test
This commit is contained in:
parent
eff2f36934
commit
daccba230f
2 changed files with 3 additions and 9 deletions
10
README.md
10
README.md
|
@ -56,16 +56,10 @@ Repo for nix configuration files
|
||||||
* This will output the identifier you add to `.sops.yaml`
|
* This will output the identifier you add to `.sops.yaml`
|
||||||
* Move `HOSTNAME.asc` to `keys/hosts/` and upload to git and rename accordingly.
|
* Move `HOSTNAME.asc` to `keys/hosts/` and upload to git and rename accordingly.
|
||||||
|
|
||||||
1. Import your GPG key `albert.key`
|
# Secrets
|
||||||
2. Add it to your GPG Keyring via `gpg --import albert.key`
|
|
||||||
3. Mark it as ultimately trusted via `gpg --edit-key albert@sysctl.io`, then type `trust`, then `5`
|
|
||||||
4. Repeat this step for all users who need a GPG key assigned
|
|
||||||
|
|
||||||
# [ ] ] Secrets
|
|
||||||
1. To edit a file: cd to `/path/to/nix-files/` and run:
|
1. To edit a file: cd to `/path/to/nix-files/` and run:
|
||||||
* `nix-shell -p [sops] --run "sops secrets/secret_file.yml`
|
* `nix-shell -p sops --run "sops secrets/secret_file.yml"`
|
||||||
* New shell alias: `sops secrets/secret_file.yml`
|
* New shell alias: `sops secrets/secret_file.yml`
|
||||||
2. Ensure your GPG keys are set up.
|
|
||||||
|
|
||||||
# Lanzaboote / SecureBoot
|
# Lanzaboote / SecureBoot
|
||||||
* Instructions here - [Link](https://git.sysctl.io/Mirrors/lanzaboote/src/branch/master/docs/QUICK_START.md)
|
* Instructions here - [Link](https://git.sysctl.io/Mirrors/lanzaboote/src/branch/master/docs/QUICK_START.md)
|
||||||
|
|
|
@ -10,7 +10,7 @@
|
||||||
enable = true;
|
enable = true;
|
||||||
enableCompletion = true;
|
enableCompletion = true;
|
||||||
bashrcExtra = ''
|
bashrcExtra = ''
|
||||||
sops() {
|
sops-edit() {
|
||||||
nix-shell -p sops --run "sops $1"
|
nix-shell -p sops --run "sops $1"
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue