remove ansible

deploy ssh host and user keys using agenix deploy ssh certificates using ssh
2023-11-14 23:53:04 +01:00 · 2023-11-14 23:53:04 +01:00 · 022a6aabb4
commit 022a6aabb4
parent dd8b23f5a9
20 changed files with 159 additions and 160 deletions
--- a/secrets/jefke_host_ed25519.age
+++ b/secrets/jefke_host_ed25519.age
--- a/secrets/jefke_user_ed25519.age
+++ b/secrets/jefke_user_ed25519.age
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@ -0,0 +1,16 @@
+let
+  pkgs = import <nixpkgs> { };
+  lib = pkgs.lib;
+  secrets = {
+    jefke = {
+      publicKeys = [
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIJUSH2IQg8Y/CCcej7J6oe4co++6HlDo1MYDCR3gV3a pim@x260"
+      ];
+      encryptedFiles = [ "jefke_host_ed25519.age" "jefke_user_ed25519.age" ];
+    };
+  };
+in lib.attrsets.mergeAttrsList (builtins.map ({ publicKeys, encryptedFiles }:
+  lib.attrsets.mergeAttrsList (builtins.map
+    (encryptedFile: { "${encryptedFile}" = { inherit publicKeys; }; })
+    encryptedFiles)) (lib.attrsets.attrValues secrets))
+