forked from Fachschaft/nixConfig
added keys so nodens can sign builds
This commit is contained in:
parent
6bf5b1db73
commit
d74be71aa1
SSH key fingerprint:
SHA256:zvrU0EwwaNK65M+AqL9IOTRawFq0JZ8QXBASxxGpxmg
4 changed files with 78 additions and 0 deletions
|
|
@ -7,6 +7,7 @@ keys:
|
|||
- &bragi age1lqvgpmlemyg9095ujck64u59ma29656zs7a4yxgz4s6u5cld2ccss69jwe
|
||||
- &lobon age12nz7dtc0m5wasxm4r9crtkgwnzvauyfp0xh0n8z8jld0arn9ea9qe0agvn
|
||||
- &nyarlathotep age1ktwclxa640l89le6yecm8v2z6hmwr4lusd6x9gyzamhv57887szqtqp59a
|
||||
- &nodens age1vzhru3nsv5ttx3scmxvdep7z29qtsacft48wj2pk2rtkrdywdyuswc3lqn
|
||||
|
||||
creation_rules:
|
||||
- path_regex: nixos/machines/nyarlathotep/.*
|
||||
|
|
@ -33,6 +34,14 @@ creation_rules:
|
|||
- *daniel
|
||||
- *totallynotadolphin
|
||||
- *lobon
|
||||
- path_regex: nixos/machines/nodens/.*
|
||||
key_groups:
|
||||
- age:
|
||||
- *nerf
|
||||
- *gonne
|
||||
- *daniel
|
||||
- *totallynotadolphin
|
||||
- *nodens
|
||||
# this is the catchall clause if nothing above machtes. Encrypt to users but not
|
||||
# to machines
|
||||
- key_groups:
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue