Split sops keys into root and normal user
Deploy sops keys using Colmena
This commit is contained in:
parent
85b41d6722
commit
46a99bf13d
6 changed files with 56 additions and 21 deletions
13
.sops.yaml
13
.sops.yaml
|
|
@ -1,8 +1,15 @@
|
|||
# Public keys are combination of host + user
|
||||
keys:
|
||||
- &admin_pim age189laethzry4ylnd790dmpuc4xjjuwqxruc76caj3ceqhqug4g9qs0upuvw
|
||||
- &sue_pim age189laethzry4ylnd790dmpuc4xjjuwqxruc76caj3ceqhqug4g9qs0upuvw
|
||||
- &sue_root age1nhh8v0z758te7ggg4p73mz5p00kum03zwnjr6czeh367xjzvm9dst3ufle
|
||||
|
||||
creation_rules:
|
||||
- path_regex: machines/sue/.*\.sops\.yaml
|
||||
- path_regex: machines/sue/nixos.sops.yaml
|
||||
key_groups:
|
||||
- age:
|
||||
- *admin_pim
|
||||
- *sue_root
|
||||
- path_regex: machines/sue/home.sops.yaml
|
||||
key_groups:
|
||||
- age:
|
||||
- *sue_pim
|
||||
- *sue_root
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue