From 3a40842f60ce61d8653e08ca80b315d2c4af11e2 Mon Sep 17 00:00:00 2001 From: albert Date: Tue, 15 Aug 2023 13:15:14 +0900 Subject: [PATCH] update secrets --- flake.lock | 280 +++++++++++++++++++++++++++++++++++++++++++ secrets/secrets.yaml | 88 +++++--------- 2 files changed, 313 insertions(+), 55 deletions(-) create mode 100644 flake.lock diff --git a/flake.lock b/flake.lock new file mode 100644 index 00000000..bdc2db26 --- /dev/null +++ b/flake.lock @@ -0,0 +1,280 @@ +{ + "nodes": { + "flake-compat": { + "flake": false, + "locked": { + "lastModified": 1673956053, + "narHash": "sha256-4gtG9iQuiKITOjNQQeQIpoIB6b16fm+504Ch3sNKLd8=", + "owner": "edolstra", + "repo": "flake-compat", + "rev": "35bb57c0c8d8b62bbfd284272c928ceb64ddbde9", + "type": "github" + }, + "original": { + "owner": "edolstra", + "repo": "flake-compat", + "type": "github" + } + }, + "flake-parts": { + "inputs": { + "nixpkgs-lib": [ + "lanzaboote", + "nixpkgs" + ] + }, + "locked": { + "lastModified": 1688466019, + "narHash": "sha256-VeM2akYrBYMsb4W/MmBo1zmaMfgbL4cH3Pu8PGyIwJ0=", + "owner": "hercules-ci", + "repo": "flake-parts", + "rev": "8e8d955c22df93dbe24f19ea04f47a74adbdc5ec", + "type": "github" + }, + "original": { + "owner": "hercules-ci", + "repo": "flake-parts", + "type": "github" + } + }, + "flake-utils": { + "inputs": { + "systems": "systems" + }, + "locked": { + "lastModified": 1689068808, + "narHash": "sha256-6ixXo3wt24N/melDWjq70UuHQLxGV8jZvooRanIHXw0=", + "owner": "numtide", + "repo": "flake-utils", + "rev": "919d646de7be200f3bf08cb76ae1f09402b6f9b4", + "type": "github" + }, + "original": { + "owner": "numtide", + "repo": "flake-utils", + "type": "github" + } + }, + "gitignore": { + "inputs": { + "nixpkgs": [ + "lanzaboote", + "pre-commit-hooks-nix", + "nixpkgs" + ] + }, + "locked": { + "lastModified": 1660459072, + "narHash": "sha256-8DFJjXG8zqoONA1vXtgeKXy68KdJL5UaXR8NtVMUbx8=", + "owner": "hercules-ci", + "repo": "gitignore.nix", + "rev": "a20de23b925fd8264fd7fad6454652e142fd7f73", + "type": "github" + }, + "original": { + "owner": "hercules-ci", + "repo": "gitignore.nix", + "type": "github" + } + }, + "home-manager": { + "inputs": { + "nixpkgs": [ + "unstable-nixpkgs" + ] + }, + "locked": { + "lastModified": 1691963086, + "narHash": "sha256-OHpCjDC9jsMDzyNJslJUeONaNkSDQA5t7qGpurVsVww=", + "owner": "nix-community", + "repo": "home-manager", + "rev": "7f351e2993ed170dd9b8521a9e41f4d91d9b9c5d", + "type": "github" + }, + "original": { + "owner": "nix-community", + "ref": "release-23.05", + "repo": "home-manager", + "type": "github" + } + }, + "lanzaboote": { + "inputs": { + "flake-compat": "flake-compat", + "flake-parts": "flake-parts", + "flake-utils": "flake-utils", + "nixpkgs": [ + "unstable-nixpkgs" + ], + "pre-commit-hooks-nix": "pre-commit-hooks-nix" + }, + "locked": { + "lastModified": 1691761621, + "narHash": "sha256-xTPifd7/93/bmBEPMhb0zuU9nzRkUIZHr+PJUHoUld8=", + "owner": "nix-community", + "repo": "lanzaboote", + "rev": "f13848606f5a313c33b9c9ceb34e0ae4d51b6766", + "type": "github" + }, + "original": { + "owner": "nix-community", + "repo": "lanzaboote", + "type": "github" + } + }, + "nixpkgs": { + "locked": { + "lastModified": 1691853136, + "narHash": "sha256-wTzDsRV4HN8A2Sl0SVQY0q8ILs90CD43Ha//7gNZE+E=", + "owner": "NixOS", + "repo": "nixpkgs", + "rev": "f0451844bbdf545f696f029d1448de4906c7f753", + "type": "github" + }, + "original": { + "owner": "NixOS", + "ref": "nixpkgs-unstable", + "repo": "nixpkgs", + "type": "github" + } + }, + "nixpkgs-stable": { + "locked": { + "lastModified": 1685801374, + "narHash": "sha256-otaSUoFEMM+LjBI1XL/xGB5ao6IwnZOXc47qhIgJe8U=", + "owner": "NixOS", + "repo": "nixpkgs", + "rev": "c37ca420157f4abc31e26f436c1145f8951ff373", + "type": "github" + }, + "original": { + "owner": "NixOS", + "ref": "nixos-23.05", + "repo": "nixpkgs", + "type": "github" + } + }, + "nixpkgs-stable_2": { + "locked": { + "lastModified": 1691874659, + "narHash": "sha256-qgmixg0c/CRNT2p9Ad35kaC7NzYVZ6GRooErYI7OGJM=", + "owner": "NixOS", + "repo": "nixpkgs", + "rev": "efeed708ece1a9f4ae0506ae4a4d7da264a74102", + "type": "github" + }, + "original": { + "owner": "NixOS", + "ref": "release-23.05", + "repo": "nixpkgs", + "type": "github" + } + }, + "nur": { + "locked": { + "lastModified": 1692070330, + "narHash": "sha256-XTgczFqYslEw5KgIvmFUDSLU8QeQbPNGBewIszx+nLU=", + "owner": "nix-community", + "repo": "NUR", + "rev": "7e8b36a6dc47dd832e94f24b254bfa75cb9202b8", + "type": "github" + }, + "original": { + "owner": "nix-community", + "repo": "NUR", + "type": "github" + } + }, + "pre-commit-hooks-nix": { + "inputs": { + "flake-compat": [ + "lanzaboote", + "flake-compat" + ], + "flake-utils": [ + "lanzaboote", + "flake-utils" + ], + "gitignore": "gitignore", + "nixpkgs": [ + "lanzaboote", + "nixpkgs" + ], + "nixpkgs-stable": "nixpkgs-stable" + }, + "locked": { + "lastModified": 1689668210, + "narHash": "sha256-XAATwDkaUxH958yXLs1lcEOmU6pSEIkatY3qjqk8X0E=", + "owner": "cachix", + "repo": "pre-commit-hooks.nix", + "rev": "eb433bff05b285258be76513add6f6c57b441775", + "type": "github" + }, + "original": { + "owner": "cachix", + "repo": "pre-commit-hooks.nix", + "type": "github" + } + }, + "root": { + "inputs": { + "home-manager": "home-manager", + "lanzaboote": "lanzaboote", + "nur": "nur", + "sops-nix": "sops-nix", + "unstable-nixpkgs": "unstable-nixpkgs" + } + }, + "sops-nix": { + "inputs": { + "nixpkgs": "nixpkgs", + "nixpkgs-stable": "nixpkgs-stable_2" + }, + "locked": { + "lastModified": 