From 1528d727df8f071f51e06acb7052e1844d75a987 Mon Sep 17 00:00:00 2001
From: Daylin Morgan <me@dayl.in>
Date: Thu, 28 Nov 2024 19:24:51 -0600
Subject: [PATCH] add public key for algiz; fix keys for each file

---
 .sops.yaml                 | 13 +++++++------
 hosts/algiz/secrets.yaml   | 19 ++++++++++++++-----
 hosts/othalan/secrets.yaml | 20 ++++++++++----------
 3 files changed, 31 insertions(+), 21 deletions(-)

diff --git a/.sops.yaml b/.sops.yaml
index 95bdbbb..d916855 100644
--- a/.sops.yaml
+++ b/.sops.yaml
@@ -4,16 +4,17 @@
 # for a more complex example.
 keys:
   - &admin_daylin age10ft5tkswydhmassqeqzr8frpx6vc07g4rwam09rs8agvgfrsn95q9ml7u3
+  - &admin_daylin_algiz age10ft5tkswydhmassqeqzr8frpx6vc07g4rwam09rs8agvgfrsn95q9ml7u3
   - &host_othalan age1t4k04mjltmmhljnwugm6y4dejtu72vv4fd4anxxfsdpkapfnfauqe765gy
+  - &host_algiz age1ks6753mqsze8an0vx69gjglc7zwzjw7m0ccmzem30hm0jw0zr42qg0g2kj
 creation_rules:
-  - path_regex: hosts/(.*)/[^/]+\.(yaml|json|env|ini)$
-  # - path_regex: hosts/algiz/[^/]+\.(yaml|json|env|ini)$
-    key_groups:
-    - age:
-      - *admin_daylin
   - path_regex: hosts/othalan/[^/]+\.(yaml|json|env|ini)$
-
     key_groups:
     - age:
       - *admin_daylin
       - *host_othalan
+  - path_regex: hosts/algiz/[^/]+\.(yaml|json|env|ini)$
+    key_groups:
+    - age:
+      - *host_algiz
+      - *admin_daylin_algiz
diff --git a/hosts/algiz/secrets.yaml b/hosts/algiz/secrets.yaml
index 19cd42c..2ff8412 100644
--- a/hosts/algiz/secrets.yaml
+++ b/hosts/algiz/secrets.yaml
@@ -5,14 +5,23 @@ sops:
     azure_kv: []
     hc_vault: []
     age:
+        - recipient: age1ks6753mqsze8an0vx69gjglc7zwzjw7m0ccmzem30hm0jw0zr42qg0g2kj
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBMYTRybmgxWDUyY0wxTjVx
+            NGFMR0VYK3VxRXluOTBEanRTdHBUSXpnd0EwCitjYnVjQ01NODRkTk5aVFJRS0dL
+            bklpV09sSVpvT3RLTUh5SFZ5WERJcW8KLS0tIGtRNm9MZUVRdkZWOFpQNUlGM3E2
+            aXhNb244ZnBwNVRVNXRiNjk3NDdpcDgKkADRA29yycyKese4jPUPhgZfczyyX9kC
+            yb5cnQem8S2OIF/oUg+Kk61XQMS/gv4n7jRRkIW9tCHKkUCAVpwzTA==
+            -----END AGE ENCRYPTED FILE-----
         - recipient: age10ft5tkswydhmassqeqzr8frpx6vc07g4rwam09rs8agvgfrsn95q9ml7u3
           enc: |
             -----BEGIN AGE ENCRYPTED FILE-----
-            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA5ZUJhVVV1SFBEV1BNRS9D
-            TlhhMW1RbGtaam1FYnppcURlU0VVekRNTUNvCk50aW4yaWJpVTZPK3dPMWI3UjBY
-            L3k5c1lnejl5M1FxZC9TQU8yWVNZRlkKLS0tIEZHRXNLZG1McFFOeVpWUWtHYUl3
-            YWlZMzI4eUoxMW5SanJxSzVpRmJnQlUKPiZnIuBQ5E0A5yorjmoI2pehpMDQ7TNs
-            3IvyW+HUOnM/gCJqKBzR/Iqlk74mRKoDb5GuOiUpy7yN/1vrMdHQmw==
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAwWERkUEtSUHN1TkJEQitu
+            UG45NnA5UE9hYStlbVhUbTJ4ZlRmK1ZOS0JjClNaRjFtMXpaMC9NSHZWL1hieVNB
+            c1ZyNmZZMytHVW9kYXZ1SXl3Q1Y3dFEKLS0tIENGbUlHN2podUpvRC84S2U4LzJ1
+            VGJ3VDErbWtnMElrRDNpK2RZTC9MY1kK93dUrPBjgL6kpLBUS3+b14R+bm/AFE/T
+            sm7mxMUVNQVBIYshcl/WtD0yoYDHwW6uLc+KaCwhYDiMFz45zHcn0Q==
             -----END AGE ENCRYPTED FILE-----
     lastmodified: "2024-11-29T01:19:00Z"
     mac: ENC[AES256_GCM,data:J8jbVgwtqck2Sis03re93cVyFw1tMrPc+nnWmlDGoLWh6Jrxq8n+Eac7nsIxU/pZVnY+1x68lAz/2+YHPe8zxChz3f6O2ebscQaAo9M7gG76W2Rt6pDtrKXL7U2pDbjx0p5RwZQM/1tdeRbuUvJk/PYPJONiPVgi/bL6chd2Tew=,iv:brwJE8CZY0K6iRqB9ZUG1AwPfkISoSax692NZoyaNVQ=,tag:7/7V/jw/cgsCSJryrRMJMA==,type:str]
diff --git a/hosts/othalan/secrets.yaml b/hosts/othalan/secrets.yaml
index 3039fa3..3aef485 100644
--- a/hosts/othalan/secrets.yaml
+++ b/hosts/othalan/secrets.yaml
@@ -8,20 +8,20 @@ sops:
         - recipient: age10ft5tkswydhmassqeqzr8frpx6vc07g4rwam09rs8agvgfrsn95q9ml7u3
           enc: |
             -----BEGIN AGE ENCRYPTED FILE-----
-            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBCK3pzZ3hXdG40L1JyK281
-            NDJ4WWEyWFBPeERabXpSUXYzOWMxdWJlMGdFCmQydi8rbVZCUFBzM0NUbWJlZzZ3
-            anV6a2FCL1BRTWg2V1RBZFJXUUNRUEkKLS0tIHIwTzl5NEdoTWRaUm9LR3I1MFph
-            TFJjQndHQUJZdEZsSElmY0xDMTMvc2MKCO9BP1jccmFXqLjJQyk5a1/QC69/WPaV
-            xl8U7gFoiOf6ZIESk/fADVtnG+thEYF1vwEMI8ClUfs+8kWgwBqoGw==
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBjVE8wUndUbCszdlZURVdO
+            RWJETEVKOW54UUQ3RWNVeE9MYytnLzhqckE4CkhzTkEzcWNCYkFQaDVrbndleDBs
+            a3JSbVdjbXEvRy9kY0w0ZFd5VmJlZHMKLS0tIHVrM2o3Yjg1UVRzZUlzZzRlNjZ1
+            YzhMVG5QQXlDTzBuY0svQVFyQTRuTncKBx1qA5FoJfLIMuXE/SSVKnMKEAX6JTJ2
+            7j8+tn1thw2nIphUj8u4DlGTu2in4jfMXgs3Bp12F1r0J2LM/1amqA==
             -----END AGE ENCRYPTED FILE-----
         - recipient: age1t4k04mjltmmhljnwugm6y4dejtu72vv4fd4anxxfsdpkapfnfauqe765gy
           enc: |
             -----BEGIN AGE ENCRYPTED FILE-----
-            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBqWnBYVFRKMVJPVEQ1VlAy
-            Y000L1lHM2JyN0oyeTFROXh6OTVlTkc5RlVBCkdqU20yeGtVcWo3cmRoQmFKVG91
-            d3RQazc1UTJBdWQwUEdzNkNPYXZ3SmsKLS0tIHdzd0Q0a1pPeEJqS1Rrckt6aUdt
-            UmE2Mk4yV21TNTF2NjBqZ0txYThRRzAKgyWCwmF4mhX8lmfslmBf2UrcFqzT8m11
-            AqhJsG2LRU/9/6FXOYn2rYeCIDpTkPoQ4ez7F4m/zp+RvOc2eW3g2g==
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBIb0xycWFrTExMYTVtVmZS
+            Z1hKQlBaQmtVOVA4aUl6ZU1UYXNJbGhCeFY4CnovREUxM1diS2wxQ2pQVTJVVjRl
+            c1FuRVZnelBXYzNDVThRQTQxZEtLMU0KLS0tIGc0Qi9qbEs3U01aYXlXeTUzZG4z
+            Sng0U242THBSZ005MjJ4d0syT2RBNWMK8+a7qrx0l2T5qAqqrRpH0BTAsSlST5/O
+            HXvwlTZ3m/RITWVPfh9rr2tCYKZYA6a+afjVeQYs+FvGlTCuE1LmUA==
             -----END AGE ENCRYPTED FILE-----
     lastmodified: "2024-11-29T00:41:44Z"
     mac: ENC[AES256_GCM,data:4+H5OmCCTrMrkz9sLHcdwu8EFc+iS3MUTfhLgH6crfE0QSmV87b4JKQTVtdoYnzB8f2hRS/DeAImaLs68NQ/c7raLKwKmX1Bx2htV92MEOhoEjnZ6IbpCzY9FhrtRFjjBrg/nAuMpK0ktYW3w9C/v/jq/YEnP+pabkPhsUav8GU=,iv:LtBd2nj21ZCOXmvfbCIz/lvYC4neRk7ZTnY/rbJnATU=,tag:o9K/TxIp/NLmcvpXHYPHoQ==,type:str]