From 526bf6e2a9d6dec9fee82e23e7dc9446a0d11c3c Mon Sep 17 00:00:00 2001 From: Your Name Date: Thu, 3 Oct 2024 01:13:22 -0600 Subject: [PATCH] [NixOS] New gitea-runner secret --- nixos/gitea-runner.nix | 2 +- nixos/secrets/gitea-runner-token.age | 50 ++++++++++++++++++++++++++++ nixos/secrets/secrets.nix | 1 + 3 files changed, 52 insertions(+), 1 deletion(-) create mode 100644 nixos/secrets/gitea-runner-token.age diff --git a/nixos/gitea-runner.nix b/nixos/gitea-runner.nix index 5f54e076..3d577952 100644 --- a/nixos/gitea-runner.nix +++ b/nixos/gitea-runner.nix @@ -1,7 +1,7 @@ { pkgs, config, makeEnable, ... }: makeEnable config "myModules.gitea-runner" false { age.secrets.gitea-runner-token = { - file = ./secrets/gitea-runner-token.${config.networking.hostName}.age; + file = ./secrets/gitea-runner-token.age; group = "docker"; }; diff --git a/nixos/secrets/gitea-runner-token.age b/nixos/secrets/gitea-runner-token.age new file mode 100644 index 00000000..2b84d1d2 --- /dev/null +++ b/nixos/secrets/gitea-runner-token.age @@ -0,0 +1,50 @@ +age-encryption.org/v1 +-> ssh-ed25519 ZgrTqA dJhYK28Uh2pU0+Wjy1GjNKc/pZsi8vfArDw6a6CU6Qs +6j8GI2QMZmtU/YguPxUaa+vrnawYOxzbksGcXg3NRKc +-> ssh-ed25519 ZaBdSg XmKppDxFPhFNgtW1YwRiHkgKbzQUBDCzIicm8abd/1g +JL7RwJfzdRlOrg2JLSPqsK21iUfY7YASUEta8qw0qsM +-> ssh-ed25519 MHZylw UinpT278YtF1Nf3Wj0TZJVEnKvDo8aFYAxHtAdN5rWw +bv9U1+AzhScfyGG1D5WbksKuIXid34bthg+dYzpeGQk +-> ssh-ed25519 sIUg6g PZFQTEDNT27lmNtINpvyh1gqVPkbbu5VKyPB3oYSl0g +uY7AWKLUZfCeVnhhY4eZW0IF5L7Shzb2eaF8tf2w3wE +-> ssh-ed25519 TnanwQ 9a7oKU9MiKxKToCzK1N+Hs+oWSGB8WW82QB5uJuC1Hs +F9fkAYu1AhxjPB6C+oC+ChKiWK9eBz/OuUQgONn0Wg0 +-> ssh-rsa gwJx0Q +DUz+xLzokD/6R5Dj17huea8R7atgNQFiednHBCvDfhYfYsHanuY/MZwB33KTy4La +6sNKL7U9HiKslbuQE6zSV44gvbDADhKtVVaOrW/shOsZVYoA0g17S7P17gl3SOFX +7uz3TXX19gIh9W9JOcO4dFaw1aC0/92nrCh3TXVewdMmqnzUGLNLLk5WojGSYAaR +FcEmlzOFArDXHYwfoZQwZpVVduvDevQV/h4WSd13nrWidE7q8rSFevazWXyJ++wR +mZ28Syxz0YrohHXLvXp5FR2F2J1a3ClHB1ZFOWKtvULL1ok+Nadnaq7ddLNbrJgX +ObEgZVgaHWXaM8ElE0bkLQ +-> ssh-ed25519 YFIoHA 8l6NnPbL5JOWNWKglyCJ6tWQ3i5Vl39Aiee5F2EORjk +bs5aDA58ReMG5KHXakY20oQjzrGWUTuWXDz4za/T668 +-> ssh-ed25519 KQfiow 354AKabkVmoDAqG/5ypgqQieRKLf0IJcx5PscTB/KBM +R0D7/Oe5ouhNKjYMQFSMHwTcVsqmBX7qMdkCf0mgR9Y +-> ssh-ed25519 