2024-05-05 15:01:47 +10:00
|
|
|
let
|
2024-08-10 18:18:40 +10:00
|
|
|
users = map (name: builtins.readFile ../users/keys/${name}) userNames;
|
2024-05-05 15:01:47 +10:00
|
|
|
|
2024-08-10 18:18:40 +10:00
|
|
|
userNames = [
|
|
|
|
|
"adisbladis"
|
|
|
|
|
"mic92"
|
|
|
|
|
"ryantm"
|
|
|
|
|
"zimbatm"
|
|
|
|
|
"zowoq"
|
2024-07-24 19:05:26 +10:00
|
|
|
];
|
2024-05-05 15:01:47 +10:00
|
|
|
|
|
|
|
|
inherit ((import ../modules/shared/known-hosts.nix).programs.ssh) knownHosts;
|
|
|
|
|
|
2024-07-25 12:19:52 +10:00
|
|
|
build02 = knownHosts.build02.publicKey;
|
2024-07-09 11:41:05 +10:00
|
|
|
build03 = knownHosts.build03.publicKey;
|
2024-10-24 14:54:16 +10:00
|
|
|
web02 = knownHosts.web02.publicKey;
|
2024-08-10 18:18:40 +10:00
|
|
|
|
|
|
|
|
secrets = {
|
2024-09-28 10:02:27 +10:00
|
|
|
grafana-client-secret = [ web02 ];
|
2024-08-10 18:18:40 +10:00
|
|
|
hetzner-borgbackup-ssh = [
|
|
|
|
|
build02
|
|
|
|
|
build03
|
2024-11-18 10:28:15 +10:00
|
|
|
web02
|
2024-08-10 18:18:40 +10:00
|
|
|
];
|
2024-10-24 14:54:16 +10:00
|
|
|
nix-community-matrix-bot-token = [ web02 ];
|
2024-11-24 11:31:47 +10:00
|
|
|
oauth2-proxy-key-file = [ web02 ];
|
2024-08-10 18:18:40 +10:00
|
|
|
};
|
2024-05-05 15:01:47 +10:00
|
|
|
in
|
2024-08-10 18:18:40 +10:00
|
|
|
builtins.listToAttrs (
|
|
|
|
|
map (secretName: {
|
|
|
|
|
name = "${secretName}.age";
|
|
|
|
|
value.publicKeys = secrets."${secretName}" ++ users;
|
|
|
|
|
}) (builtins.attrNames secrets)
|
|
|
|
|
)
|
