let #kabbone = [ # "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQDVQmOem6iMFx1whIpF66B8jv3iWhLYyBkgsl+Bm9LhBjsIrhOBUmkvIA8w0uojxO3XFNqeeyUfsqrAW2PrsNl6JXEDlRw9oaaCH3C0daCxr76peTGxKhXek+kfQIC0HIcqAif+TdmAC3Q6TK3R2/I4yTgt0XOVbkJpOHhbR6kjyTjx1CMEVmbKgduIpeznBDOlC+iotqbchBVQKmnqJt0HNbSFxL4G1bN9UQlr8wzaSf/ZBTPU/ARfES4nrNc4vmztZmsI7clk57JKHFcf19PiMgUWMxdfW5bhMmf/7ARgrk4hZPmWmBnRK1njmFICBuWfAbDx1wnRfDVtSOxiNmMuN3pLUmB9XQCAgvC3kreFs7yDYoYPFcVUA0+AV/hRvB6ISwbsZb9qZSwAVrbnwiMb3e8SJYUb9GKFWPEjNLVYPj66mYH4Hi9FB9q76OQ1kCZthov+pAgy2S4kv0PoqDcpVZxlHsULoXokS2r9yQ/xzQopobbbTkZq4lXv79UZlyrr5zcQ7c4/ojDRxNtFmYlD/dltWWy9ZwcoKioRCFd2CSPRGTx46VClrJ0yJpNX2boyh/Av/6nsucocasLzZ9EHkctvrZQMq3u2FwCQPQ37kdY/JPYpDYKnAJMx4VgLqycbkTBnGDUbHyfVCEEBklTy35JKd73Vm3df7NNk5qA4bQ==" # "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIANmaraVJ/o20c4dqVnGLp/wGck9QNHFPvO9jcEbKS29AAAABHNzaDo=" # "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIKVDApb3vZ+i97V4xLJh8rUF6z5OVYfORlXYbLhdQO15AAAABHNzaDo=" # "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIB0q++epdX7feQxvmC2m/CJEoJbkqtAJy6Ml6WKHxryZAAAABHNzaDo=" # "sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIIgo4IP8ISUohyAMiDc3zEe6ESUE3un7eN5FhVtxZHmcAAAABHNzaDo=" # ]; kabbone = "ssh-rsa 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"; yubic = "age1yubikey1q04plcan2003nzzd4zlnmrduw8323p4vhahe7gd5lyxcmnv306mpja0862p"; yubia = "age1yubikey1qg89sgf7ytv320e9axauhz2s2g928ettgnfsjvpv4jvp6kp6g26zqavewr6"; #"sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIANmaraVJ/o20c4dqVnGLp/wGck9QNHFPvO9jcEbKS29AAAABHNzaDo="; users = [ kabbone yubic yubia ]; server = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDwN8p78OncPIRUfV64PLHOem4LtlQ3opOJwLEYqdGVx"; dmz = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAmivVLbkJJ1anwQ8CeNT7rv0Qxinp1LIQIjVWZpnIE5"; hades = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEgnWyQUUa+vcHAKx6edbTgqW8ph+MCiS6fUwYjYcS+o"; nasbak = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOdoxslkKn3ouadPOHmDN7e5AtoJmnllnUmhl1j9qfzz"; jupiter = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDBQr9/TIeAd25h0gfOPjoHs6JMeye4V04LuFufbe1S/"; steamdeck = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINcbvtlL9xFq6kcvE6x20/Es5PVWMhbBvra8HjGUm4NB"; laptop = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICLDA3tmyCR4ogX7mgwaEhsceqALQvq9IqXhg8rF0OIi"; runner = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIP5MASizLhydfxn0AWcG6LfeC4fghLTDVsLbEHDnIAhc"; systems = [ server dmz hades nasbak jupiter steamdeck laptop runner ]; servers = [ server ]; runners = [ runner ]; buildClients = [ nasbak jupiter steamdeck laptop ]; buildServer = [ hades ]; in { "services/postgresql/initScript.age".publicKeys = servers ++ users; "services/coturn/static-auth.age".publicKeys = servers ++ users; "services/matrix/synapse.age".publicKeys = servers ++ users; "services/matrix/mautrix-telegram.age".publicKeys = servers ++ users; "services/matrix/telegram-registration.age".publicKeys = servers ++ users; "services/matrix/mautrix-whatsapp.age".publicKeys = servers ++ users; "services/matrix/whatsapp-registration.age".publicKeys = servers ++ users; "services/matrix/mautrix-signal.age".publicKeys = servers ++ users; "services/matrix/signal-registration.age".publicKeys = servers ++ users; "services/nextcloud/adminpassFile.age".publicKeys = servers ++ users; "services/nextcloud/dbpassFile.age".publicKeys = servers ++ users; "services/nextcloud/onlyofficedb.age".publicKeys = servers ++ users; "services/gitea/databasePassword.age".publicKeys = servers ++ users; "services/gitea/mailerPassword.age".publicKeys = servers ++ users; "services/gitea/homerunner-token.age".publicKeys = runners ++ users; "services/gitea/serverrunner-token.age".publicKeys = servers ++ users; "keys/nixremote.age".publicKeys = buildClients ++ users; "keys/nixservepriv.age".publicKeys = buildServer ++ users; }