kScIxg DhwL0KQvKYTV0V8nzTutBTs2xCiYs6oRzCEUjcpfUgY +c5QPTZpcWYbvFctx3XlQ4F9r7euh1JwY7wA/2CqmTZY +-> ssh-ed25519 HzX1zw bhvx3j2z5LwCrYq78FRVddiHK8YjDAeRpzR/p6XvTB4 +wi0L6lduDvNJzmD+2tHrPW2KlZ4bUQzWVPMHy1Ex7rs +-> ssh-ed25519 KQfiow n4PkT0EFBBip3rvCn24qPRT9wO0XB/c3oxA9EH+Wmik +amS2/JZ5e2cGqF86C+ndnxpKygzwss1/yWweAG8Ziog +-> ssh-ed25519 1o2X0w jEsxbAPYKUMUT6hwQN2T47VM7pk259JYt1neI9/HBB0 +EyeRSDO/D/szXIAJ5qiVt3jDpjDofPx40D54vwMob/o +-> ssh-ed25519 KQ5iUA BEOpHM58iHMl/HezE+6RNA4Msu8a7Cz78oHiL6fCSD8 +pwWeX3qz5i0IwGVMy7Cn2sOKFVTk4CZRpYf7PRPLRcY +-> ssh-ed25519 AKGkDw Cilrq5R+rRGhSW1Kw7+R/TM/+HPjvXvJlQF21cIpqws +yp+C13QFORgn3TX7qNfusDjw6drak5mFbLqarj/yByg +-> ssh-ed25519 0eS5+A zk+j1mEgJcOWkISulRJXOkSNLOcXuKspZjyLqqYnqEw +bA9ucKKzS5XrcemF6vxDKEziS7xn2iCWX36JWzFwSkM +-> ssh-ed25519 9/4Prw 3YigT5q1JNkZx82omN2Bm5irQH7ZM3RRCMR3p7StvVY +xshn7YH6exdm7NX/H8laNUGSiJ27Hz17mk0bNzyzg8w +-> ssh-ed25519 gAk3+Q WRkdQDr3epAG4BE4mHrb96NZSXUDb0xYs9uhLTLLdSo +5cR2VY/o8EhUMXmeXNjFUukXCF2Fb5FmPYUuvS+Ba+0 +-> ssh-ed25519 X6eGtQ KyZLirWsxtBwbAH4/iLfJwz84ls02m7gYtuja1TR930 +omr34mzCgHfmu75yh3tXkPfcer17aLiKI2Al/3VUgag +-> ssh-ed25519 0ma8Cw pM9694EZ3GNlSRr6aD7zqjC0BkFoq8+vVrF/keFX4V8 +kzsti9iSK3nZvY1fi5YSLEAg/fCV2KfAUNe4K0o7vKI +-> ssh-ed25519 Tp0Z1Q Tzv0Fjm8qo02C0F/kZVR6X+5OKtR6W5TmRYeTB7CI2w +uk66UR8xaTITOz1dmBiHII/4KUQdwN2LsoqKvBzOakI +-> ssh-ed25519 qQi7yA SXVemUNVeBorQoDf5Ct5RGdnlaOcfuNQypfYkMM8xHY +3g9tlD2hJXgVq51Eo7/WHQfZWpZAAFVhKPN6KlMpvF8 +--- 4+juXjUzcMXFAD9CX17Z76DgjG13mVtcAODCTWFCYQ0 +z{TSHʶs3۝Tȭ9ن?Ѡz 'U'~%_lٻ \ No newline at end of file diff --git a/nixos/secrets/secrets.nix b/nixos/secrets/secrets.nix index 7c22bbd8..ecf7be5e 100644 --- a/nixos/secrets/secrets.nix +++ b/nixos/secrets/secrets.nix @@ -11,6 +11,7 @@ in "gitea-runner-token.adele.age".publicKeys = keys.agenixKeys; "gitea-runner-token.railbird-sf.age".publicKeys = keys.agenixKeys ++ keys.railbird-sf; "gitea-runner-token.mac-demarco-mini.age".publicKeys = keys.agenixKeys ++ keys.railbird-sf; + "gitea-runner-token.age".publicKeys = keys.agenixKeys ++ keys.railbird-sf; "nextcloud-admin.age".publicKeys = keys.agenixKeys; "ryzen-shine-kubernetes-token.age".publicKeys = keys.agenixKeys; "1896Folsom-k3s-token.age".publicKeys = keys.agenixKeys ++ keys.railbird-sf;