tstarr/dotfiles
1
0
Fork 0
mirror of https://github.com/starr-dusT/dotfiles.git synced 2025-02-19 19:27:31 -08:00
Code Issues Packages Projects Releases Wiki Activity

password-less ssh for torus to kestrel/bulwark

Browse Source
This commit is contained in:
Tyler Starr 2024-09-06 22:44:16 -07:00
parent 547070ca33
commit 45b63d0aeb
5 changed files with 44 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
home/private_dot_ssh/config.tmpl
View File

@ -10,3 +10,12 @@ Host bulwark
AddKeysToAgent yes AddKeysToAgent yes
IdentityFile /run/agenix/ssh/kestrel/id_ed25519 IdentityFile /run/agenix/ssh/kestrel/id_ed25519
{{- end }} {{- end }}
{{ if eq .chezmoi.hostname "torus" }}
Host kestrel
AddKeysToAgent yes
IdentityFile /run/agenix/ssh/torus/id_ed25519
Host bulwark
AddKeysToAgent yes
IdentityFile /run/agenix/ssh/torus/id_ed25519
{{- end }}

10
provision/modules/system/secrets.nix
View File

@ -27,6 +27,16 @@ in {
owner = "${user}"; owner = "${user}";
group = "users"; group = "users";
}; };
age.secrets."ssh/torus/id_ed25519" = {
file = ../../secrets/ssh/torus/id_ed25519.age;
owner = "${user}";
group = "users";
};
age.secrets."ssh/torus/id_ed25519.pub" = {
file = ../../secrets/ssh/torus/id_ed25519.pub.age;
owner = "${user}";
group = "users";
};
# emu secrets # emu secrets
age.secrets."emu/switch/prod.keys" = { age.secrets."emu/switch/prod.keys" = {

2
provision/secrets/secrets.nix
View File

@ -19,5 +19,7 @@ in
"nextcloud/password.age".publicKeys = systems; "nextcloud/password.age".publicKeys = systems;
"ssh/kestrel/id_ed25519.age".publicKeys = [ tstarr_kestrel ] ++ systems; "ssh/kestrel/id_ed25519.age".publicKeys = [ tstarr_kestrel ] ++ systems;
"ssh/kestrel/id_ed25519.pub.age".publicKeys = [ tstarr_kestrel ] ++ systems; "ssh/kestrel/id_ed25519.pub.age".publicKeys = [ tstarr_kestrel ] ++ systems;
"ssh/torus/id_ed25519.age".publicKeys = [ tstarr_torus ] ++ systems;
"ssh/torus/id_ed25519.pub.age".publicKeys = [ tstarr_torus ] ++ systems;
} }

12
provision/secrets/ssh/torus/id_ed25519.age Normal file
View File

@ -0,0 +1,12 @@
age-encryption.org/v1
-> ssh-ed25519 6UNP1Q pt+/kwmpzF1ZYUgjfOdR0tCws6Ir/x+WFWQ/u5u2VCM
6vGNiivMqZGMzxsSjiPM1JyuOOoKeINVc5M2EMc5IQs
-> ssh-ed25519 Fz/sQw MNIfMtMO3WeP03UdvEs3Ofb+1Ga4FYB7JHzgQmVQRhw
BnOd8W5SFVtnG42y5z1qWxdBmd/x1bX5K8uz+eJcoEc
-> ssh-ed25519 47GzQA xo6VwtD5f/YQgM8DL/ZyyNNZdO76sy2ECEdyjeYIuBk
eeHqX9CnkOCCPGHGjiHdyPqVeM+Rbei/xyzpfGnB6lo
-> ssh-ed25519 wcI7nQ oviiO/RofHtg7GOuLOgnF0AqTtMvHM/jkaRq2zsPYn4
7/HQNRTfjZDiDg1rzrAHZ5Ji/Vc/qsHwiioeL5MNkW0
--- 2pyP4F8yE+BR1xK7mqSC5NdEB9sw/+fyHmrtg3yyiYQ
P¼ì@“Ð¥}TV=Чžk÷&:Âr<C382>‰}Ú¦whq‰]wg²\vÝôA#?,<2C>iÎòBdÁHróõ\R€Û:µíÀÑeè!è>æ“Én´5vô…<C3B4>ÍÑu„í°ˆ&¢h¢ YO+Œ¯Zˆf„LT¬«!¸NFØ rHªŠî}ðBà“ž/&ëÇH“ùùvÝ)Ë7<C38B>oï)¤Hœ 
˜.ù¨>~7dÑ%[nKâyÚŽòèDlÚ{ìDÃÖߘڢˆnS¿Ü¿ðËãZú®kú/ÉO~¬¥)×öWþ¸h¬¯j€F˜ˆbò©!_qîÌ ÆÛiÕü· ³«d†¼W_ûŠQ!äÀ/<2F><75>‡_•À« V%®›ÖÐ÷É?'&qS@[!D \PÅSs†åüdJ=1bAżÏ"Hñ,V™?&ÀSr>®éÒRKˆ” +맔^é åš¯ÄFŠ]©¨­ÓU<C393>b-L¬ŠÃY(¹¹•%Wî?Sº(ZËõõ€€!ìe³æþ<C3A6>7¶{·‰‰frºp<>ʽ„ƒ¯â<61>Œhf“RóZÖ¸¯|¶L+Aö^9

11
provision/secrets/ssh/torus/id_ed25519.pub.age Normal file
View File

@ -0,0 +1,11 @@
age-encryption.org/v1
-> ssh-ed25519 6UNP1Q 9MKiiHjqqjYBm+DsgXcpzu4mKdICA4OGpC9KAnYJMyk
/vOtXkev3nXDMlrNx1yDmTf8gLPtSwV+QJfoqs6HVyg
-> ssh-ed25519 Fz/sQw /+NdN1YZtM9t32u6E29IbEQZDOXRt38ahsjoC2g02lU
c8etDhHvv6F9t/mX264vGa3CDkbpRyAW7pEMEj3KR/M
-> ssh-ed25519 47GzQA Uhj4JY9UeGLn8MjK1uqvIsoq69RWY0UeKqeT+sEd7GA
8KmEBgq4CE/kGY+PRnGLEEujIhvdmNGHSViAup4pPJ4
-> ssh-ed25519 wcI7nQ mCmIzNVQpKtTz+U7GF1ux4vMQJfXH7+p4iZjSPmRNmw
/njWvPmXafs5Sz+FlSmnh049LZMUQHMLrjbIwVxos88
--- Ee6yH5YKBP97rw4LVpHDKjPPoPeff2xMDigrg7PMXYU
ŠÐ·Å\¶<1E>´1+˜Áã…ؼi.iÑjJëÄmoØ:<3A>_ Q®]°Qžx€ököõ#‡äFòdßA»T<>E ýeœ~O^%¦^ì“ÈB7±¦ÜWg¯ƒ4ic ´Nèó[!;—~ N×ão‡ñÆL<':6š“òJÎ