Brandon Lucas
b40ac99524
A NixOS-based system for managing personal data across three tiers: - Tier 1: Configuration (shareable via git) - Tier 2: Syncable data (nb + Syncthing) - Tier 3: Large data (self-hosted services + backup) Includes: - NixOS modules for nb, Syncthing, backup (restic) - Server modules for Forgejo, Immich, Jellyfin - Helper scripts (usync, ustatus) - Comprehensive documentation Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
39 lines
1.0 KiB
Plaintext
39 lines
1.0 KiB
Plaintext
# Example secrets file for sops-nix
|
|
#
|
|
# This file shows the structure of secrets.yaml.
|
|
# DO NOT put actual secrets in this file!
|
|
#
|
|
# To use:
|
|
# 1. Install sops and age
|
|
# 2. Create age key: age-keygen -o ~/.config/sops/age/keys.txt
|
|
# 3. Create .sops.yaml in repo root with your public key
|
|
# 4. Copy this to secrets.yaml and encrypt: sops secrets/secrets.yaml
|
|
#
|
|
# Example .sops.yaml:
|
|
# ---
|
|
# keys:
|
|
# - &admin age1xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
|
|
# creation_rules:
|
|
# - path_regex: secrets/secrets\.yaml$
|
|
# key_groups:
|
|
# - age:
|
|
# - *admin
|
|
|
|
# Restic backup password
|
|
restic-password: "your-secure-backup-password-here"
|
|
|
|
# Syncthing API key (optional, for automation)
|
|
syncthing-api-key: "your-syncthing-api-key"
|
|
|
|
# Cloud storage credentials
|
|
# For Backblaze B2:
|
|
b2-account-id: "your-b2-account-id"
|
|
b2-account-key: "your-b2-account-key"
|
|
|
|
# For AWS S3:
|
|
# aws-access-key-id: "your-aws-key"
|
|
# aws-secret-access-key: "your-aws-secret"
|
|
|
|
# Forgejo admin password (initial setup)
|
|
forgejo-admin-password: "your-forgejo-admin-password"
|