tailscale auth on vultr via sops

This commit is contained in:
Cyryl Płotnicki 2022-08-20 09:26:50 +01:00
parent 534d13b61c
commit 91ba6c12bb
2 changed files with 47 additions and 35 deletions

View file

@ -5,6 +5,7 @@ keys:
- &skinnyv-target age1mpgtj57e256q9nqz8jt0jt9ntxrldu0p7aunxx3y5vnerfz04vqqdst2gt - &skinnyv-target age1mpgtj57e256q9nqz8jt0jt9ntxrldu0p7aunxx3y5vnerfz04vqqdst2gt
- &bolty age1msgz4lzqj3wd4yu3mfgxyl5gz0y94al59njv8fqu7s0dvwt9yuvsctlhvu - &bolty age1msgz4lzqj3wd4yu3mfgxyl5gz0y94al59njv8fqu7s0dvwt9yuvsctlhvu
- &vpsfree1 age10f7djsyu5fwew2l2x89a4st4qw4xdkyr3z7qd8frs54yqz7cayvqruttla - &vpsfree1 age10f7djsyu5fwew2l2x89a4st4qw4xdkyr3z7qd8frs54yqz7cayvqruttla
- &vultr1 age10f7djsyu5fwew2l2x89a4st4qw4xdkyr3z7qd8frs54yqz7cayvqruttla
creation_rules: creation_rules:
- path_regex: /[^/]+\.yaml$ - path_regex: /[^/]+\.yaml$
key_groups: key_groups:
@ -15,3 +16,4 @@ creation_rules:
- *skinnyv-target - *skinnyv-target
- *bolty - *bolty
- *vpsfree1 - *vpsfree1
- *vultr1

View file

@ -1,6 +1,7 @@
tailscale-key-foureighty: ENC[AES256_GCM,data:Cm8//YQ60dDG5jvZPYHkG3XLJs0daDy+UocGDHdCO30Nd1oWJ8xAhw==,iv:sT5gbrlM3Id/XMD9S5v4tsohoRJpY3gyFVzKNQSYOYg=,tag:fSiq9P77oj9ioSQYe82u+g==,type:str] tailscale-key-foureighty: ENC[AES256_GCM,data:jZ1NOXHIHO6kHv7yIUEv4rJwmyl2QO/K0UL+6FySYppp6D4lKNhOfw==,iv:sT5gbrlM3Id/XMD9S5v4tsohoRJpY3gyFVzKNQSYOYg=,tag:WRHf+zZsdU43oPEIdq725A==,type:str]
tailscale-key-bolty: ENC[AES256_GCM,data:G85IiVD5SCZO+G7FNocX1Wke3QlNcAytpob2uqi/0fAeQkVBcRB9phY=,iv:YXSqpgPaMUOe/D7i0jHJWbzRp+L8lk8kQQXdkL1/wYw=,tag:5GM0MLprd2hUX6LF9zi5Og==,type:str] tailscale-key-bolty: ENC[AES256_GCM,data:HPRmibuEyvmYsUf71YnPR/KFThCJP6eNdUyclrBq5/W0+izEbsdMGpc=,iv:YXSqpgPaMUOe/D7i0jHJWbzRp+L8lk8kQQXdkL1/wYw=,tag:E1EY5ffxB3VMgda7f81qCg==,type:str]
tailscale-key-vpsfree1: ENC[AES256_GCM,data:KBLQFeKkWaShA1bVl8ToqORMzGvjxH6pUGQDnIq/Ow2LUVESxlkv+78=,iv:S99ZR3sRxV7On/zaldg41GL3RpaO17i94GDSOmzlsvU=,tag:eMp0wwCEDT7zsDU8y7tdSw==,type:str] tailscale-key-vpsfree1: ENC[AES256_GCM,data:K04yMBb3/wCoi5aLmaEB7MLTqDEZ0qXUtYk+rxHihM5+igoY4XiLwC0=,iv:S99ZR3sRxV7On/zaldg41GL3RpaO17i94GDSOmzlsvU=,tag:VJkCtyiKaYWWDnDGI6UAzQ==,type:str]
tailscale-key-vultr1: ENC[AES256_GCM,data:H5sGt9VjPP5c4vGonnmk7444TrL74CGDwMdH3ygKGEHG+jVpLXCGRw==,iv:QsKL4NqOUTCWSIxlaXqXbfzhFcAbJTkYXjkc1eCJv8M=,tag:Vjmp0z3H4FbPDRSD+ml12Q==,type:str]
