From 10de4e7ce2c82cf8e4534f76c9aef794fb5622f3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Motiejus=20Jak=C5=A1tys?= Date: Mon, 7 Aug 2023 08:31:00 +0300 Subject: [PATCH] letsencrypt: add account.key we will be doing dns challenges manually --- flake.nix | 1 + secrets.nix | 1 + secrets/letsencrypt/account.key.age | Bin 0 -> 3800 bytes secrets/letsencrypt/account.key.gpg | Bin 3857 -> 0 bytes 4 files changed, 2 insertions(+) create mode 100644 secrets/letsencrypt/account.key.age delete mode 100644 secrets/letsencrypt/account.key.gpg diff --git a/flake.nix b/flake.nix index 47fd50b..02adb30 100644 --- a/flake.nix +++ b/flake.nix @@ -90,6 +90,7 @@ age.secrets.sasl-passwd.file = ./secrets/postfix_sasl_passwd.age; age.secrets.borgbackup-password.file = ./secrets/vno1-oh2/borgbackup/password.age; + age.secrets.letsencrypt-account-key.file = ./secrets/letsencrypt/account.key.age; } ]; diff --git a/secrets.nix b/secrets.nix index 62365b8..f148c9e 100644 --- a/secrets.nix +++ b/secrets.nix @@ -19,6 +19,7 @@ in { # vno1-oh2 + motiejus "secrets/hel1-a/zfs-passphrase.age".publicKeys = [vno1-oh2] ++ motiejus; "secrets/vno1-oh2/borgbackup/password.age".publicKeys = [vno1-oh2] ++ motiejus; + "secrets/letsencrypt/account.key.age".publicKeys = [vno1-oh2] ++ motiejus; # everywhere + motiejus "secrets/motiejus_passwd_hash.age".publicKeys = systems ++ motiejus; diff --git a/secrets/letsencrypt/account.key.age b/secrets/letsencrypt/account.key.age new file mode 100644 index 0000000000000000000000000000000000000000..de6a8830f94f4fd058f64f0b1936cdbbbff70ea1 GIT binary patch literal 3800 zcmV;}4kz(pXJsvAZewzJaCB*JZZ2hnnXh&&NX>EFMcu@*NP&Yv@Sz%)^ zF=a|pZZk*eJ|I{!H8n9gAa+J?M0iYE zdSz%sNK`jAMR#vmH#bjkIde%uGIB?3PH|~eLU?m8Y(jZw3V1YTYjSjWYEODXFlS~@ zFG@&pPe)jFOHM>$QgcW!HDXd#R&!)RRCP~H3N1b$aA|fea56PEAS-z?M=y6EK{HiE zZAV08aA-MaLTN!|Q)OpyGD=Hsc`#ZzHE>I8WNcYezeOQ!rCzG)7TX3NSQLNNP7r zNis1qL(Bj<1`Aw zG40d3l|4tiEJISlV^KvG%;ukaXNwAxt>P#$ z#I18EjB;GEqP0qgn(Q5S#C2i>PIc>W6Z9W%b|p%ll}!fmyMEh5A#k7zJ%@Ml_sZEe z&ppO^`m?cn%AYDR4d<+UC5N{D#RlTL2z71JkOVxEOIedt_&LK&rllG`*^q`b71(hB zG!94YQxy}tHcH-EMuy%S{)n!Kb<5LX#_dCeI zIUr0uLY^bkiIu+PhvO%le>(*-lN{yZ71Mi{y{DwmeuZ*}+iR$dg|wVuhQ#Y_L~&&! z+Ie;S)}Iz<9-&e%O#W@YzLzuX7urcPS$pEAkZ78T^L*)6@%^MYEvW_Ax9hCwWn3=#rQ^C)d51S?9c z%}IXBSJi+L8Wil4E+Vgq9$I@g7S&56mDokVrVxvUq+L5E4G)4(i-lnvhv(qk)%OPxH>ophBEM$##lcgK^Xt`b6^%x8N9iCl#f!Yg&R!v3$f~oqL&& z3RhNT#EXwT_RG)Jam)@{W^VH4WMRn{BA_9VGIJ@cRFzw1#1ZuDjrjeOd%DW*;d;niz%)d5mL zOYm2e)J28UtMmj{SR2IXu9Q)!J;sh(2L2^QhqI)6RCDyLeN-U zx7NpM{PgY*F0s(tlBmVfWNE5GoK&DaN3`>>`Nrp z?>1_1?fWwheuHfPo;WK9Kz5T0C2pe&-5u*LRvlSeT~}kV-CoOdEN}bs_}y9;fJLZzH9qn(6oevgSjkiYbQ4@xAO*mAzH+z~g%&7x4Cg z!JsRKCDF#f^c6BLwVq%H+HOVSz*iW|egp0yHz8tuUzR7R{ttu%GDp<6-$C}|UW^Tf zK3bw_YPztc-%JG0GxbM15;?p`8rQvYyRHdKtH3eo5&P-r>`4?8fbcJ_DPG1msms z{c8AL+~I1UbT93Tgo5h4K}7EA9br%otn)e9VHNf$77r@b)D-q5$;w`g2I+ zeC*Nby!k(|!sj?b;Pp~>AP7#M7f4OFL7{b*V9%T>`au*zw>xMPIcw>P8q~DBvkdNB zW}Q|)#|7Qjd1GJQC#-WSuh}TvEzt%MSK2uT3T6b)?el6~KO`&81WGR+ry|PxrUh-IJ<*WF# zLUoXAw-fi4teR~h4(g9_z}mFr+OptTI`ke$GtaZrWZE#W#Sz{NWE9-<~dk#mfDR_=df)3(P<5K_CX6fTsALQB(~SLASK(ZIF$jnFD-7ww6Bfow|fTvSX7)V!G+*mWJwrG zT-4+|Tuokt(N;1HJDbe^2rGuj9Cu&F=D5hobr?;Umo8jmLX{9}+UNL2${!`1M=ox+ zT%{+94G#mG8WJG8o%NJ3sw3w_cKU-A1a3SokN(0FU^zsXtDwZ}=HQ&2Hz4%_vXB-q zR6cdOYLfQ>maA_12*y|W28bUC0cu%W+N8Xl!zC^%f!%|lsN2@aqY;d~pS%I_;&^Wm z8li`k>GRIjEAdI&G4{+njsiI<~I4;5}UUU3y|&JbhxfhZ$2 z85=ak%J$Kxo>Loym>Bu&=eKFNTI#)10n4;GDKC=he|ekZ_sdEol-MVidkT6==a)tihcU|0ySQGRm;)680_lxhESEF>KOgMPqf5|%UUPc*dDnI7 zT~xe&b=e)qmZ9~WjN2YpC@a_eli)yvmMvk?v=!2w^(}N4FFYz04pNq!r62_~ zraQujjWC*@hRAU3aC#k_$NRBJWGs+`z}`B;*@<3|K-}sVK;K^thqB`NMv(SpWGmD( zU=DXcpk~RFUb(F?ZEnY7Vr!UBJU?%M-A&Nw}ihJgCiwjV{$)6JqyTMX}HLtRJckL(h%E&Iz{m^*)C2o(fndzU-1Y?ca)X zGU9Hcu8H0kYk%0QF}f}X-}PjKc5fSjkp5(Y9u$dL(l9>S0c%TQtGvH4d&Te;Dl^i4 zXgB|5S<2WlMNFF2%Qplex{06(x()c_)edN( zs;@M6q&^Mf+F}nHE0=KJ7Mm%yKKB_0)o04kh_maff24AApl^o}rApm#p{j$7^49=r zN!pU2!9laI8S-3d^gcpHXh0P^jx`qk%HQ})`IK4PweQxwV{01vd&a9<2Z^=+hKOwl zoHu(cKySoRBbe@t%%+r_ny(gkh{Hj87hefzE&+abqz=7xjN(JTDV0%g!!q$GbVcHG z)sG3XQ|C8qL}y{%e$_QJ-^qS3EWN7p$Ut#rD`xqFY(KxSIXKet2X3AM%^vi_YhhT@ zhyx+Rvh-qtBj1m<*H8s>b%$5rcket*RNlw!`m(#k@1HG!g-=eHSj;8T=Q~yegt=W$5S?dZg{ zcFP+Q(ts}7#O}hrNGrzy2e4J$LLYQgp^L^GfX=5(kOD$Pshj)<9_^1pwed(l&}0)? z+j(i)Q<_F%g(f`8;1u0xq{~iMoj`R)WNUJ6vE)4poM?1NbE#|uI2EY4U2v`6pfnwdx7{i85et*dtKTE{-l|I%L* zFx!EdVZA2=?@6JLkD4WKF(SSSmrmViC*oa^REcUlhH!icash=x_@u{k@CU2KLGlG- zUuCdD?KU@*Z{8Qk3c0U>>LOtWhN{&zR|8O!8meV-AW|&Ubja@8D@rc6uFDS*B-wn( z!FXL>Kh6DMvYZ?juyUt~hx5LPg4oV*2U=z%Lz`$FT zoP#33MYS6R`u%9mC}Ju+aSsWh_^fb*Vn?tpBQLY6MB*;wKq|@7^^_xuyDI&)=l|~L zyD0H2=Pw}A-G^kFg(Zb5ye2EWnl+B%TkOw3;Tl5|KDk&}+9=hFzW5TP>UiJ=oE0z0 z>pDv4=i{@@3gp8Ft;XMX_FQK@qJT}mJ8wtG-SiT)s_)#wf1mzY=CDf7IpeNOsFAQN z$NH~*kT6jqP9qj;L)_uNv=0Am>zjiX>vEB)$E}maImB-bRYstwSs~&3hzqmBi2b7| zmE1VM0}`4!en8BM9&M#1zlfIIgr`Ph+lph4?tE>^S(H-sa)9HK|vRf484SLWIQlG*lCKfz_m`1frz0Yn} zo^a@fKs(EC`|6~<_A>XCoAJ2c9F;0br(JLDWP=flU5NaOVgk8Kih!O7D(BVyou;JGSFl3{4{*T`VN3n|Q?z@-bc_ zHIe6x?&KDcmD*ss9Uxg5z%D`c}!GARUtv}jC)D)uj>v#ag!%n$3g61-peV0q!v8Ko|9a#(4c)2k-3 z;|M?t_W&!f=(qotx+_sKu<9itv3VMN2LCZa?$?^C_7)<0g%J1sg;*gNAASDHaG8~( zYi5&%IP;p425d2L@a5tgA=}G1n7@oi7l)qcEj74iWuGMi!ITfzO$gOU1j%bD@(~^@ z0$z3S`D#9Uzg+0eG_$#IpN>dj&E1b#C0?G{dj~&2wO1`;M@WKTN#+;~a0*h-+Hp_Z zOt$QhGw$?Q9N}+wQ$8p(AWJK!wNw2Wks%7QU9jfGTjtHGAu??Yq!2$SzVk5UFbT%# z0w^t4ui=BFROt{e_g^QT0CJ6|qEZpawUone>7%X)H?x}|mF54dx&)n+xCrHV$5%wI zK;odNh!;We{>jzIDz2)&Kr%lOZ%syCOuyPaf~yn=pfjtsqPB=yc;Gaqn$>dyBH3ogl%^W;C~KA{TsFK5V0NA?)~~Os(J!eEv`+ zXzQk%OID*Yp4iV&oiKSzZPh%SHUE&`^*zVfdJuBrxkl7s#%$lkZy(P1_T)JL&sRRXeQiAqWC~UR#;(Z-_ z@Z~2Nh>SjD$i9&xnhv|WP*IAOS)8NLqu+&;8#>Ny+(>fPdp8iTonz{tQwIMSHo98bS|4gOFtLjoftuqKUvy z?u`s0a%4=INolefXeNDp4O%_cp;zURTs5^h)L?#Cg)x6Y8k(WmMN?r<_@h z22etk7Uz*Yy!eAYamT?{o+b|YrBP|e!ina`60?=RlR}mf7NOg59~fd}YI zq|iQ%wr+ZLd+=z@Q};bU@ALdL2Ntv1W_{x1(ta$SFO&drJN;dzGa&Xn8B5<^K*%bM z-?P=w8HHJmFWY03)+rEt*JnR%xV&QBvBC9g9gy2`7W`k&LK1ths!(DSq+^Nit86dnAX9FrM$Jjfz#f5k`?%}OThb>&A8l6 zY)|05CAGWnUZhL+%x&uB_A8QKS!h+laPKWCUgW+m?FteTO{b(f_on8ACg&w$?Tf4= z!$6{9&ZyVszeY{)G*HrsPqI@E!o#Pkdr<`93d1}6Sa_}_CNmO@t2X^ELr&I;Z+t7d z@4S=_;H*CXWsOw><9A0*jh*)MA?4|dP2T`Jdi4*$+fs@@=kk2Q9WKUz zk#0}|tDsD4Zt%@OWlAhnM8T26C@V`jr&qb-55g{_fsT$PwV61u(HUh>MZ!Tvu8tlB z{BA4Gs2`mZJNAIsRRI4%m`~!^tm}AY_$JG`4%5#I12>y9zdU9o61mOrk#8cQ`l(#E9g-jpc)w&Vhj zZPgK`rQ4MhF9Wb>W~_T*o%jD%+}Z-2fQeN!r03<1?eu-@2y5mosw2001@0WXEX(a#^x))_ef9JHD7~r^L@m4h<~xD)Lt4 zt4k#q#UFC9E7F8(X~l`$%(k5JwrI&Tzq$;9-$||{{H8pyK+0`}WT$cDMLR7(eHotA zmI9bxdBZo1I23K22EJKd+sXY6(B;fSaR$$&M6*2_szays0s1he>HX)_6oY$!IzVdD zK^U*YzVQjy1ppfl2y8Ut0>YHQN80S$w{ZU;NNNbd&E@Z~#E)r?e6V@Q$&vJPLR2eYRYmwt*C(k_i6nJJpG2oPnuIh^ zT&}vZK!uul>JGv#dtrZIf<&G}kmNfM4HJP&;bK;s=Qqm#0cX8f z0lf9OoP)xM$wc-N034gHKNIeZ^DLS_a`v&=&>@$ZJU=Pjt@jz$17eq2%gT5_X($1x z=ybJD+^q4RlLvhMED%Z^ErQ4Y%%gR(Ldyr>LZ#3>g3Z(g1OorVP5)}iFRt2Lhlbf-Vubi1$$bt z=WQV?>$wdM5q2h`q}3t-8Y@6-UnyZqDMz#$8r!Rkei>Wyv)ZuUXhL2^G5F-?E~JmQ zjMKSCw%zE~CV$KQn>=zRA?@0r-CkqGHZx=DJ`ze-vNRv`2T8Wd3D8Rv`0L(j#9zDj z={&Ucp{LRjop#0P8{60F&Ul$`xSPlitgTs7M3}KoN!FZb!JdZT%biok7=Y|}%7Tgi z%=GK~c@R+;oV~fM!fRZTLM__h{a~!Zc-lc}MSY{DahmbUjNc`XZF*T%gOq2~wX_Mi&Qn7|-#^_ewqHfrXESuv zm?TkE77oPg6t0V>c^{?<7if~FpjAfbs#ZV@{#xPBcKiT?XyJ#rVvad~=}Y@ZQKAIA z;@(iV?8#8L(|UB-jnBN;{#h=oT=B- z7{_GLYJJq=Hua&lWf8^zzi@f<$WRZh{$vI%S&dHQC=e5-m)y5m9qrn&J(BQS(IR@h z4)vhThcLoBo6jYK>ZLe-52+8iOrV`$SLTICIrzzD$jqAVNJ-mTFyfY~*J1#$OKYEd zMt0=W$|H^NO4~9e^-jJPD_1l< Tf$|g2GQu<+HK-F_)vhrxeu