surtur
62518f7ad7
the workflow is as follows:
* age is used to manually encrypt e.g the sops keys file so it can
securely be stored in git
* homeage decrypts the file and symlinks it where sops expects it to
be present. decrypted, which it will be, but it will in fact be
residing in $XDG_RUNTIME_DIR (which *should* be tmpfs) and only be
symlinked to $HOME/...
* sops can from then on be used to manage arbitrary secrets as usual
6 lines
118 B
YAML
6 lines
118 B
YAML
---
|
|
creation_rules:
|
|
- path_regex: ./*.*
|
|
age: age1nt7a9nsgwsf7c9x8yx3qu8w24svz02hpfuwtmk8dazw6j6lh33hsgv8erk
|
|
...
|