tmayoff/.dotfiles
1
0
Fork 0
mirror of https://codeberg.org/tmayoff/.dotfiles.git synced 2025-12-06 08:48:34 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

New encyption scheme

Browse source
This commit is contained in:
Tyler Mayoff 2024-09-30 20:09:37 -04:00
parent 1a83d00b25
commit 530337679f
5 changed files with 24 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

9
.chezmoi.toml.tmpl
View file

@ -1,5 +1,4 @@
encryption = "gpg"
[gpg]
symmetric = true
args = ["--batch", "--no-symkey-cache"]
encryption = "age"
[age]
identity = "~/.config/chezmoi/key.txt"
recipient = "age1c4y054wg5yqde4nvsfvx20tj9k3a5adwxc48zye0udsxe2p7hfws96tnjg"

1
.chezmoiignore Normal file
View file

@ -0,0 +1 @@
key.txt.age

2
dot_config/home-manager/home/common.nix
View file

@ -52,6 +52,8 @@ in rec {
unstable.nix-output-monitor
# dotfiles
age
chezmoi
# backup

10
key.txt.age Normal file
View file

@ -0,0 +1,10 @@
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IHNjcnlwdCA5Sy9KanQrcTczVnAyWVdr
cXJrWDJBIDE4CmFBaTExUTdBbWdmWTF6b2IvSElCb1FzQ0I5UUZGMUxobmxTMUtQ
aS93UDgKLS0tIFRxaDRnSnJoWmpJTkRxRlJPTmlTWUJHV25kbFJaeHpaUkFXZ0tS
bmc1ZGMKX/iyf4oIQmn+X1LT5bwFVBI5TxXdX5rSLodi5LFWkBnG/YsUn/EL0Lun
E6OdaaEXXIPMoVZO1gjDEf5NVaVkBI92O00+09EeAW8RaEaF3mVIcO7j/GHDaCEk
iq5g26lPxTp6V/jVRpqKmhxawrlKyc7nHCFMJoWtFq3hjxjV1pzFYAf+askvBzAS
0z0zwL9keIdpzok3kjO32Rkox1DpfQougE+7JpICW7mGpxovB+3L/MGLYNzXVVYR
ueQBmEXnLkC9ubAAFIHPE3iHFkgLTNLBGaiv6TeP9DJcQZM=
-----END AGE ENCRYPTED FILE-----

7
run_once_before_decrypt-private-key.sh.tmpl Normal file
View file

@ -0,0 +1,7 @@
#!/bin/sh
if [ ! -f "/home/tyler/.config/chezmoi/key.txt" ]; then
mkdir -p "/home/tyler/.config/chezmoi"
chezmoi age decrypt --output "${HOME}/.config/chezmoi/key.txt" --passphrase "{{ .chezmoi.sourceDir }}/key.txt.age"
chmod 600 "/home/tyler/.config/chezmoi/key.txt"
fi