infra/secrets.nix

let
  vancouver = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC30kDkktiWJGaJEIrqgneQx1SmIYUEVPm7w1F9p//CB";
  monitoring = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEDtzsbxKgZ/NBYlYO2EJQZhBy3nVBVERWebbsP9mLcy";
  machines = [vancouver monitoring];

  proxmox-k3s-node = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIB1KEjdFl0UmuKfESJTMZdKR2H9a405z0SSlt75NKKht";
  seattle = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF9pTEqeVljLq0ctFgDn25Q76mCqpddkSNN9kd3IQXd1";
  glasgow = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMgZSpfnx/4kfE4P1tFpq047IZkF2Q0UYahputnWxtEJ";
  k3s = [proxmox-k3s-node seattle glasgow];

  gsimmer = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILIztwQxt+jqroFONSgq+xzPMuE2I5Dq/zWPQ8RcTYJr gabriel@gitgalaxy.com";
  users = [gsimmer];
in {
  "secrets/vancouver-action-runner.age".publicKeys = [vancouver gsimmer];
  "secrets/vancouver-restic-b2.age".publicKeys = [vancouver gsimmer];
  "secrets/vancouver-restic-password.age".publicKeys = [vancouver gsimmer];
  "secrets/monitoring-healthchecks-secret.age".publicKeys = [monitoring gsimmer];
  "secrets/monitoring-healthchecks-ro.age".publicKeys = [monitoring gsimmer];
  "secrets/monitoring-prometheus-webconfig.age".publicKeys = [monitoring gsimmer];
  "secrets/monitoring-prometheus-password.age".publicKeys = [monitoring gsimmer];
  "secrets/healthchecks-ping.sh.age".publicKeys = machines ++ users;
  "secrets/fastmail-smtp.age".publicKeys = machines ++ users;
  "secrets/healthchecks-telegram.age".publicKeys = [monitoring gsimmer];
  "secrets/cloudflare-dns.age".publicKeys = machines ++ users;
  "secrets/monitoring-grafana-client-secret.age".publicKeys = [monitoring gsimmer];
  "secrets/k3s-token.age".publicKeys = k3s ++ users;
}
Testing agenix 2023-09-07 19:10:23 +01:00			`let`
			`vancouver = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC30kDkktiWJGaJEIrqgneQx1SmIYUEVPm7w1F9p//CB";`
Add healthchecks configuration 2023-09-13 23:01:51 +01:00			`monitoring = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEDtzsbxKgZ/NBYlYO2EJQZhBy3nVBVERWebbsP9mLcy";`
format with alejandra style 2024-02-05 13:13:44 +00:00			`machines = [vancouver monitoring];`
Testing agenix 2023-09-07 19:10:23 +01:00
Proxmox guest k3s node, use agenix for token 2024-01-19 10:41:57 +00:00			`proxmox-k3s-node = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIB1KEjdFl0UmuKfESJTMZdKR2H9a405z0SSlt75NKKht";`
			`seattle = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF9pTEqeVljLq0ctFgDn25Q76mCqpddkSNN9kd3IQXd1";`
			`glasgow = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMgZSpfnx/4kfE4P1tFpq047IZkF2Q0UYahputnWxtEJ";`
format with alejandra style 2024-02-05 13:13:44 +00:00			`k3s = [proxmox-k3s-node seattle glasgow];`
Proxmox guest k3s node, use agenix for token 2024-01-19 10:41:57 +00:00
Testing agenix 2023-09-07 19:10:23 +01:00			`gsimmer = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILIztwQxt+jqroFONSgq+xzPMuE2I5Dq/zWPQ8RcTYJr gabriel@gitgalaxy.com";`
format with alejandra style 2024-02-05 13:13:44 +00:00			`users = [gsimmer];`
			`in {`
			`"secrets/vancouver-action-runner.age".publicKeys = [vancouver gsimmer];`
			`"secrets/vancouver-restic-b2.age".publicKeys = [vancouver gsimmer];`
			`"secrets/vancouver-restic-password.age".publicKeys = [vancouver gsimmer];`
			`"secrets/monitoring-healthchecks-secret.age".publicKeys = [monitoring gsimmer];`
			`"secrets/monitoring-healthchecks-ro.age".publicKeys = [monitoring gsimmer];`
			`"secrets/monitoring-prometheus-webconfig.age".publicKeys = [monitoring gsimmer];`
			`"secrets/monitoring-prometheus-password.age".publicKeys = [monitoring gsimmer];`
Add healthchecks configuration 2023-09-13 23:01:51 +01:00			`"secrets/healthchecks-ping.sh.age".publicKeys = machines ++ users;`
Add SMTP configuration for Healthcheck 2023-09-20 00:25:38 +01:00			`"secrets/fastmail-smtp.age".publicKeys = machines ++ users;`
format with alejandra style 2024-02-05 13:13:44 +00:00			`"secrets/healthchecks-telegram.age".publicKeys = [monitoring gsimmer];`
Cloudflare for DNS 2023-10-08 22:54:43 +01:00			`"secrets/cloudflare-dns.age".publicKeys = machines ++ users;`
format with alejandra style 2024-02-05 13:13:44 +00:00			`"secrets/monitoring-grafana-client-secret.age".publicKeys = [monitoring gsimmer];`
Proxmox guest k3s node, use agenix for token 2024-01-19 10:41:57 +00:00			`"secrets/k3s-token.age".publicKeys = k3s ++ users;`
Testing agenix 2023-09-07 19:10:23 +01:00			`}`