-
Notifications
You must be signed in to change notification settings - Fork 0
/
.sops.yaml
183 lines (180 loc) · 4.43 KB
/
.sops.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
keys:
- &leona EB5CEED62922C6050F9FC85BD5B08ADFC75E3605
- &bij age14s6jax4hc2uz6rusud4lna0uc9m28u9yurv2ewwjchnr2cjqa43qqw2xqp
- &dwd age1xph9c9rtyjrz3cnd6t940dnzuruqw27l7yp98ac33rdz53q429gsu702k4
- &enari age108r86j5zcd9uz22k9f73dh5pfgst8xqv7ffj7xwgspad6zk4xu0qtcngte
- &freyda age1extnp5hlhrzraj96n3ntqhlr7p6jxcypwxf4a20vtjf6gc0ch4tq5qdljp
- &gaika age19yum7ka8gn7pm5qgrjhcx4ac2sclk3d7wl2088750v508ghzrpnsjwvynj
- &kupe age1udlqpz3mcwnnrng4wg7w79674e4plrydmeqna3axy8sczq5gushqdhac3p
- &laurel age1p2f0el5z3jn2gt70w249fvkzewcqytwx9vez4skd598v7d7dtpxq86enup
- &naya age1x7425df963ql0a5d5lpv242e3cm9cna5zxp0vs4gwugdmmsmm57sawvnr6
- &rutile age1tfsxwt56ww42tzuxv65fmpx0eefa8qrek2wrn2wtxdaqpddugsnqg06p8m
- &thia age1st8tawt7qsf7q24nknscrwzw6d6fcveylggtf2az36j0nke7jv7sx7ce4q
- &turingmachine age1rcxgtdwh3u7u6lzh9558sqfrs9ndwnzhsjqj57hvdtapcjynvs8szhdw4t
- &sphere age17ldwzf52ked9wpqhrw55mhc6ax5r6eh0jpefx6lqql8w5zhlsp4q4g64zr
creation_rules:
- path_regex: secrets/all/[^/]+\.yaml$
key_groups:
- pgp:
- *leona
age:
- *bij
- *dwd
- *enari
- *freyda
- *gaika
- *kupe
- *laurel
- *naya
- *rutile
- *thia
- *turingmachine
- *sphere
# hosts
- path_regex: secrets/hosts/bij.yaml
key_groups:
- pgp:
- *leona
age:
- *bij
- path_regex: secrets/hosts/dwd.yaml
key_groups:
- pgp:
- *leona
age:
- *dwd
- path_regex: secrets/hosts/enari.yaml
key_groups:
- pgp:
- *leona
age:
- *enari
- path_regex: secrets/hosts/freyda.yaml
key_groups:
- pgp:
- *leona
age:
- *freyda
- path_regex: secrets/hosts/gaika.yaml
key_groups:
- pgp:
- *leona
age:
- *gaika
- path_regex: secrets/hosts/kupe.yaml
key_groups:
- pgp:
- *leona
age:
- *kupe
- path_regex: secrets/hosts/laurel.yaml
key_groups:
- pgp:
- *leona
age:
- *laurel
- path_regex: secrets/hosts/naya.yaml
key_groups:
- pgp:
- *leona
age:
- *naya
- path_regex: secrets/hosts/rutile.yaml
key_groups:
- pgp:
- *leona
age:
- *rutile
- path_regex: secrets/hosts/thia.yaml
key_groups:
- pgp:
- *leona
age:
- *thia
- path_regex: secrets/hosts/turingmachine.yaml
key_groups:
- pgp:
- *leona
age:
- *turingmachine
- path_regex: secrets/hosts/sphere.yaml
key_groups:
- pgp:
- *leona
age:
- *sphere
# profiles
- path_regex: secrets/profiles/desktop.yaml
key_groups:
- pgp:
- *leona
age:
- *freyda
- *thia
- *turingmachine
# services
- path_regex: secrets/services/(gitea|matrix-old).yaml
key_groups:
- pgp:
- *leona
- path_regex: secrets/services/(hedgedoc|matrix|netbox|outline|pleroma|vikunja|vaultwarden).yaml
key_groups:
- pgp:
- *leona
age:
- *laurel
- path_regex: secrets/services/(firefly-iii|grocy|ical-merger|snipe-it).yaml
key_groups:
- pgp:
- *leona
age:
- *bij
- path_regex: secrets/services/mail.yaml
key_groups:
- pgp:
- *leona
age:
- *kupe
- path_regex: secrets/services/(gitlab|gitlab-runner).yaml
key_groups:
- pgp:
- *leona
age:
- *enari
- path_regex: secrets/services/(monitoring|plausible).yaml
key_groups:
- pgp:
- *leona
age:
- *rutile
- path_regex: secrets/services/dns-knot-primary.yaml
key_groups:
- pgp:
- *leona
age:
- *kupe
- path_regex: secrets/services/dns-knot-secondary.yaml
key_groups:
- pgp:
- *leona
age:
- *enari
- *bij
- path_regex: secrets/services/(keycloak|ldap).yaml
key_groups:
- pgp:
- *leona
age:
- *sphere
- path_regex: secrets/services/(int-acme-ca|nextcloud|paperless|bn-smarthome).yaml
key_groups:
- pgp:
- *leona
age:
- *thia
- path_regex: secrets/services/stag-keycloak.yaml
key_groups:
- pgp:
- *leona
age:
- *naya