From 1693a9e5feec383499d19147cd32198686b0c989 Mon Sep 17 00:00:00 2001
From: Brendan Golden <git_laptop@brendan.ie>
Date: Thu, 20 Apr 2023 18:46:41 +0100
Subject: [PATCH] secrets: added new secrets to handle dns auth for skynet.ie

---
 secrets/dns_certs.secret.age | 19 +++++++++++++++++++
 secrets/dns_dnskeys.conf.age | 18 ++++++++++++++++++
 secrets/secrets.nix          |  2 ++
 3 files changed, 39 insertions(+)
 create mode 100644 secrets/dns_certs.secret.age
 create mode 100644 secrets/dns_dnskeys.conf.age

diff --git a/secrets/dns_certs.secret.age b/secrets/dns_certs.secret.age
new file mode 100644
index 0000000..cbc22e6
--- /dev/null
+++ b/secrets/dns_certs.secret.age
@@ -0,0 +1,19 @@
+age-encryption.org/v1
+-> ssh-ed25519 V1pwNA ie8e/nnHOCZkTlkV+Tha95f6V5DNm1GYYXbpyoWWAgs
+HSx1ui1TcVPJsUN1jqI8v9sZ937u7U3NesPRqlwKP9U
+-> ssh-ed25519 rIwlvw Dv501p9TDLc44tJO1oDAt1F2GSnXpK/HoVxFGy8IKW0
+fPJvnzxhqvSoafxFgHFSv2qqrtNWcEk/faoeFeMzdB0
+-> ssh-ed25519 bPfq4g eErPlcFI/PjKf68qwlaibbjahLbj7XiadnG/TibRkxw
+6hnbbJFvDXvzjymzUmHoPRRczuA4Ph2rs2+/THWrapc
+-> ssh-ed25519 P1ilJQ Oj2xGSXKRpjgnXv+QRQ1urdO1enXbLDN2zMekYk5ICE
+p7sRtjZqTuaBsuH6yJHbA6DX9K002ZnpeQt1twwXJYo
+-> ssh-ed25519 pBdJmw ZcRiRqNHOc15JrSk6EhTLP0Q8PDWmXGdxGVfZMow5zQ
+Rewdyz4aN8rLQBUnHBrNuZOrbgcf/NE3PwMx7In8RGM
+-> ssh-ed25519 v2Y09A r5RmMddFC3EzyqZRB87S1PYcha/Kn2kEME5H01K0O1U
+f9ui5b4yf0QPraXLW19Jk85Hj4hnXX/QBvSwJ9xgTAs
+-> 6T[-grease a# a Gae'X%
+OUWKIDtmwGWcwjdJUodQGaLEGKA1AEYRDxFRUEnYtFGZAkfoEGs5r9w3t0QJMTHF
+V7DBluYs/Hk00Qji9kYRBOJ4
+--- By54hff7kzJVEdr/N+H5A8hm2T56fOqVlrnVwk0ynqg
+!æåå›ãð
+KhžŠJÛ‹v™á,·¾LvEïe›øü¸õ£!P8<%škF)¯'¬ÐÆå³kíí=ã?máw@w˜ÊtÇ”ŒƒFMTî¹@Ðûš«2È“'ãn¬Ý¶3cxŽ÷4/”ø¯×Ôµ®USõ–Ãqæõó,aÍ*ýrGžà”äÚ- 5	#Î‘ß;ìRÂB9¬‚^¹mdÓ³r~êM³bßÃ8ý”yKÙ²5/F\©Ê&3T&ÏÈÄ*G >oâö½ˆ‹Ô
\ No newline at end of file
diff --git a/secrets/dns_dnskeys.conf.age b/secrets/dns_dnskeys.conf.age
new file mode 100644
index 0000000..db36ba6
--- /dev/null
+++ b/secrets/dns_dnskeys.conf.age
@@ -0,0 +1,18 @@
+age-encryption.org/v1
+-> ssh-ed25519 V1pwNA TX35sCRvJ8sIR/bWGcgBe9nO5P86vYF1ACXrNz9Eun0
+q/3I5g+RkN1cGwGcczFyYgTBIpmopKs9qvOrMID838I
+-> ssh-ed25519 rIwlvw EwRI0wL/x3GbPvMe2XuPOyKPEuoswqi0uVpqDOUstjk
+BvTbS8Z+vRdJuCVppBl+g+lxYQMefxvMuAKXR+nurjE
+-> ssh-ed25519 bPfq4g Vqqo/a9x6k9pIPEOFvMiQwJTKPjtTUtbSFyz4eHiA2g
++Q0fS7NPrPxj8VQ2Nh+yV8nttXipnAtxLfECkORubTE
+-> ssh-ed25519 P1ilJQ yLxj9nT1M7kdQc7phtFu6ewkHp1Kwj1Akn/Wbv+3pS0
+x6UCWIyooA3o44kBgMcIeDyE9wkWt067Q4KKDC7jnGY
+-> ssh-ed25519 pBdJmw i7r2w8gRfhN7bG7qi+aJyvE+nVd5zLTlAVTMGNcKJFo
+yhLGhNQvhkXkECdCUQleKuTLr5sk4YkTOSMyTEjN7DU
+-> ssh-ed25519 v2Y09A kLQsIeKCdwQ5CtyJbrcDAhFfYf5Ot3YvmC+7IuUgz0I
++Gk2E8WqT/m8iVIhw0P2XNsBE5YCY4CVdMSYk3EuYZU
+-> ~iQ-grease )E_K mwz\w #~
+QSsRFji4FUqweD3sulJRWXJu//Ip9CmUN/AQH4DqOp2PITzyGgHKzhyFv5+y0AvD
++b0n6ETiMDXLI49T89eDzJmGKGWQeMEO4XXMlmsO48CZZjfsv95CUepQInY
+--- XRTW4xkfGoToupGLlsWs6Wlh/hHrumVE+RIa3YVrdG8
+ '·¯ÜRS_'Dû>@Þ…>¼«AZâ”üÇì\`Rè2$Û 3ÍÚ¨mè€Ÿ #ŽO™/ôì¦¨<Ë3U®F3è”ûæ¹K/@ñÝÃÿg•šåw¾zûc•%‡ùße×´„ñ/F¢­¾—xý37P2Äú\áò5^ïqø[3AõÁÔ¬ØÐj‚µ÷…
\ No newline at end of file
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index dcbea2e..9757274 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -25,4 +25,6 @@ in
   # nix run github:ryantm/agenix -- -e secret1.age
 
   "wireguard.age".publicKeys = users ++ systems;
+  "dns_certs.secret.age".publicKeys = users ++ systems;
+  "dns_dnskeys.conf.age".publicKeys = users ++ systems;
 }
\ No newline at end of file