feat: Manage secrets w/ sops-nix

Closes #1
2024-12-28 22:28:56 -07:00
parent fa3bd72816
commit 52dc849c67
10 changed files with 186 additions and 9 deletions
--- a/.sops.yaml
+++ b/.sops.yaml
@@ -0,0 +1,13 @@
+keys:
+  - &crumb age1qayk0d0f765v57pedm7mtau6qkmv8rh6jtaqm40g5g9armaty4jqc0v0y2
+creation_rules:
+  # System secrets
+  - path_regex: secrets\.(yaml|json|env|ini)$
+    key_groups:
+    - age:
+      - *crumb
+  # User secrets
+  - path_regex: users/[^/]+/secrets\.(yaml|json|env|ini)$
+    key_groups:
+    - age:
+      - *crumb