1691915920, + "narHash": "sha256-4pitrahUZc1ftIw38CelScd+JYGUVZ4mQTMe3VAz44c=", + "owner": "Mic92", + "repo": "sops-nix", + "rev": "32603de0dc988d60a7b80774dd7aed1083cd9629", + "type": "github" + }, + "original": { + "owner": "Mic92", + "repo": "sops-nix", + "type": "github" + } + }, + "systems": { + "locked": { + "lastModified": 1681028828, + "narHash": "sha256-Vy1rq5AaRuLzOxct8nz4T6wlgyUR7zLU309k9mBC768=", + "owner": "nix-systems", + "repo": "default", + "rev": "da67096a3b9bf56a91d16901293e51ba5b49a27e", + "type": "github" + }, + "original": { + "owner": "nix-systems", + "repo": "default", + "type": "github" + } + }, + "unstable-nixpkgs": { + "locked": { + "lastModified": 1691990649, + "narHash": "sha256-gMbKOiX1HwClRP9lADaaV/lnZr93NEaOFe4ApDx/zd8=", + "owner": "NixOS", + "repo": "nixpkgs", + "rev": "6e287913f7b1ef537c97aa301b67c34ea46b640f", + "type": "github" + }, + "original": { + "id": "nixpkgs", + "ref": "nixos-unstable", + "type": "indirect" + } + } + }, + "root": "root", + "version": 7 +} diff --git a/secrets/secrets.yaml b/secrets/secrets.yaml index 8652cf48..0e6fb424 100644 --- a/secrets/secrets.yaml +++ b/secrets/secrets.yaml @@ -1,75 +1,53 @@ promtail-pass: ENC[AES256_GCM,data:LZ/J7FWPzpYiyEj6UCYwt8LRD7FN7lvlQ3krKRb2TzBglTmr9j0q6pFnDoFmsedpNsiHdpFb2GS9HVns8TdZyA==,iv:I+HMQIgm9J1QOrSuAFXw80w/z4Xy6dtwWZ6EPgqCSIg=,tag:0X/QIs781mCWKESgKoSbYg==,type:str] telegraf-token: ENC[AES256_GCM,data:2FoOGuxWZ5Pubnd/f46Z1/dkR9L5pQd+LD5spEQlgECqXeKXNP3l8pi1LQgZjag=,iv:Sf9bHaLT4/CH1y8uLwIwYi7sU+Jjc3ypQX3kdNQSrKw=,tag:/s3Hxh2MOV3SZcOXRhMwWQ==,type:str] -wireless: - copeland-5g: ENC[AES256_GCM,data:FtinrLdQJJ2s2ehRrQ22VR4+WnIPlbhFBZoUYZg9RkcvLywud6KnIUj3IA5oKZF4MaLdqgD7oxCUCF6OsdjqbQ==,iv:ZlGNIgwJNsG2k4uUXYWOJ4vB82iZQrQ67Zgd3/rLWgM=,tag:GDflJ+KmyOH1s7jweWsvOg==,type:str] sops: kms: [] gcp_kms: [] azure_kv: [] hc_vault: [] age: [] - lastmodified: "2023-07-05T10:49:26Z" - mac: ENC[AES256_GCM,data:ZzSqAXszT2cDUO/9wPaQj05ZhZp5DZQ2tC6dWBXYrTrTXmOxELCg6bMy5/q5fPOuxvcTRQAbCvHu6rmKvMljmX7ll3pnRuOEkpOHeG266f+IEL+0IAO5ailD1VwyWyZvRK+Cr75f25ihDJsQowOq35inNxCWxnojo6zNgHWplVQ=,iv:bkNvsA1hSiyh4GoU2QjD7bjIjl420eL+lqmFawICqNI=,tag:Q7xDSJLWGwi/Rz7XYZtshA==,type:str] + lastmodified: "2023-08-15T03:59:13Z" + mac: