From 37c603c25ca3dd947aaecdf3c7169a7552a45bb8 Mon Sep 17 00:00:00 2001 From: Your Name Date: Fri, 15 Mar 2024 18:03:44 +0300 Subject: [PATCH] move all secrets to sops, remove agenix --- secrets/cloudflared.age | 6 ------ secrets/{example.yaml => generic.yaml} | 7 ++++--- secrets/qqq.age | 5 ----- secrets/secrets.nix | 7 ------- secrets/singbox-aus.age | Bin 2507 -> 0 bytes secrets/singbox-aus.bin | 20 ++++++++++++++++++++ 6 files changed, 24 insertions(+), 21 deletions(-) delete mode 100644 secrets/cloudflared.age rename secrets/{example.yaml => generic.yaml} (64%) delete mode 100644 secrets/qqq.age delete mode 100644 secrets/secrets.nix delete mode 100644 secrets/singbox-aus.age create mode 100644 secrets/singbox-aus.bin diff --git a/secrets/cloudflared.age b/secrets/cloudflared.age deleted file mode 100644 index c0e3177..0000000 --- a/secrets/cloudflared.age +++ /dev/null @@ -1,6 +0,0 @@ -age-encryption.org/v1 --> ssh-ed25519 WaXiIA +dCV1Yq3mner8NUsTn9YyRYwSOAIblY+dwNHPtk0iGA -tA8ksMzPgoGpZdp3ot/Z/gvhTlKlx7GM43vV34jHaXk ---- ZsWAQC91jwDgBtB9a6GUG2BqEDsYkc3ksyWXxwhopFA -+%P7đي= -ExOfhr榈&#z䞌XL dN"1,424F_*',"rW3P8x'dzu|DK>o& u7,fJk+~*@2,dg.sbu)}K[ďɏ?Ps֪ \ No newline at end of file diff --git a/secrets/example.yaml b/secrets/generic.yaml similarity index 64% rename from secrets/example.yaml rename to secrets/generic.yaml index 13ac996..2015bef 100644 --- a/secrets/example.yaml +++ b/secrets/generic.yaml @@ -1,10 +1,11 @@ #ENC[AES256_GCM,data:tsH+OzO1HuSGhW6FpMS4z/B7MGsy53gL8AlR1OtddpQPM/drvvI=,iv:TFXG6UZ+yiIiI7no2I5ZoCBozm/QsckpR08aoVpWmA8=,tag:/L8bfExsQzgUFUyZVjNE6g==,type:comment] -example-key: ENC[AES256_GCM,data:ZkByq0+sxynwntrdFw==,iv:fiVTsUwR0FHM0Fa4iDImEC7WUt8NiFolNylp9cCt2Gw=,tag:+34+uHKX5dr4EEnb7hFZJg==,type:str] +qqq: ENC[AES256_GCM,data:6HrbuPwwDdOfWP/6+lQOIIrg,iv:w6MP9T0uRgew7fVvpYcmdM2OOHvWUmbxw5pEBE2s7m8=,tag:s3gFo1AIyDbuEWcqzR309Q==,type:str] #ENC[AES256_GCM,data:byD/SyOeoUWOfbQgsr4zh3brXkNP0eX46qwJEAecN6KLokr2k9/loKL5n+vUHAs8WJpa1xwVuRw=,iv:nWv3leL6YaTT3IurT6wcvQCbvBoaWPihRk7VaZrptJA=,tag:p1ltRsWOXWvWy6DJlQdyVw==,type:comment] #ENC[AES256_GCM,data:h2Y/qaN1lKO20UZJ+LbDofboZmIoX5qP90bkb1u+OlIlDtZwhB+hnB+RQ6CgQdH6rU7X3lyd6SDSYNa+GKILH3c7vDLa1Tfb,iv:x6/4DUzV0lHuCy4IjRqutyyMx4pQq4unF52yITEfmQ4=,tag:9WfRbeAKTsiwmSMb3K7wwg==,type:comment] myservice: my_subdir: my_secret: ENC[AES256_GCM,data:j1ZmV39+ZEnO,iv:sNtUdka8nja0NL9MUC2zGIYzdTmMq17PyRnvtrqd1uc=,tag:/hmbVziFWQR0Ns2H8QTcuA==,type:str] +cloudflared: ENC[AES256_GCM,data:DvwBVa52sj/CCRdjcISmMGMCTSt4EGab7ak4KM07MJ//bZCQFzGEJ12BdSk/Xq2z6MAW4XJOs6zmHGmHFKThG2eUT1dlkl5lm28AWpndi+8X5Zv6vPKbjPKUn7lwoyr+ho12SU2XzzUqDNmObR1LyI31dyFmMfh1BcBO2tFJ0D64R7ddxNATlu4oa81wjTHcC5Dv5REntdqZ5YO5+6/xIAMkQpjH,iv:4kr/ANvVSy/o/V1jQ6c8uEX3uZ9yi0cwOytn1cR5OoU=,tag:4mhDWrELwk02N0z5QuRfoQ==,type:str] sops: kms: [] gcp_kms: [] @@ -20,8 +21,8 @@ sops: ZUMveWUySng1eFNCNEc4aThLbHQ4MXcKP5sQvjLknHpO3Tf1rlg4+5LNqPWzBL4p w+E3S1SsdzF5niYafdFj/5yc4PLdYR3JM9jxcuc2KzRWTM3oQNZH7Q== -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-03-15T12:01:43Z" - mac: ENC[AES256_GCM,data:fa1qbbHK87xGuwgfNI6/UlcSGJxA17ccp5s0qfxEiJRvAf0VZ56MNcKIbygIEwFG4D4YIzUh70e4T37iEmbJLTBURjMpoSjDA1AkeSEqBOASeTvqXiAXb8gc2YBA3R+JE/VFwSdi94oNaZXu11QH/XbwackRXOFTMjY2fJq3LFU=,iv:GMQwCR+BA6yCdxh++pRFO08tDybJNV/mu5ifi4zk6f4=,tag:leP7pSqyK491xgOAebPJDg==,type:str] + lastmodified: "2024-03-15T14:49:56Z" + mac: ENC[AES256_GCM,data:lv1Ku7JdlGXgn4RCkQqQWdXwf7ESvOo0kmZDBkouItg31MYMunEGCnv7VYAlcSmDY2HkLd/iDvWbumS3ZnvLMFpuSH5wGeA2NwW0zPh9yyUHgxVP72fQK7ddCzhOaqn9w/5IfRQBAfed4YOeCoqKKoGunwaJQRhFtPjbdT49GAE=,iv:PepxRwGwTvbhhA/h8MV9gRtaXOgiATvAjgNCODlbw/U=,tag:z3IbOL7szx26n9FVH9kMCA==,type:str] pgp: [] unencrypted_suffix: _unencrypted version: 3.8.1 diff --git a/secrets/qqq.age b/secrets/qqq.age deleted file mode 100644 index fc375af..0000000 --- a/secrets/qqq.age +++ /dev/null @@ -1,5 +0,0 @@ -age-encryption.org/v1 --> ssh-ed25519 WaXiIA c63tcVno1ysABDLqGCRn8QQCKImhtSpRFqL+YzL/EU4 -kJPMXFl4Nz135AzhejCkU9S9/ODltRc/3oGXSDrwnI8 ---- q5ByBQLUfcQQRQdGU2+fV2xPAVHq5XSJ0uXgtG8XLhg -$\!s'Z^] tu 5z by LGU|aI? \ No newline at end of file diff --git a/secrets/secrets.nix b/secrets/secrets.nix deleted file mode 100644 index 6647944..0000000 --- a/secrets/secrets.nix +++ /dev/null @@ -1,7 +0,0 @@ -let - dlaptop = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGGL2UD0frl9F2OPBiPlSQqxDsuACbAVgwH24F0KT14L delta@dlaptop"; -in { - "singbox-aus.age".publicKeys = [ dlaptop ]; - "qqq.age".publicKeys = [ dlaptop ]; - "cloudflared.age".publicKeys = [ dlaptop ]; -} diff --git a/secrets/singbox-aus.age b/secrets/singbox-aus.age deleted file mode 100644 index 0d7561d7cd76733e8ac31d0b81a10a820deab276..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 2507 zcmV;+2{iU$XJsvAZewzJaCB*JZZ2D>8I=F-3J+bue@1E|=^v9Ipt@&O9@|h{JqGdiA=P2dXb%Vx`^V84m5c)k$33l9eD+ z4lVvOfi_roQQ>KHzkaZvZB6SWRCG*7Z8X&M7#n8o=h#%}I|TSP+ZkHu2lQx{>9mJ! zEv*E<3KsP@7NmjXUaQ4#RR4q0Z_*&i1qb#s81;N;^DT_Mifi9X zdFOvd2lr)b#5B9^C?MQ-qnx|5@$9=#I*FGi#QQlEYNy~Z@G`3p z@RL3Im~bcWdZz*jocwS+yXKhS>76{=ixKSi`wio5fwJLRKdO`G3^00s^X2sA;maxXuZmbMRXxg_;kowg0 zy4UXs((Y>jxK#$`1hPIM1rSYs!v`4rv-ZDejPkc>u~C#pffX#=su}DfPAhZ~_}F z)xTzfMmZt2@hSHZmMnpsf!=!?f$zPFZOk5NL8%0NWsuO$Jq8i zp;c7Tuu9T^s_qWvT(mIOpPG=v7IrH$*?+6%K6n1b=DyF%e)j=>cfj%iusNSjuYR3B zwYa1_c5L|a=4L~Mce8!Oc#L936|#n7b6{N*l$(pL?*wj)iT_W(+wZ4ZCHo$6zh{yJ zupQ$M4GX7lJ^Lo5Gs!|d5Iztj*R$=BgT}btkDf!Ut6q>3fq*?QunZG6q1f6F@Ot6N zz&Xg{4R~?&?jCoqg;}kf(Ccks7Qdjd1!nBM1=*AR>^LdbZYXQqKr7yY?a z(z|OIW`n$k*p&fHnSfMm;^}d8%%ZA|;BL}&n(#$_HccOzv9XI}IK1uDdXc?rL;&XO zU^sI|7%`s;GVOA%d&o!<96DS=ZJ)8`sJoZPm)2-PUz0ixbxnX>0}pE1HseOwzd zS?Y~rG4v~B5k`E1tQg666Jow&(m3~(8S{%GsF5vSN;hRcNr~UT^R@1hZQXRu?1kgb zyEOt@diIF10|_YUuX1NqFK}Pw{eb9`>V&=jp4B5p8upIkz;VN86QEijETqze>Zb?h zg4zGIPv%#=m@|j3`KGJ;mlp17HBV8mkF~c?JiwIP-eJNNicr`Q+_#YhGeA@##yK!d zlJEA0(@ypSk!7{koYe)GG0h$7ItRxp2+O)5;R&S4{-WW$0+4!rd?#+mYxItcdnZ^@ zJn3{Vv3*u%jjTlv7}g)(<8xSr&ObH(m3l&h)H|b#rdd#dZxf*^5Ot~I_+Ounja6^!>2yP)M>mH)G-&DUAv!}bhA2|xs`k>H|7fd~@1+iQ3TTpxGbs-#A8>x{}&jV7{ zb8Y3rdmmy?Zh;W@;DYM!;;}9${URJibCu0Vx@Y~@nOB?ym)*i|LTPz8sH8EFdhdJ! zfO3vS$mKWP%ml@VuODhgR$TL?r1ieSiG{IQK~V~j78*4JPWauaRN~`cr{y>eK0j- zGZiJVo&-lqt?ycC?&T0<&Fjxe+I5F+ZKS0oco;k{U7|2TpF0xtp}6q|D8&(v@=ikF zuYYL$SB_6S#-jUAK0Y?3@D%DBSdR;YRLp8i#_(fR@~9vbP-koH~HQ6)w5@J zBa8{>_1Y6Pqtmg`JYo5Xklc2_#3TR! diff --git a/secrets/singbox-aus.bin b/secrets/singbox-aus.bin new file mode 100644 index 0000000..80d1298 --- /dev/null +++ b/secrets/singbox-aus.bin @@ -0,0 +1,20 @@ +{ + "data": "ENC[AES256_GCM,data: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,iv:tLImbd3q9isshrqvmcgUIPm6/1mblyqheQIThc4UmIE=,tag:0keREDJSFAeqGMJpgawA4Q==,type:str]", + "sops": { + "kms": null, + "gcp_kms": null, + "azure_kv": null, + "hc_vault": null, + "age": [ + { + "recipient": "age15ztewc67js3aunwx8zvkdukqy8r3qswpqucjsqqnqjy3zecvacyqdxhl4y", + "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA2ME81STBnMHh6eTlJSkpY\nMDdhUUtWaU9UT0NxRGFXNkZDbmNrbkFXekJvCnluSUNMcTcwZ29QcG85S2cxRGZ2\nd3BwcFZ2blBnZiszZ0VyaTBxc1JyMG8KLS0tIEVTWjQ4YXd5S1dzMWJ5R0grVldw\nci9QOFd0b2FuQWV5UUd4OXVpYU40WUkKk4clpuxVZnmm7nmOwVfJ+mrB/lpcM1n8\neHa83IKAhDnGGUZLSO18Wd5s5Hb+HFbU45tEn9AWj603kn9vZMC09g==\n-----END AGE ENCRYPTED FILE-----\n" + } + ], + "lastmodified": "2024-03-15T12:16:27Z", + "mac": "ENC[AES256_GCM,data:kshyovsY1yI7o+9EPi/H+NoIzU47j0DVZasg9Mlk3KWQbvT0Q56w7E/mX72/aidSJCColqr9td8zFh8XFv10AG/0seoeayYpxupzTdrm1TFXTUW2uECM7s/vy7IxGQq76rPh2o5LZNz+w30V0EI+yH41nQYoRfo6X1sDhgffBRY=,iv:b/Kcda/YdqotJm8BcvzUWR2CU+wlJ5+YQmAJ5uDRX3Y=,tag:h+181XmbahsepjbJJdJqkA==,type:str]", + "pgp": null, + "unencrypted_suffix": "_unencrypted", + "version": "3.8.1" + } +} \ No newline at end of file