- Services: Added Part-DB

- Implementation: Added nix-sops based secret version controlling.
2026-02-07 17:31:23 +01:00 · 2026-02-07 17:31:23 +01:00 · 5e68e6ee96
commit 5e68e6ee96
parent 99a0ed1719
19 changed files with 258 additions and 86 deletions
--- a/.sops.yaml
+++ b/.sops.yaml
@ -0,0 +1,15 @@
+keys:
+  - &admin_christine age1746rvsvsc3snxfl7cndm222wd5kck4aqj3x7nednlegq0gdjhfcqx0qv7m
+  - &server_songsheet age1es0va2hjshgsv8tfyfjw6sfu6dm7q9u6wza3t9nevlakxzmxr4lqn2q7r6
+  - &server_traefik age1rdcs8y4fjfyagwt2q9599ax329thceersh6dg2f0p6nsghm5xufq00qu0p
+creation_rules:
+  - path_regex: nix-system-configs/secrets/songsheet/[^/]+\.(yaml|json|env|ini)$
+    key_groups:
+      - age:
+        - *admin_christine
+        - *server_songsheet
+  - path_regex: nix-system-configs/secrets/traefik/[^/]+\.(yaml|json|env|ini)$
+    key_groups:
+      - age:
+        - *admin_christine
+        - *server_traefik