From 416aa476b3a5c3fbd4636cadef0eae03b21e8823 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Motiejus=20Jak=C5=A1tys?= Date: Wed, 5 Jun 2024 23:08:35 +0300 Subject: [PATCH] syncthing keys: add mtworx, vno1-oh2 --- flake.nix | 6 ++++++ secrets.nix | 6 ++++++ secrets/mtworx/syncthing/cert.pem.age | Bin 0 -> 1414 bytes secrets/mtworx/syncthing/key.pem.age | 13 +++++++++++++ secrets/vno1-oh2/syncthing/cert.pem.age | Bin 0 -> 1239 bytes secrets/vno1-oh2/syncthing/key.pem.age | 15 +++++++++++++++ 6 files changed, 40 insertions(+) create mode 100644 secrets/mtworx/syncthing/cert.pem.age create mode 100644 secrets/mtworx/syncthing/key.pem.age create mode 100644 secrets/vno1-oh2/syncthing/cert.pem.age create mode 100644 secrets/vno1-oh2/syncthing/key.pem.age diff --git a/flake.nix b/flake.nix index 3105b8b..1db1c87 100644 --- a/flake.nix +++ b/flake.nix @@ -183,6 +183,9 @@ motiejus-work-passwd-hash.file = ./secrets/motiejus_work_passwd_hash.age; root-work-passwd-hash.file = ./secrets/root_work_passwd_hash.age; #sasl-passwd.file = ./secrets/postfix_sasl_passwd.age; + + syncthing-key.file = ./secrets/mtworx/syncthing/key.pem.age; + syncthing-cert.file = ./secrets/mtworx/syncthing/cert.pem.age; }; } ]; @@ -217,6 +220,9 @@ synapse-jakstys-signing-key.file = ./secrets/synapse/jakstys_lt_signing_key.age; synapse-registration-shared-secret.file = ./secrets/synapse/registration_shared_secret.age; synapse-macaroon-secret-key.file = ./secrets/synapse/macaroon_secret_key.age; + + syncthing-key.file = ./secrets/vno1-oh2/syncthing/key.pem.age; + syncthing-cert.file = ./secrets/vno1-oh2/syncthing/cert.pem.age; }; } ]; diff --git a/secrets.nix b/secrets.nix index 39ce782..4e95889 100644 --- a/secrets.nix +++ b/secrets.nix @@ -36,6 +36,9 @@ in "secrets/synapse/jakstys_lt_signing_key.age" "secrets/synapse/registration_shared_secret.age" "secrets/synapse/macaroon_secret_key.age" + + "secrets/vno1-oh2/syncthing/key.pem.age" + "secrets/vno1-oh2/syncthing/cert.pem.age" ] // mk ([fra1-a] ++ motiejus) [ "secrets/vno1-oh2/zfs-passphrase.age" @@ -48,6 +51,9 @@ in // mk ([mtworx] ++ motiejus) [ "secrets/motiejus_work_passwd_hash.age" "secrets/root_work_passwd_hash.age" + + "secrets/mtworx/syncthing/key.pem.age" + "secrets/mtworx/syncthing/cert.pem.age" ] // mk ([fwminex] ++ motiejus) [ "secrets/fwminex/syncthing/key.pem.age" diff --git a/secrets/mtworx/syncthing/cert.pem.age b/secrets/mtworx/syncthing/cert.pem.age new file mode 100644 index 0000000000000000000000000000000000000000..86bd401857c6bc1375765064ada21d9fc48ab680 GIT binary patch literal 1414 zcmYk%2~Sf8003YW6@3#csGXu4^?)IzwC|PI!-&$_(gJ<0Jzi<61L^g8@mhLPk8OZD z!Ffbf5KvJ-nTpDxQxr6Y2`WwrZa8rs8**qEq5&0jE^f)PU-0Ei#|#t$u5rnyfCm+N4SG@cA^pg-6GkW~P3n zM&tCVB@U$w8aJy51yq0n<6yGozzwitQI>4+;6p>q9di}j0aHc9jpd-UcE^i{P^73hdBp+W2IOPHsS>j@PlF5kz zzR|amtrdBgT%N%VanW_C$D#JxI7V2CG5G%zd^jXvyDgB^sR` zITgXUZnGlGf*Py|QUG6vr=UuQ#?Q`BDJ*7tGDnbwTUlHf_1N@Mae_vHWSNXOS)t*4 z6dYzR#R0(#64?(4s6G-02DOQhn4=^M`FxDZcDZC+no)?NLMEH3N3?F8K%&+PXezxw z0Z>4ooT-5%7FH}IWXdFNzg=qQs#QL_jcjzfb>gg8#3ZJ{BJ7{df0jj@si$*D94HBv zfp)VEqKl=gM4*z7>sT%=0*hF5D;pMrSq99=OEi$_3F`n<3Ukxx0>q0ZWjM5uPbDHV zBz`u_=d~D78DkYkPfd5?OdZHm0~88{Bw=OlMo<>&6DTn`9E&Jk$J@Z-zjYKJrRv%$B3 z^<~icjMMx_4+>iEzHe;6`nBYDVez-HrlG+@afRa9Qyx_BRfgAeN=^@+++R?ME$fZx z-QV1Ov2MZ=@sU?wwI`Im?OB*}`!P08{?{hb5&&)iW{H?E;wuX!28~4X{>)5dS6A1K z3+fo38q^u?FVPP@-g)-xVZqQ2n`i=HEZIf*e3Vf2EuK36z^1LFehfJLVS`5gV@Y4n zjgFd&sk`O0wn>tp+LT!<7Cg^-QW^gA&dsWb+2mTWr)+{}OLgRhGaIiJh6AQsah5Ru z&Fr8&EjwcGKtuN+9`0?|tkB!#)(&#yC&$@SS~ zH)7Dfqos-v_p`i!;w3MReahM1EC@Wg<81ERX>IE@Nx`|D8%_l@#LSE=Aj$~w?Uu;# zhlZx^56&U>k++3>u_C(Z>g%0p+ZMNfb6e+gRyL2a7Hu0~H(gT5C!xi6cX*1rK8gNm zWMio6@_+*BjbatIHoa~xdRARqXo;eBTEC2*Y6=^Z5Z)j?Exfkj;hRnKZcpD_x)Ht; z<)L%0{#Mo7Kd~x0KQ+|Ks~howXzzYrc0PqTxVTD9uw;yP&<~xM`D^)HZvXl2eS2CK z^#IAYhJk~@we$gZORZ4k#V`lLn>NcuihKrYCVSauho`~jI~dGMZ~5A zUnvh<0}{j13E>rA7Zr6iwhmAT&AWGQ56vIWm~;R>0@|Jk3*W_VA0RZwo4RInuZ@@( zXqZ;M@cQ?83HyqvtQz=KL*SZ6q|S$Bm*bns!+SWkxx3zu>F%wb@7X)Or|L+3PQjkY z0D}3UbPKI~e0`n;(4MI8ZnI5$#*bf`6W}VbhMa%G8YS_UR>YcXy9f6TzOgQA4ftbg N!(mrPMaP_&zX6n8P00WN literal 0 HcmV?d00001 diff --git a/secrets/mtworx/syncthing/key.pem.age b/secrets/mtworx/syncthing/key.pem.age new file mode 100644 index 0000000..b6df4c0 --- /dev/null +++ b/secrets/mtworx/syncthing/key.pem.age @@ -0,0 +1,13 @@ +age-encryption.org/v1 +-> ssh-ed25519 9Chcgw P/bENwK3yfI5NdxdC8YVeganiy4ODUW0QWuiHAaFiBc +4JO9vzsSR2y2bVgjmpMhrgh6se+rSGLCSrJ/k9LX8yo +-> X25519 2W9lFxPwEqj5heJXYCmn8M7D6dWGEhsUWxCoV1HzXV8 +fjo4ojyQK3RjYb4h1TDQm/2uR8IfK3mYZbhCTf/NuIQ +-> X25519 KKo/aLMqNOAcM3tWohpKN0AZud8ubnTNGhFO1/42iSU +hsKLuvvDQEokwkeztfvveUb8xn+WBc2+qAd6s0ql/t8 +-> piv-p256 +y2G/w AmbXY6MfCS+PZQ54ToMsQH5K9NPqdKvunw5ClHX3Xn6B +IRUcptpLBi+8adms3blbwtn1hKD1zaYTQ8J50iuA8qs +-> piv-p256 jNqd3A A4p0ff23NFjr7qo/OjK7FzYWdOw/ZTqBlCr/kLgejrea +VQCQdtnh0x2hP0kianV8Ws5cRTbZSEmhzNog0qXNoU8 +--- 2SsYbgl5CbQXCn+0fo6jaKRAszd9pqAZKKvt4TXzCkw +](2Pˠ_o*ǍoVϡ{̯w!E{Fiί-XȵVD"~4!{>k8JLJ|_l[ :2!THI'B`15qT")Zgi &Z(Β {pY4'lu@.G.7ynyM s+a.wLUW< \ No newline at end of file diff --git a/secrets/vno1-oh2/syncthing/cert.pem.age b/secrets/vno1-oh2/syncthing/cert.pem.age new file mode 100644 index 0000000000000000000000000000000000000000..0e4fbe55041ab64fea32177eb2f58607ba298292 GIT binary patch literal 1239 zcmYk%iBD4p0D$r7tV)M2UYW-v1rO9(d(oDvlf53V=WF|V&;t*8yuQ93ucgO(^p$0s zP6gvI)~VAGQE?NGDYz{jxUc|IC&&ad<;v!*6QY6<$#h|JOP2iwzwdLR2n)g8(PSi! zh4E$KD9R?dbk-_HEaqb&9-ctJ6*EwER0*RDJ1lZ4>=LU{orLv>z*-oWS~co?h1cnJ zxP4kuYg6bPPPal6u+Y6Cd7cHABA~)p5|`pKhYpAN0gG9v*Q5RjW>y590+Sw+>!RV; zn(beRz)8ff)qr3=JID@WfXStE5Rgl0k#i$B$ElLTOv>Sjx^zkl-2_H75EIiTV}5}o z#8p}VG-1>EFceTgzEYmrXfHwJ31-wLcK=Us`BZw96jI`1UnrT+jX@zvsgE#Om;`BO zVj8%VAQWaz2-5}tx;SEVASSI_={- zMfE0DObNWic3G zp9GU3d@*2$O%6z86l!87t$-vUJr+h~U@68a0q8-GL2L`d))*Ru02jNEr&eGQLTHT$ zQ~*B?;!bhU;Uw*R!W^KpSS*G_8Vfo+4x3l!v4yy(IUr9mUHW`Dq~N%aLLKVG3{*T} z^k^j{{n4=c>c%B69amPOcWtLT&*{HZh8{F=yeyD>XGbF+MB|884#+EOq8(E6XqvzHuTRxJGWP1yp zZE5s(T3QX3+y6LUGt$jUZEYT0*|2`gitN$4qAG1pWVG@{_w(GEOUv0Ar@fj-S;M!7 zG#L!m((#_pmGwtgT{t!UyG7!nr*o&?nTK~)(J~WO?>l>hp2UQ9V+^bv=;PUS^F_r= z7rb?0bwL?-Qqe?9Yw{yMxl&04XiLAPSJh9tle2~~^z)X~n4cEz>phXn5^spgUVbm> zM5@2)zvuXR-5{G&J|)>EE~`+{Zgy>IMwc}aV;-xgljGp^y=QK>0JS&Z_V#KSjd$;Q zL;wBa++8(mkKL*nw>Nc{8kp9&zY82Y2c%t>Yd1GN+@1^MD5)zKA7-xhf2^PI!5i1J zu*U6;%yixCYlAnoojo#k*2JlE$?|ONjLJdF<+@8?d0j@&Vb-`so1>ph>}g$VoO3F3 z&(rtR8T+`$Y7sE2dB14qI_Q@ZFND&r$_(PSB`sO0Lj~QQ-nJ=gmIq5z&HjUl{XZnR zk!2ej!UWHD=vL){yuHm2PFBng1QZ)4KiZ9r&$&F(T9BA2>wZ3G(B3xOa`D(fFIPeq z0=>P@R(DUcB)Z&HH+Po5YJ2D5^n8? zqsP;;M91gvqTa>-bU#cs;fE_@PmcDrOj&%bwWiP6-L`2(x~*K-_u1{P7Phyd^5~wD$YCI!FxiL4c`BBGH_;JV~^l6S literal 0 HcmV?d00001 diff --git a/secrets/vno1-oh2/syncthing/key.pem.age b/secrets/vno1-oh2/syncthing/key.pem.age new file mode 100644 index 0000000..69e1f2c --- /dev/null +++ b/secrets/vno1-oh2/syncthing/key.pem.age @@ -0,0 +1,15 @@ +age-encryption.org/v1 +-> ssh-ed25519 gJrHQg QcefJQFfP1vJkz1dREfIfRuZqkaqyntwCPc0EWdTQXQ +51cv9xbVemaB6s3cDh/foeTOa1Gn7OMZYl2LPN8HaTs +-> X25519 tab2JA6NR2IMuCJQT040B+LJtfsEgpYiQPbwiyKD3Uw +vU0XGKX7FM6b34qorhw4ApqG8rqV988DAfohGg0otjc +-> X25519 YJjIzSMsUc3KAs439Sq0DbpmMGjS6joAxK9vA5YF9ng +r0YydtNFzwbUEphhDbFuRC4Zde8oFvPFmnLkIV9ttGo +-> piv-p256 +y2G/w AqFs3CHec2ascpls+aFekOHkZmi98a1YrC7aMPAuHZU2 +thP2ZpboICu3vjPskve1uVjthUl/JQR96/9bB9MfizE +-> piv-p256 jNqd3A Au8GYmvF5auV29DRZYCoT5aVXmxhZv/mvh1d/Hf7rwgy +uyV3GiiCNo1Xf9ADVWTGQPHj7cqBeskzMuTC1WjT5Pg +--- Sxj64ei2lKlvzI+LN2XWWesF4Q1DZQkMj2k62EX71U8 +kEО>.{Ɔr/2`0@kJgqݣBlgv (и(ҖIM^DD >ESqB;%$pDs *Q9%WQ{(KŒ;Ԕq0gǣے;N$Pv,k^)KD@=BTؔ~xI6ڑ_IkS[eXߥ [T!o + ( +C}r$a[[W*>*3NڳYUl6ܝvPFpu & \ No newline at end of file