forked from Gerschtli/nix-config
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.sops.yaml
More file actions
22 lines (22 loc) · 1.1 KB
/
Copy path.sops.yaml
File metadata and controls
22 lines (22 loc) · 1.1 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
# see https://github.com/Mic92/sops-nix/blob/f77d4cfa075c3de66fc9976b80e0c4fc69e2c139/README.md?plain=1#L216
# the keys in keys: are the age public keys in my case
# see also https://github.com/Mic92/sops-nix/blob/f77d4cfa075c3de66fc9976b80e0c4fc69e2c139/README.md?plain=1#L183
# age-keygen -y $PATH_TO_PUBAGEKAY
keys:
- &dani_maizie age1tk6x53caq7yzkycjz8hw0lth2shdn500a6h8fcf7nk8gcpt02usqnhk0cy
- &nixos_wsl age1ahyd2sndref6n3eft6afhz0z8aqsqtp8qd6zt28lg7p0d06mk36ssrwj6v
- &dani_guitar age1mkz55q97tecvn0m9ww7ytskhtk77uqcpz659aztt603ts43t4qys6x0wyz
# getting this error when sops anyfile.yaml ?:
# error loading config: no matching creation rules found
# answer: change path_regex below accordingly
creation_rules:
# given keys.txt is written and the according folders each exist
# i.e., sops /home/nixos/.sops/secrets/secrets.yaml should now just work
# meaning as long as secrets/ as in the path_regex occurs to be in the
# yaml files basepath
- path_regex: secrets/[^/]+\.(yaml|json|env|ini)$
key_groups:
- age:
- *dani_maizie
- *nixos_wsl
- *dani_guitar