ENC[AES256_GCM,data:Lhf6/imXGoMaFIVW4TFUyqQxGPW05Rlq1ra4+uVi8rCDUhCiwk9tDGzkNueYOqMsT/69yxZqDyPZIj3gTJ72YGiymAP93CyauKzsuuN0VKafu5JiDsBMbgOIh3/2n3KK4K7imA6+WIkudgcY2wnn+hqArbX0OnJHeg4vlLxJ2kQ=,iv:1tsmkkUeSePY1siGM4b+OuYMTQvj4wMfa1F81O/MGeU=,tag:LPmSSzoCoOWUIRl/4/A+Ag==,type:str] pgp: - - created_at: "2023-07-05T04:15:09Z" + - created_at: "2023-08-15T04:13:39Z" enc: |- -----BEGIN PGP MESSAGE----- - wcFMAx+imH9kwOLOAQ//WnvuQGqam6obgsZvUts1ZBDhzevIR2B8MJzYd+e9w18Y - qS+SYMs+ntpFof8VrDGOqZzDnQxOqU7riHQn/alg+yR/8aoua7t9mC3CRwTZ5DkD - mHIcjwpeXswuQKJ4UkXoN3ztcWRjrJFkDBUQfyDoyj/qJMeARpXAkao8Ov8q6Qkq - nGxDD4tOe8SxQz39qKSP0A5+Ky5ko0HHzUXs0IhJ82CV5zu3dieq/pY3fmlsQKJY - jnxV+WGsemQ2tw4i3H9ODiBkyDBmjH2pyc8fquyuOQLY/pLVgTk/Muuhirj+Mhzr - pIzKaqvO7508Qal/fNUmTHFeHcx7DjVu08CM5/8r9wDn5p8ZD4wTc7pu5HGo1xqZ - zio2HdU6YVB4XBNyRSKSWdMrblQMcYaEqsYwvVDIeKx/FT/ZyUjR723LAZQNcfT+ - Kh+jI90L/pNvg3nbHqm5wRe90RSxxdSFdvYVfEnwPkywYsWj/Pr15UHhxsmRCbIe - p2Xq/AzJC6bp+LF3I2NC5dadA8MIiyf3cqlorHfVfD5LYuFpBeGsS5Wiax0Cxq3v - InPVHzxaaMnUEuHUrGhz1OEmeYImibcdKK6JtAJVia9aOVwIzgKOHCuGIdQBL81w - 1G9BghmbhLYJM4IEBL6HHSbsWTyY2/xoPcBtO8dRjQ+WmrJa0dF5tCnOqJxEJSDS - UQEBjQ74UnHZ3BVf3zUSl6IVkGdQLL73xx2M4sa3VEpjxwAZj1VVi6UeCm+sN6Ae - lRGSPNlNvrrR6xCjNeytAMppq25H54a/zaOlV/d1XOmyPQ== - =WOiF + wcFMAx+imH9kwOLOAQ/7BtdlwFKmXN9mODrf1uIAs7Sop5akG92YlXqpgu8NxzSc + L9Vt0mHuClBEvd1VOdR7enK2M1ToKGXK+hGFUPruTy1ZqSYkwXveBfZt/zBHWhWo + 5kZf0zjshSgfsGmFWQYyPx7oBUx+psYPAxF6JxwC8x7y+wyg0IGuiSadNzl8cU7m + BUpZinCkX7AZVCke47oVd76SxwYFXKDkseyxTmee88Va1ekEXegkfpBbshGZqR+G + 5GTaDbQld045AG9B2LSrprHxougI716i8Z4RRjKpQkixaiv7vhKXD5cBz7E399MB + 1Gf7wz4PKygtSw8FhMOj+Zf8RvSdrdQM13qDA3mwZtxEZtbear4iim86bQ97qmwq + i5xQONh5WBNkGZb0rydifLdTy4UAA7nVcnZ5a44yRmpwVppb6Ouy3h0oqmWjAyzu + 8ssYv/q1myo7KKb7mfRNDrFaDG5M7degTA4epQ1gc6ER/8kIC4xAW9fspaiPqwzr + otAMwLg1ci1ph6sjXvALF3lsJormx9cnmK827WLu5ZLEgJ7gjbqy0aSghAFMIwgE + XKacYqibBYvCFcRXBXDYIKUn71pffnexGNRJ5hE9qkQkjrX61S/AkD354qhRr+r0 + eihxLmV7ClEJya2sEJ253YGIYPcogiq4PZhUldrvW4i77nfZuTbPr8OLb40T4pvS + UQGklWr3ctbN99ZtlhqG7RUJEmVJHeXINuVZegorN+nBQNTPLluQUf9brBvU6btI + BesKgmTfXfvhAl+x0w8LayNgLHMI/VfPHwXlZ1A0RiZPrw== + =7Lka -----END PGP MESSAGE----- fp: D98BBC6C9A27324654C2D8C464F6C4EB46C4543A - - created_at: "2023-07-05T04:15:09Z" - enc: |- - -----BEGIN PGP MESSAGE----- - - wcFMAx+imH9kwOLOAQ/+KiwTLlw1k/X2Zo/DJfr2x+kb5ErXOR/OTolrHVUwbPuZ - hJoDFZGEdtgvoY5zRo36eC64Yl4+zC/3qrkIjTPIp0CLAMMgS39EYuz7Jc1eYDxg - 1MYNvjHvC3Nm0UuNqXX9cqciI4btkwZFF3O9ZrUh1vKfAKwQbMWkzeEa1F5w3/lL - BigZJ+j6xjCsXofRRBDnz5VKna12cn4nRi2U8l+H+Di56Sr3mODTAV7MnV5CJAwa - /ehc56e3MAangs5lfrmqkCKWcRMtfNowhF1u13/7o6XnyhyJ703tiAG4K8k1zmqK - hX+EXL8ugaV1ySKYnJ+0J4bsfH5K5MATlEDhgLypD044FAZFYazgh9WH7dDSQlfn - axCGXEfqMOT1Kp+Ub7mQTemWJquDFdNSpcY9CL1XzD1XH43ZGZoFWy0/Ba+BVlCx - KfaqnfpKr7cuRT15qb7GC4RhLu1bpu4amhWH8P50KWOUxPTvDpfvCUngWSA1dtBc - ilWAx/6lLg34e+2ZmoLSUTAfQ5NLRhr1DofkW+zpzMWrlajetg5vXpsiT/jprYqv - daXWwXpe9QlAMhAw2ovP1m5PpashE6QWDUoo+2dJPE5/jQp6BmfaiDIENF5Xgf6Z - dtSLYKNJ5MP9nkIa5+HP7ms4YVnh0exI9E7AEW6WSXb4FK678gZG/4Bi0JeIUL7S - UQGlUrh4wPRHw/x6ERYQSL9IkDvvdJbR1ZKIT7Q+5mWdtreeP1jDe6LyWCIrs5l1 - /+ciUHtYs3JhLpPwyeEziusY7kpdhj+Z1mUJq+S7PPra+A== - =4yuI - -----END PGP MESSAGE----- - fp: D98BBC6C9A27324654C2D8C464F6C4EB46C4543A - - created_at: "2023-07-05T04:15:09Z" + - created_at: "2023-08-15T04:13:39Z" enc: | -----BEGIN PGP MESSAGE----- - hQIMA05xohU1E0KmAQ/9HEzHLoUSlIkywuLcusnU2DSZq0zdZvm4r6ALWGPSh81L - ERdxvrs7nRdtaMeF64aSSSQ8EgY1slF0gY37SdE+4/ryG9U0WEgnxg4/tiQNyG4M - i+rmd9yA75vaOdXYM3M5ZhoZoKb5ctmC0OzEWnF3vzGvAL4rwGv+KzzHYmBMi4MZ - qrHJW+unuBSDeAQVYtigQSoUJdH121H/1Y3bk949UZb/t/aEZZ9xxy372Kv2MOYE - bMDBxIET4EG450TprUXYsZS/JUDof4lNaZLGib0K2xnnRBKCZBKNVlw2MIJwtK6W - 8TcBMbEA8G5DU09+wlztCC/8zH08oe2rl5G2y9wmE1DXKl4qiLbxASVatoNQmXY+ - cein0tYSmHbjI3Vc9REkLhbvKMVtrEgT+4TGkwcUSsJVZJgArordxJ3aqhhA9Ti3 - F2C57S7C8wCdkL6lIhjOv5trYZu+AvRNwO88MA0tCobLVgaTceYSCuN18YZeBWye - djshp5CieqcA6CdLXqpymdFxyhMuwaQt3Ygx7JjSEedwjOXezhvvWdsJMaj5dUeg - ziLEN67x9HEmliHqcmZIYWH0COUL/sDQe08HJj7UqRHEG2291xDB3WpKQtg/z5A9 - 6LhfolZn46VHRFON/oXh3yF6ow0rZEZgZj1ucs3nCtWU5NwE6fWhXYL5Q4BkrFvS - WAFtB1bVnk3IDfeJUoz4U6cu3+R3MvmJJt3+TDEbvfn8PZTSIdDWejwV33+r8+P5 - 8jhIzxy1LTNDeluTzbYdtQiHCjFkUfG0Nd6PNP7kQPeomikIqCtqhDI= - =uixt + hQIMA5liNpV8iHFoAQ//aWIEtKlq1i5pgaIjgFegggLAJ7cY3HiWWR1VO4WPtbGY + dUjoLtTPX9X02pcuKuoW/iWHwUgInEbOKnjq2VcdqNJraOfK9RGvDzab3SskCFx/ + koglGkYCBeE1zMT77s1ZZl5JdGQOV+VZvMUl0UizRS2XkHOOBhUT0Jk5ucmZ/ZRw + uJnu39sHKXxE2pksJbyK9oAbRsZ52B5hIeLTNv2FHwhcp7sos2rP2nM963csFKCe + Nxz5FzJDO8ZR8GBxZ3nzdHrLcLu4DerH0PO0mOp+WmfOOKVRH6VcQXBDLwf2T1g/ + YM10XgF+YdbLslw7EO+WhRm1rI2HLgVaaMqFqhyUbWC5w04EeNZl3X8XSf84vgh6 + FlQgC0QfhmOICjSDAUE1hSDk7SM5QrWxaJrzuZUHaJ6y8rnMuJNlVGJKcDyrKNSt + qwT2Yo6p/koeVkSwM4Xu7IUNVnxkAYaJDNkQT1egKHmJLtcPolqKCP0Z7d3SxuQC + MwDuAkphYx/jnXWDjzJZSE5m8pYQhTyzglcZ4ew3bkt16TQFBba3gc+74Jl4RMr8 + jXFlCqPFoAPdLBM25h6H7SfG3bcCjl8O1qchgGlVKbhmsLNTPjyQK6Vzki4utgRq + BEjcH2Rl3+S7qJLEkQQrtei1VEo6NKkdOImNjvbXRwWcYgZVNs1/o4ZX0cJEbdbS + WAH7RwHIiWEgGrnIaru13sc1VaGilueqZ3Vr54rWDYmHwjgVjssYpKuxp6bsIyf7 + p3G4d3hIzYn7VM9yIdQNPz4paogfhxkzmoqa0INoXvNliEh+zL/1zxY= + =UfPg -----END PGP MESSAGE----- - fp: A20F7BD39673AEA2E9293E354E71A215351342A6 + fp: ca375f85e93f5327eca3e0af996236957c887168 unencrypted_suffix: _unencrypted version: 3.7.3