Infinidoge/universe
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

secrets: ignore roaming keys for secrets

Browse source
This commit is contained in:
Infinidoge 2024-02-07 11:22:33 -05:00
parent 9cadcc1326
commit e48e6a34a3
Signed by: Infinidoge
SSH key fingerprint: SHA256:oAMyvotlNFraMmZmr+p6AxnNfW/GioTs1pOn3V4tQ7A
1 changed files with 6 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

8
secrets/secrets.nix
View file

@ -1,6 +1,10 @@
with builtins; with builtins;
let let
flatten = x: if isList x then concatMap (y: flatten y) x else [ x ]; flatten = x: if isList x then concatMap (y: flatten y) x else [ x ];
hasPrefix = pref: str: (substring 0 (stringLength pref) str == pref);
isValidKey = key: all (keyPrefix: !(hasPrefix keyPrefix key)) [
"sk-ssh-ed25519"
];
systems = { systems = {
Infini-DESKTOP = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAID7uX1myj9ghv7wMoL038oGDCdScdyLd7RvYdnoioSBh root@Infini-DESKTOP"; Infini-DESKTOP = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAID7uX1myj9ghv7wMoL038oGDCdScdyLd7RvYdnoioSBh root@Infini-DESKTOP";
@ -13,10 +17,10 @@ let
infinidoge = import ../users/infinidoge/ssh-keys.nix; infinidoge = import ../users/infinidoge/ssh-keys.nix;
root = import ../users/root/ssh-keys.nix; root = import ../users/root/ssh-keys.nix;
}; };
allKeys = flatten [ allKeys = filter isValidKey (flatten [
(attrValues systems) (attrValues systems)
(attrValues users) (attrValues users)
]; ]);
in in
{ {
"infinidoge-password.age".publicKeys = allKeys; "infinidoge-password.age".publicKeys = allKeys;