infra/secrets/secrets.nix

38 lines
879 B
Nix
Raw Normal View History

2024-05-05 15:01:47 +10:00
let
adisbladis = builtins.readFile ../users/keys/adisbladis;
mic92 = builtins.readFile ../users/keys/mic92;
ryantm = builtins.readFile ../users/keys/ryantm;
zimbatm = builtins.readFile ../users/keys/zimbatm;
zowoq = builtins.readFile ../users/keys/zowoq;
2024-07-24 19:05:26 +10:00
users = [
adisbladis
mic92
ryantm
zimbatm
zowoq
];
2024-05-05 15:01:47 +10:00
inherit ((import ../modules/shared/known-hosts.nix).programs.ssh) knownHosts;
2024-07-09 11:41:05 +10:00
build03 = knownHosts.build03.publicKey;
build04 = knownHosts.build04.publicKey;
2024-05-05 15:01:47 +10:00
darwin02 = knownHosts.darwin02.publicKey;
in
{
2024-07-24 19:05:26 +10:00
"hercules-binary-caches.age".publicKeys = users ++ [
build03
build04
darwin02
];
"hercules-cluster-join-token.age".publicKeys = users ++ [
build03
build04
darwin02
];
"hercules-secrets.age".publicKeys = users ++ [
build03
build04
]; # hercules-secrets are only needed on linux
2024-05-05 15:01:47 +10:00
}