sops: sops:
kms: [] kms: []
gcp_kms: [] gcp_kms: []
@ -10,59 +11,68 @@ sops:
- recipient: age1qpxvqf2254vynw7aah2pyd8tm0lqtfqr9maguewdj3uqjp8smqvssjp43n - recipient: age1qpxvqf2254vynw7aah2pyd8tm0lqtfqr9maguewdj3uqjp8smqvssjp43n
enc: | enc: |
-----BEGIN AGE ENCRYPTED FILE----- -----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBvbWNMcUF0VXRrTUNHTjBy YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBZMjVsd2U4MU1VbDBBdHZn
aUFTbDlJeXl6anZZZXptY1VRWUQrWXhRc0QwCjVSa1hTSDFYZlpyUXdwS1o3MWs3 TDNDSVQ2elZSZHgxSDd1NEdGT1FuVytZUTBRCnJrd0U2SUdGbUN2ekNMYlhiVnpT
VVk0ZkJlVjBuNjhQYm9aNjB0U0M1K1UKLS0tIEVVcEZUYkY2aGl4UDlxQWJNSXFV ckl4OENFZ2FwZ09kOS9WTkpLQzJwTU0KLS0tIDFncFBZWGRqUnVpY1BBUUFOc05z
OFl1a3graFVkWmhPU1BTVzZySkh4N1kKC56eUtbVaafAtadRLeT75s76+x9+YeM/ eTcrZ05obWp5dmdTOGVzbWdSUU52U2sK6mjzzfhX0m16S1s8SEzG2Mmx8Wzh/LUx
oa2wdbHlW5laNjjxp5rpVaCKKTCVaUS0DyihD7U8D+6f3o988JEBhA== PUpqlsGfDdZsKa1DK5azRE8wgEphwMdZ81T8JQpmqZN81Rokzf1vgQ==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
- recipient: age1s3z2rfske90kt93a3z7twp6kew6mqd08sgunupym0gpmuh8ezqqscdrv7m - recipient: age1s3z2rfske90kt93a3z7twp6kew6mqd08sgunupym0gpmuh8ezqqscdrv7m
enc: | enc: |
-----BEGIN AGE ENCRYPTED FILE----- -----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA4Q2hubWVZcDdLcEdTc3Uz YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAvZXVHbng4cW8yVlgyaGwz
TnJ1eGlLeXZiWmhDTXdlU3RDejZxRnVPZldBClllSFNnYVJIVE5zQnhwWU5tLzB3 VDNSU096VHZkZnpTZEdkN1R0eENFUWhjZUhJCkJiYmJ1OWJvS2NWWlJVMDA3ZE0z
UmRONnFyMkJFUU0yNjhUT3c4bHBzcTQKLS0tIFQxbmI5b0RuRSt1RStPc3N6RUhU RFR6NGMwdUZYZHlxTnNReVdDREZTMmcKLS0tIGVxRlZ5aDdVWStTR1liUTA0TnFp
UCtkOFo1dDB5dzZYSzN3TFBRWm92eWMKpUpZ+RpUVsBBTnryX+pUUTdgB+2qOJAG Z2t4Q1FiQTVsK2ZObXVWMTFHenk4L2MKBmW+v/ns+TB6liiFzp2sDARnc1FefZU0
CvV0LiblfbwQD3EAWLyRfS4S2/rliPVJKsrr9cy2thJhOtaQUyKKDg== HW/Aqop2mHQHqH63HP3lakxjzfU8CBpFfsolTKsXuS1sCbDnWgSlag==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
- recipient: age1p76577kkfttxxj8ckwwkhyhhz7qq2d7qf2lenyaa0g3v2gd3eecqhhf9jn - recipient: age1p76577kkfttxxj8ckwwkhyhhz7qq2d7qf2lenyaa0g3v2gd3eecqhhf9jn
enc: | enc: |
-----BEGIN AGE ENCRYPTED FILE----- -----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBkd21veVpPbnZ6YUxlUlB5 YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBoZ2dwcWZSaDg5MlVBVjFs
d3NlSzduYmFFUjcwUmFjamZONG83dit0NFcwCkswWGRnQmpoU0luQmNMNzdnVkRE TkpwdHduVjRMWTdNSDNpbXBJU0FxS1BxL3pVCitma1hQdmthME9ycTR5TytycUQy
d29EUURyV3I5QXhBV0wyejRXTzBRdWsKLS0tIDE1WXJndkRKUlRzUWc2WFJmbURH VDVMdEhqaXp3eXV6ZGZWREpteWRQWUkKLS0tIGRNTXd2RXNIbGw1U2x6R0VnWnpP
UVV2YWhxdWZ3NXROdVdXNUpHUE1vbUUKtoG0iJu+F8kmC+QqB6L+zmZ4TTBra+Yr ZER4Skw5S000VXVxbVlUNlo1RnVsUDAKYnSaBNYklF9NI+VMK1Toy06YV/FgLpH1
xjT8Oxb14kG4XU2tonldLfGqV/AIGVwnWCivo0fU0cgVs0trN2FoYg== 82sBM0M8KngECKSV1BO5WULdn9A3k4bbnjXaUKD7YGveElpN0KNWag==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
- recipient: age1mpgtj57e256q9nqz8jt0jt9ntxrldu0p7aunxx3y5vnerfz04vqqdst2gt - recipient: age1mpgtj57e256q9nqz8jt0jt9ntxrldu0p7aunxx3y5vnerfz04vqqdst2gt
enc: | enc: |
-----BEGIN AGE ENCRYPTED FILE----- -----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBxRVFrRElTRXhQcFAwYXZh YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB2Q21OMnBoOG1DaTA3cEZG
UFNRaUdxbUk1NXBJeENUVDdyWkE4YjJ5U1F3CmczTXV4QXJ2b1M1N2VSZ1M2VTI1 MUsvUUk5c3FrWDdNR2oxQmRVOHBUYjV2dlhFCkozWXhQWkRkRFZCbGNia2RHWkZp
dEFZV0pUZFkwQ2d5YmdCSFdFMTZQNlUKLS0tIDR5Q1ptcGdod1hsci9iWUhpY2pm QmgvZjJjamEvbC9aQUpGZXhudXQ2R2cKLS0tIDdPdHhKaURLQTFEWHh5TFhCYURn
NGxlOXd3djBIU0VLSzUzNmNydDRaNTgKp4FeqacIMOFNYg51rfZZs3WlOVURyuEB Q2gyUnVEOHE2VGNiSFhRYzgrSGN4Y1UK5YPdSJphVBSI6kdZt037BQPPrsiBeK/Z
xCBpRHaQ2OM9F/ZutJXjxmRl4YQkpMY2/kdH0yPr2+SAYdG8rgo/kg== c8yJ2DcS2NZsTqVjGKt9rcD34fGl3z+GUW7Ef2vFCD4PbpzDIJ7W7Q==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
- recipient: age1msgz4lzqj3wd4yu3mfgxyl5gz0y94al59njv8fqu7s0dvwt9yuvsctlhvu - recipient: age1msgz4lzqj3wd4yu3mfgxyl5gz0y94al59njv8fqu7s0dvwt9yuvsctlhvu
enc: | enc: |
-----BEGIN AGE ENCRYPTED FILE----- -----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJbUR0amNtT1hpZGRVdi9n YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBWTXEwNmNDeUpjOVV0MzQy
M2ZoSWEzQmNrL2NiS0FrNzJQZTZTTndzRUc4CmJZSDhHcldBSHZBQUVuYkdLQzBE a08xMDc0VlRqQjQrbGFJZUUxc1RKME90UFRnCnIyMzcwcG42Nk54ZHNOY0k0Y21h
dHRaYlRpRGVtUnNicVluQUtqOFB5amcKLS0tIFI2TVpXWU9TbjlaYlV4U1NpQWRC N1pwY2xwZ3N5MjlBTEY5aG00TXV1VUEKLS0tIHVxY3RWMnJacVI5S3NBYU5oSVRH
ZmhsZjEwc01KZ2FRSktGQXQwR1R4cVkK480nhH7yy5EoJ/7yIMq6WeWMlF94bglw Y0xWMEZrdnhKbndoNnlrUG9xMXY5MGcKEwIjcX8NEKOLOP+yvcnBrZCw8QpXnWay
