# This example uses YAML anchors which allows reuse of multiple keys # without having to repeat yourself. # Also see https://github.com/Mic92/dotfiles/blob/master/nixos/.sops.yaml # for a more complex example. keys: - &bitwarden age14grjcxaq4h55yfnjxvnqhtswxhj9sfdcvyas4lwvpa8py27pjy2sv3g6v7 # nixos age key - &dominik age16veg3fmvpfm7a89a9fc8dvvsxmsthlm70nfxqspr6t8vnf9wkcwsvdq38d - &dominik2 age1v6p8dan2t3w9h94fz4flldl32082j3s9x6zqq7u5j66keth9aphsd6pvch - &git-server age106n5n3rrrss45eqqzz8pq90la3kqdtnw63uw0sfa2mahk5xpe30sxs5x58 - &web-01-server age1y6lvl5jkwc47p5ae9yz9j9kuwhy7rtttua5xhygrgmr7ehd49svsszyt42 - &web-02 age1gjm4c3swt8u88e36gf2qlg3syxfc0ly94u64c42f2tsf24npw4csa6e4fw - &web-arm age1ylrpaytkm0k5kcecsxvyv5xd9ts4md0uap48g6wsmj9pwm4lf5esffu0gw - &home-assistant-server age1ezq2j34qngky22enhnslx6hzh4ekwk8dtmn6c9us0uqxqpn7hgpsspjz58 - &ldap-server-test age1azmxsw5llmp2nnsv3yc2l8paelmq9rfepxd8jvmswgsmax0qyyxqdnsc7t - &testmodules age1zkzpnfeakyvg3fqtyay32sushjx2hqe28y6hs6ss7plemzqjqa5s6s5yu3 - &ldap-server-arm age1jyeppc8yl2twnv8fwcewutd5gjewnxl59lmhev6ygds9qel8zf8syt7zz4 - &fw age1wq82xjyj80htz33x7agxddjfumr3wkwh3r24tasagepxw7ka893sau68df - &fw-new age12msc2c6drsaw0yk2hjlaw0q0lyq0emjx5e8rq7qc7ql689k593kqfmhss2 - &netboot age14uarclad0ty5supc8ep09793xrnwkv8a4h9j0fq8d8lc92n2dadqkf64vw - &mail-social-grow-tech age1gtulvdj4aclpfhk3mmzvpz9xysccxhvu99x6ayaqlj8m44ehffgq6zuc5u - &web-social-grow-tech age1md4kkdf08zmagqv0yzza8h75f80c9j8np2p6eqea6fpa94szd5lsltz9va creation_rules: - path_regex: ^[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - path_regex: hosts/nb-01.cloonar.com/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - path_regex: hosts/nb-new.cloonar.com/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - path_regex: hosts/fw.cloonar.com/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *fw - path_regex: hosts/fw-new/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *fw-new - path_regex: hosts/fw.cloonar.com/modules/web/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *web-02 - path_regex: hosts/web-01.cloonar.com/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *web-01-server - path_regex: hosts/web-arm/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *web-arm - path_regex: hosts/mail.cloonar.com/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *ldap-server-arm - *ldap-server-test - path_regex: hosts/mail.social-grow.tech/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *mail-social-grow-tech - path_regex: hosts/web.social-grow.tech/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *web-social-grow-tech - path_regex: utils/modules/lego/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *git-server - *web-01-server - *web-02 - *web-arm - *home-assistant-server - *ldap-server-arm - *ldap-server-test - *testmodules - *netboot - *fw - *fw-new - *mail-social-grow-tech - *web-social-grow-tech - path_regex: hosts/web-01.cloonar.com/modules/bitwarden/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *web-01-server - path_regex: hosts/web-01.cloonar.com/modules/zammad/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *web-01-server - path_regex: utils/modules/plausible/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *web-01-server - path_regex: utils/modules/promtail/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *git-server - *web-01-server - *web-arm - *home-assistant-server - *ldap-server-arm - *ldap-server-test - *testmodules - *netboot - *fw - *fw-new - path_regex: utils/modules/victoriametrics/[^/]+\.yaml$ key_groups: - age: - *bitwarden - *dominik - *dominik2 - *git-server - *web-01-server - *web-arm - *home-assistant-server - *ldap-server-arm - *ldap-server-test - *testmodules - *netboot - *fw - *fw-new