New encryption method compatible with users without creds

This commit is contained in:
Brian Zalewski 2023-01-26 03:32:23 +00:00
parent 8b487823da
commit f86ee9f9d2
28 changed files with 79 additions and 51 deletions

View file

@ -3,8 +3,9 @@
### Restart GNOME ### Restart GNOME
if command -v gnome-shell > /dev/null; then if command -v gnome-shell > /dev/null; then
logg info 'Reloading `gnome-shell`' logg info 'Manually reload `gnome-shell`'
killall -3 gnome-shell # logg info 'Reloading `gnome-shell`'
# killall -3 gnome-shell
fi fi
{{ end -}} {{ end -}}

View file

@ -0,0 +1,18 @@
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBiWGdFUGtPeUZWejc2MlQr
TnYwd25UaUx2UWJSMnJKWXJDaVpROUhKY0hnCkJ5UDhocGRoZTNWcDB0WFVmQkZt
Z1d6NXVGV0plU0IyUS9iaVM4WXNQaTQKLS0tIGpKKzR3dnJ6bFhiQzFiL0UyZUxN
SDhhT0tFVGNRdGNCZFR6eDBCdStHZEEKAhecUqQjK8n5Ws1cFMkCn2Bf4ouCzQ3d
gxWv1bqdvNKU2kj6IYpiHBSfYCcOCbOhpr17+fckmlEoCJS/YwQ+n/U+G8HiMPRL
sV3/RN2zGR4ZmNYVYlKd1rUEwr6KbnWE1cqtUbMWG3Qom80xbz3l7tdtsNDX7Els
xUfQuWbUc7tTGSNjxOP0qPzdbLtF69cGn3mE4+hLeSAi4mMt2zmuoqKT+APBHpF1
QGenSAqfTpuHdRfLBQ5q59I42pq/sc2n9so+/EZkGrkldY/x+JkOpQRawtvLG4Gk
8q0F2l3IuSHAz92WLbQQ7X5g57MouNNV4GrAZamifwR7Tvi5WEhuidAQyC9prwKx
52hX/V7AOQy2J56L1ZVNfqi4Bnn7sOoqnvZkM0BKndg3FjRla+svnM4C8qCQu+oF
EGs65u2oJboeanPZrq4ZgZyp+FDKCzkSYYVVyvPqZDyXHkpUamXkOM/aBB70D+jF
03mZG9pbbHzfTiK6to8IsgdDKbmqXuO3NTIXbBlDBpZirlyScA2NSOf/VHSUEGqw
5WEv9GOVU8AWgcgRsmt2+KP72cMrk0qU/ucNEKqbiI8wI9Qoh3/Ysm+zpG/9Ha1i
/AvQYrIPgie1JilwT2AqhWPsv4pUPWvu+z/hWcV2cJw9wMTiXaBCIVLPvih/ISC+
A5/+GHbSILkDvTnCBYYZmtvdHF3gfVD+D01qaiPj/NWVCevhNuKZDZ7fFhnx78+6
RWia2WYGJGNMhTYizH8=
-----END AGE ENCRYPTED FILE-----

View file

@ -0,0 +1,16 @@
-----BEGIN AGE ENCRYPTED FILE-----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-----END AGE ENCRYPTED FILE-----

View file

@ -0,0 +1,3 @@
{{- if eq .host.distro.family "darwin" -}}
{{ .host.home }}/.config/gphotos-sync/client_secret.json
{{- end -}}

View file

@ -1,18 +1,3 @@
-----BEGIN AGE ENCRYPTED FILE----- {{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "google-assistant-client-secret") -}}
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBiWGdFUGtPeUZWejc2MlQr {{ includeTemplate "secrets/google-assistant-client-secret" | decrypt -}}
TnYwd25UaUx2UWJSMnJKWXJDaVpROUhKY0hnCkJ5UDhocGRoZTNWcDB0WFVmQkZt {{ end -}}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-----END AGE ENCRYPTED FILE-----

View file

@ -1,16 +1,3 @@
-----BEGIN AGE ENCRYPTED FILE----- {{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "google-assistant-tokens") -}}
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB3SWtYcmJDenBGUnM0ZFo3 {{ includeTemplate "secrets/google-assistant-tokens" | decrypt -}}
UlUyMEYwS1o2SUE4YkFNcjNGWUJLSjVTUmdRCnA4c2RtcE95M2h4S3ZGZUtlYTMv {{ end -}}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-----END AGE ENCRYPTED FILE-----

View file

@ -1,15 +1,3 @@
-----BEGIN AGE ENCRYPTED FILE----- {{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "gphotos-sync") -}}
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAwaVlwL0pxWVpZNlZ6RFh1 {{ includeTemplate "secrets/gphotos-sync" | decrypt -}}
SWJKMjN4eEZhQVJpcTZRWmFoeTBXdGNjb1NvCm94QUg3ODBRT1dnd3ExNEJnZkg5 {{ end -}}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-----END AGE ENCRYPTED FILE-----

3
home/dot_ssh/ssh-audi Normal file
View file

@ -0,0 +1,3 @@
{{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "ssh-audi") -}}
{{ includeTemplate "secrets/ssh-audi" | decrypt -}}
{{ end -}}

View file

@ -0,0 +1,3 @@
{{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "ssh-authorized_keys.yubikey") -}}
{{ includeTemplate "secrets/ssh-authorized_keys.yubikey" | decrypt -}}
{{ end -}}

3
home/dot_ssh/ssh-blue Normal file
View file

@ -0,0 +1,3 @@
{{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "ssh-blue") -}}
{{ includeTemplate "secrets/ssh-blue" | decrypt -}}
{{ end -}}

3
home/dot_ssh/ssh-fiat Normal file
View file

@ -0,0 +1,3 @@
{{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "ssh-fiat") -}}
{{ includeTemplate "secrets/ssh-fiat" | decrypt -}}
{{ end -}}

3
home/dot_ssh/ssh-honda Normal file
View file

@ -0,0 +1,3 @@
{{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "ssh-honda") -}}
{{ includeTemplate "secrets/ssh-honda" | decrypt -}}
{{ end -}}

3
home/dot_ssh/ssh-lab Normal file
View file

@ -0,0 +1,3 @@
{{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "ssh-lab") -}}
{{ includeTemplate "secrets/ssh-lab" | decrypt -}}
{{ end -}}

3
home/dot_ssh/ssh-lab.pub Normal file
View file

@ -0,0 +1,3 @@
{{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "ssh-lab.pub") -}}
{{ includeTemplate "secrets/ssh-lab.pub" | decrypt -}}
{{ end -}}

View file

@ -0,0 +1,3 @@
{{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "ssh-mini") -}}
{{ includeTemplate "secrets/ssh-mini" | decrypt -}}
{{ end -}}

View file

@ -0,0 +1,3 @@
{{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "ssh-red") -}}
{{ includeTemplate "secrets/ssh-red" | decrypt -}}
{{ end -}}

View file

@ -0,0 +1,3 @@
{{- if and (stat (joinPath .host.home ".config" "age" "chezmoi.txt")) (stat joinPath .chezmoi.sourceDir ".chezmoitemplates" "secrets" "ssh-yellow") -}}
{{ includeTemplate "secrets/ssh-yellow" | decrypt -}}
{{ end -}}