI1NTE5IFJvWDVQUSB0Rm5SOERpRlNkanhCdUJF
+dGd5KzUwdnMwcjFhb1lUbXpkbnI1U1BhREI0CmtSSlhJd1JxcFAzUFp4ZHVrZkZD
+V01YVHlDUktWSXlMMVpqY0pSbnRpRjAKLT4gQSVMLjQwSXYtZ3JlYXNlIDwhIlJN
+QSBySiAxMVZ2SEkKSnlyeFlwSm52S3NXOVh6N2JJNWxzMXRDT0Q2M1lYYTZjQU1S
+UWR0akdzVEN1cHJ6Qy92VzRlb1l5OWlmNjhlSwpBbVJnYjVZdWl6a3djS3FuOEIz
+M2JKNVdlUjhnCi0tLSArcitTSG9TRnhKSTZ6VFNJV0NiT3Q0RktCL3ZrZkx1cTU2
+S3E5RUNhRFhJCu3aMrIBDE8WQmTDgNT8qQ6jltLM57LG8WGdPLzyTDqHoIppI6mm
+CcR6gdfmRnVXJESKfQ1KoQF+rPlZBFxGVtDcsC55WpFXjGP2FHKfH9Kv9mtjCenp
+gryfah+7Ghyl7K/0hV1Fp6qAWt7UAIoN0l0Zh4PKCxgG37+82d4YLc6njvfpaICQ
+8Fc77qahYaU74FJjzHKxOuFCpKw9MYA3ZzTvxoKi9lsL+OMFDwIk1yJ4OcRAVIZc
+ZuliMng9pDM8OPZNMqrn/5vGtawN6LQzeVPMeNiRwIcZaFIptdHxUqy98Vc7/rAM
+OrA8dkzPirrkKt7x3BswP3/n0z1TxnZIK+8q5ClQvMnKxGWiUXeNe1r7LKGmWAd1
+YMkgwuYdlI8+oQen0gLxteZoVUAFJvfQ11IJVk3JLfHuCcLpZ6ue8mww/164Zpda
+YwsyjAWNsavvuBz0Kmp/YRIccQ48lMBK93cKIGOwskjRycmDAbAklCB4nvrm9YK0
+F34NM92QHy0zB6h8Gg7s1TzSpdiMzkQPy7KeC6z2T8FafjE8ika6ULiBFsTPzSzL
+rEjAhooKaxFK
+-----END AGE ENCRYPTED FILE-----
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@ -18,19 +18,25 @@ let
  ];
 in
 {
-  ## Too make a new secret: `ragenix --editor=vi -v -e FILE.age` add file below and in the ragenix.nix file
+  ## To make a new secret: `ragenix --editor=vi -v -e FILE.age` add file below and in the ragenix.nix file
  # 
  # TODO come up with a rotate method/encrypt the device keys better. This isn't very secure feeling to me the way I am doing this now. If anyone gains access to any one of my devices, then my secrets are no longer secret. This is not a good model.
+
+  # Git keys
  "nix2github.age" = {
    inherit publicKeys;
  };
  "nix2bitbucket.age" = {
    inherit publicKeys;
  };
+  # Server keys
  "nix2h001.age" = {
    inherit publicKeys;
  };
  "nix2t.age" = {
    inherit publicKeys;
  };
+  "nix2l001.age" = {
+    inherit publicKeys;
+  };
 }