AJIx9OlESZpa+5rm7M1a2U76fj1FXQpKrTRjQ8hhgj3wqJVfZ2QLsg== Vh/LjGH67FS++Dqoz2h9U370xAuc1xvKAzInQzOATRPL/FXDS2OiCA==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
- recipient: age10f7djsyu5fwew2l2x89a4st4qw4xdkyr3z7qd8frs54yqz7cayvqruttla - recipient: age10f7djsyu5fwew2l2x89a4st4qw4xdkyr3z7qd8frs54yqz7cayvqruttla
enc: | enc: |
-----BEGIN AGE ENCRYPTED FILE----- -----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBiRUdBbzhPTytXYzZmUmVY YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBXN2c5bEVtVW92RlRLYnU3
U1JvQnQ1RE0vSG5QMUdZQWIvMzkvNlJvWFRzClJHcUFVVnJ0S1o0eW1LNDN4UG1Q L3VMOG05SEk3N0puNzdBOFkyTlFoWXZiMmhJClpybnpvV2M1d1pUV0pFN2hWZUlQ
YTlTbFlXMndKNTdUdVdQZ0FwanJ1d2sKLS0tIDBieGJLWXVNVW92R1JHTFd1TEhV OExuZWEvd243RG1GU3NUcklyQVpISmsKLS0tIFlranRrajNBUmFEQUZZMFlLVXFa
c0YzUHdJWkEvTGY1SUNoaHAyOUZuclUKQn9G62wKQuv09ZnQ4jQ7uVkO96Xl+hNK eWgzbWhvRWNTZ2Q1ajg1RnIrZnNyWG8K4f/BpRtxWKpGUasDicwGUgCKig0a7ESx
de6EPqFsRD8v5RB8MnbiMruV3ED0PBpvsqHMxah2d18zb9gfSN7rYw== kKg+cWkgiSHfQX872CZkjFssLewFtsKmdjwr/z0QSbathj5PkNJfvA==
-----END AGE ENCRYPTED FILE----- -----END AGE ENCRYPTED FILE-----
lastmodified: "2022-08-19T19:38:16Z" - recipient: age15zh6dnh2r82t8aguvp230c8nsl2jwz65ezhmhkfpeeuanp5ajs3smu4ys3
mac: ENC[AES256_GCM,data:d7J4TJYfTgwSArXOcE4705rAkNkYUSlqAqCeZ3f+uas22vylcFXCULzagy9LzJpU+y2z2R/8gkvu16XDUDhJvwivuWx9UgF5MtZCVoP4ndbiO+wedYrWAAxdE7012+UF3m5yLn2xRjAs0J+8FBq687VuuaMTsVYAEMoGsIUzOaY=,iv:veH/+czRysJjqUVh3HfbpqY1uQVzG952SoneSCGEj6c=,tag:pnm/xURkNT13HZDvwEtuCg==,type:str] enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSArSkl6dU4zSHh2eSswaEd3
KytDOENPQTNaUkE5QTA2WHFKM2JueGNBbWhFCnZkTEpsSk9hdnlQVy9IV2o2MlVU
WnVnSmIzYlVJMFlzVUt5a243NTBaVk0KLS0tIFA3Nnhlbk5Hb1Fpcm9NMFhjcVc0
Z0lKclEwaTRRVG1HbHBUZWtnR1ZJUmMKA0Q3DG6FAK8RJ0eKP00THVl8eFlCvqjJ
IYyVrP7D+eHXVzEnBIeS0R12aroaD2LWGHyD+SqIGVGgLjdM1snlyw==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2022-08-20T07:59:31Z"
mac: ENC[AES256_GCM,data:X5kdwrJKaIQF1HlZpQqu9b3iNqRrtx8CLmPnOrX87B4bff3XZPUJf4fgbOBwPKjFNYnQ3UiIoCcLTEqaWG9X1KzZM2iuPYMnMJLdau4Hy9zcLeDFQxK5vdNJi0Ja1/gj6whWBz9I1UL5pICGGt47K7G1htoGxR4lyyZ0AyBgKtc=,iv:WWcFoqcg4t94E8b2+9YXYhRV4lEQ1awde6TtQCiBRmk=,tag:2ZF41+p10zp4HPgXd8nL/Q==,type:str]
pgp: [] pgp: []
unencrypted_suffix: _unencrypted unencrypted_suffix: _unencrypted
version: 3.7.3 version: 3.7.3