Skip to content

dlo9/pavil

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

58 Commits
.vscode
.vscode
 
 
master
master
 
 
minion/minion.d
minion/minion.d
 
 
.gitignore
.gitignore
 
 
.sops.yaml
.sops.yaml
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
TODO.md
TODO.md
 
 
apply.sh
apply.sh
 
 
docker-compose.yaml
docker-compose.yaml
 
 
sops-decrypt-all.sh
sops-decrypt-all.sh
 
 
sops-encrypt-all.sh
sops-encrypt-all.sh
 
 
sops-remove-decrypted.sh
sops-remove-decrypted.sh
 
 
sops-update-keys.sh
sops-update-keys.sh
 
 

Repository files navigation

About

A salt configuration for my new HP Pavillion Laptop. Saltstack runs in a container, and secrets are encrypted (in git) via sops.

Dependencies

  • docker-compose
  • salt-minion
  • sops

Authorizing a new computer

Sops requires a GPG key to decrypt secrets. A new key can be added in the following fashion:

# Generate a new key (this will ask a series of questions)
gpg --full-generate-key

# Export the public key for sharing
gpg --export | curl -T - https://keys.openpgp.org

# On an already authorized computer:
#    - Add the public key signature to `.sops.yaml`
#    - Run ./sops-update-keys.sh

Running

# -E necessary so that sops/gpg can find the gpg key (based on $HOME)
sudo -E ./apply.sh

About

Salt configuration for my new laptop

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages