This commit is contained in:
iFargle 2023-08-15 13:00:58 +09:00
parent eff2f36934
commit daccba230f
2 changed files with 3 additions and 9 deletions

View file

@ -56,16 +56,10 @@ Repo for nix configuration files
* This will output the identifier you add to `.sops.yaml`
* Move `HOSTNAME.asc` to `keys/hosts/` and upload to git and rename accordingly.
1. Import your GPG key `albert.key`
2. Add it to your GPG Keyring via `gpg --import albert.key`
3. Mark it as ultimately trusted via `gpg --edit-key albert@sysctl.io`, then type `trust`, then `5`
4. Repeat this step for all users who need a GPG key assigned
# [ ] ] Secrets
# Secrets
1. To edit a file: cd to `/path/to/nix-files/` and run:
* `nix-shell -p [sops] --run "sops secrets/secret_file.yml`
* `nix-shell -p sops --run "sops secrets/secret_file.yml"`
* New shell alias: `sops secrets/secret_file.yml`
2. Ensure your GPG keys are set up.
# Lanzaboote / SecureBoot
* Instructions here - [Link](https://git.sysctl.io/Mirrors/lanzaboote/src/branch/master/docs/QUICK_START.md)

View file

@ -10,7 +10,7 @@
enable = true;
enableCompletion = true;
bashrcExtra = ''
sops() {
sops-edit() {
nix-shell -p sops --run "sops $1"
}