diff --git a/.sops.yaml b/.sops.yaml index 500c8d0b..cffb2d17 100644 --- a/.sops.yaml +++ b/.sops.yaml @@ -60,6 +60,7 @@ creation_rules: - pgp: *pgp_common - path_regex: 'k8s/.*secret.yaml' shamir_threshold: 1 + encrypted_suffix: 'Templates' key_groups: - pgp: *pgp_common age: diff --git a/k8s/system/cloudflare-operator/sopssecret.yaml b/k8s/system/cloudflare-operator/sopssecret.yaml index 30495abc..ea0f9fbd 100644 --- a/k8s/system/cloudflare-operator/sopssecret.yaml +++ b/k8s/system/cloudflare-operator/sopssecret.yaml @@ -1,16 +1,16 @@ -apiVersion: ENC[AES256_GCM,data:z8CXY+KoYM4Ywa/61nGq4D04efd/DYiwb1/v,iv:Xu++MR/dvymWoJcO419pkTdXWpAQp+tKERXbRpbVgiw=,tag:uqfnf60QJfWjFYu3Z0KSKw==,type:str] -kind: ENC[AES256_GCM,data:ucNp0d+rq78fBQ==,iv:53hKxZl4wEbqjpI9F4mqSH2IjPdjmZMvk+VwXNE0f5I=,tag:q4iJs2IOaprhGfw97WYXoQ==,type:str] +apiVersion: isindir.github.com/v1alpha3 +kind: SopsSecret metadata: creationTimestamp: null - name: ENC[AES256_GCM,data:5ZGPvu3anwI4CiUL5ooQ7hj+1CHEuA==,iv:VI43V5ipOdCtCxHrE3A8j16U4WltEe9ymA3SI9DNiJE=,tag:um0Ib7ATDIFMMzcoOZNDDQ==,type:str] - namespace: ENC[AES256_GCM,data:vN1XQTOhmTJZpQ0/1skO36g+rocDAD8oADs=,iv:sbnCcahcRrP67L9ZH82y0OGxxS9zErBc45TbXp9dROI=,tag:HrR8MOu+8tqzmNOC/gEnrg==,type:str] + name: cloudflare-sops-secret + namespace: cloudflare-operator-system spec: - suspend: ENC[AES256_GCM,data:+3hjqlQ=,iv:9MsEfsIZQxighaHKgW0DB8YAvy0dDhD4PcREbPv5Ufw=,tag:/07bweNe4ACRlSW7rjYMJg==,type:bool] + suspend: false secretTemplates: - - name: ENC[AES256_GCM,data:qWpT9Jt3UDBpMVaAtuZexKA=,iv:9ZUT9txFPnkQ9a+ItDNf1gtofOl4MsCIsPyuXxa4hsc=,tag:a96cQq1yylT/U5Idml1JSQ==,type:str] + - name: ENC[AES256_GCM,data:fHrRDNivvb5QCkoqeUsF12c=,iv:16QeiYTVaZbVg+hHWExEfdk6TI81+DvzeQ3qDASNJE8=,tag:WnmP/PMHiSnr/uLewelwrg==,type:str] data: - CLOUDFLARE_API_KEY: ENC[AES256_GCM,data:nGXwUW/P875VZ35fWoApxT0SynC89cdw+m98X9v+CTurH2OaOyN+m7RHGdzH+eKAYKvYXw==,iv:noh0WaHkZYzwYR33F//sR7r1R1XrhM49DrF+Idh2U9I=,tag:1f9P1zQt+Jj/gzvwvi9oOg==,type:str] - CLOUDFLARE_API_TOKEN: ENC[AES256_GCM,data:+qjGyDcjxHedXtYhid2cNixWAdpYMk6fokb7pRDWGBQ/9f+DONgefQcOQnnAR8JS47XD9HUH274=,iv:dvXK7HegLja+QRi8HSawGW3RlB1K+kO4DO6UlNekwmg=,tag:dd/1IArAxujZuHmJEdkDvQ==,type:str] + CLOUDFLARE_API_KEY: ENC[AES256_GCM,data:94rGzIbszYrYfjBBRyVbEsRmDz2U/3JGvhx/44+9yW0DKoVuKFmTk2K5vrAPxrinxZpjTA==,iv:sGKYz9DiTeZ7Y8cY+ReePiFrDsXRh3oLkCS8Kt9cXY4=,tag:O9t/pXA/Moof+UAv546Ktw==,type:str] + CLOUDFLARE_API_TOKEN: ENC[AES256_GCM,data:EkwVhFS+8k/EKY9wPthfaM5FLjiDclAV5tpfZrcZ4MpS2mn3nHxuGqmAqCCZmedgMEed5V1MVTw=,iv:GHVxCC01NZsFVtkxNmHdrs4YPVZFvoYXrOqeOrNU5YE=,tag:vRJVJXu5gOu5RtHAe1Gp/g==,type:str] sops: shamir_threshold: 1 kms: [] @@ -21,49 +21,49 @@ sops: - recipient: age1nmdv4q8hcyj3s6qevrmc9w2vhd4a8tsj5j5e0cry5utex7vqeprslyjvxz enc: | -----BEGIN AGE ENCRYPTED FILE----- - YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBhT0ZkYVRXazdNN0JmQm91 - dlZweHpqK00xalBORE53em5SNjVUMDBwK2kwCm5lejA2aGxueHV2emREd2FTdHhJ - V3dKWGZVcmlxTCtqaDFYdHlSdlFzZjQKLS0tIFZNVUtwdnFYcVFrc1I0ZXExMUo4 - eUN2ZnRaU0VzSXZDNlBBVFVyQ3lpaGMKAg7VUhl6DM3VLRwpmoIV3J9wkM96MC+r - HapWenCJ0YXmw76JH/Poi7RQDsr1VSTTunpokASqsGexCKa7LPjNXA== + YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBvV2FoNEJUWDN3RGNJUUdJ + OU9CY2FqQnB6UGttZjh2MnRFUUZPU280alZBCk1jWTdYUmI5UUd5UW5qZHJ6TU92 + UDdVU0trL2F0dmpuak1Mdk1zWTRIUlUKLS0tIERyQXAzdE5sL05BYzlRYzBMdHc3 + ZHVkSXBhSCtPZEtHb2ovN1ZsOU1GY1UKzr/LPpevNB/vbko8FTfSE3xjYtZD98e8 + kj2LKAkjhuvrVFzpJiSlftQ3yggb6a5Be2WrLcNBOOxTrnv/LW2z7Q== -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-01-20T21:23:43Z" - mac: ENC[AES256_GCM,data:0B77eabry0qs0oa696DjgvSJcdq3xjbgTI7vNwvbF1Y6EQnMQ4uYZ8x7ME9z6P2v9r8gOqpnyrs0We5ds75I+DZ4ICGeRT7PGiHFvUJxUOFf6Ot9pkI1a3/X0bj362p9a9pEH7fGEKO8J/+zHFqyd53t18XYbqdKOcsuE3neawk=,iv:lK8Btw45bdRpgVQxILq1oDjC0TjblSfDLHEDj1Nfmbo=,tag:L4N0FIEiKi8yzs43HhDm7w==,type:str] + lastmodified: "2024-01-20T21:39:37Z" + mac: ENC[AES256_GCM,data:7zy1tHkmn7f7PFOAMocBmEh6wZ9l0AlllxfAx2hON2DVTuxIZmZCP/vK333zSYNLaSYfGdDSZzLoCxsMWyqYGLdbTre/CjiluzR8/Vnza4ZqTedX65IEKIE/jOSfQADVhKlzcZigUaAFggGJ71/3nKP19BRveFGhgtWDuRD9md0=,iv:nTzHYAuO1ALxlGIGa9Qxeq8pqKX7AY71N7inoOSCSxY=,tag:fBuKGwYmpitj1xQhTlkGiQ==,type:str] pgp: - - created_at: "2024-01-20T21:10:23Z" + - created_at: "2024-01-20T21:39:31Z" enc: |- -----BEGIN PGP MESSAGE----- - hQIMA82M54yws73UARAAsXvk5bbFcYLmGaultm9jgPn2q4sxtLpwOs+Mxx8ePm7+ - WJnwSiftweZ+p1ZYXLCWi3fPvUutnI4dsGfPeugSakUIGt1ly5jdjmY5vtfMk4Rl - POBpmOqkqOToWHurunt2kQGb1qlLEh9lXotIWeyTnhnO44z6WZXhG/m7GH4JPCi/ - 6jzPhIoc/Bqya18moG2yh6qP536P2DdxCLIqHfv+FOWBRzKjudeKW+UmDjrofnzD - eVcrDeLX14efzW+KWLHGdH03Amy3wiNSMEvR2J6SSyKW4qdtiZNXc0mdev15cUNj - kij2DFBxj15ACmkI5T0MCdokCYiutMQFmcp6DMzWDx+QNV2GD3pBZ7DrqpP/+oZg - 1rpfuJWSjL1IeiwwxpAmDTPpMUv5CRTU0YtMb0Vr8kLDsmj9+QdMYjkCBUcI6PDY - 7ipfcXMm6V23euj3NNd/001SsbO7R/KO+UZZ2CjvYd4hH77IJ65/STw94Zi5YAdk - D1pk97x4moXCna2z2eIwF8xAInpm27eNyWDDteKhX7haMi3M+e5j5CRZra4XUuVE - OFbtzzvvfxuImRb8fpE87gMadGhJAWWoFA4TlKtckNmrhKIeOTWeE2JnzjZEON/5 - ZKChof6s4K8lFHyQT8oo4DuJMsTN9JnngNRZgNATyysRNXpl4hmDCy/LJ1Mbh2LS - XAGb19rTGO+HfJN8hQzED8OO+qWctWNK+/uXzcLPE4GWBewsEHtCxUOPcSThcuN0 - a6ok4QvjvdDo/1LUKkdlZsjx9MQLrQZLexLunZcqK7gzVxHmzhFCN8XcwgDQ - =0PES + hQIMA82M54yws73UAQ/+JeHkQS219ll/9VOmGkjqZTlZdUOrqozJNKc8mwMvou4O + XQ3ZBAlfKwM7T0Mdvo+uq5iRVFUyMp4++Lo+YnGRwbq58MNU8X5FwXwipkJdvYRc + 5x5Ha7GLWjwZXl9MMM0fW/ugGEWBizQ1x1ehZ86jyb4egeVMIdj/GsF0HuZoRzTU + MCMHkgQ5UxVEBlizKEmXn2fcocaBMLoSw+M88w2/xF7U2iZZOCyXYKL8Q80UeQXw + 4OWDb42RnwjtomswvUp7Vnw84m3jdMo84LZtKa5aiVpWF0ZY25/pMGrQ+swA4bSO + vhLuhYBRytjL/T2ZaIDsXFjTb9wmAMcCs6YPkiP+sCCguJ7CcWd4Tqnkb9M2+pXf + OO57yEsi7QQIdn2SsdbKsHcEiJKbZr7d8LPmCO0DTzOgQsuPaWpeWwIuC3p6sxbE + /jcNQIucn7i6BVV/9NMQmnE9T8EcM3axGfnbOQXueSlWXH2xF4L6AQ7YSSADi6ir + 6h7usvA/Ja+5Q+QOThuzJItTWKJn1OaggZIuvdSrunc4r/rXXf/Epv5r/psC18PW + e3zc/3317meSb+cbD+V3y4hQtBFm2fqzhzra3VXKNQ5iqLcLL43YYQNRsJgnhsiL + fTDT3ipGwOwv9so9HCxRGhB4bR2Lu0f73e4SoMLuffkdnZlbfs7r+IvUWzFkdO3S + XgFXW7WdrG22JmNonT+A1R4C5Y/wKaqjH9mE8+wyb05U3auXeddkz1KPOMHkYdk7 + +/tGZCHb29870vtHX7l49jmgubiuY4pPRz8tjaNIGCEV+eiQYQ5u2LlmTEQJM/8= + =Mr6d -----END PGP MESSAGE----- fp: CD8CE78CB0B3BDD4 - - created_at: "2024-01-20T21:10:23Z" + - created_at: "2024-01-20T21:39:31Z" enc: |- -----BEGIN PGP MESSAGE----- - hQEMA2W9MER3HLb7AQf+Pd7EweWoLLwB9/efdE8TdyRLk0p92zXnhh48CYmsJhhf - mFyv8JBdBCRqPItOd+yyBhF9lARb24GA9h51XgDBLvS+E2GN3pFpFBp8UNCPNp4W - E3wk4Ps6YyeLwRFBfI8Lvd8pHDzGPdP4EURvDCogal6IDKMR0MFA1SYPGoj56MOM - BQc1zcnKlIy2I+iC/hIkAyOLqD7jBaaiYoycwOZ/Hs+T9CxUyCnTapOWacj3dc/e - frxqSDAG9K7j+dj2UZ3zxkVtC0FihA+j8A6MupL/GLoLgk1Y5NJ1H5l8z4WHjwhz - rWp1d+0RHkE1zwv6j+Oy+MLcWpZ9FgsHvZ2wUgJoBdJcAWkR8wDDpflXHeWCJGIl - q+4oTeCqmuG8vhLEaoU+PSnpSqD0PT9JpNkPLhFqmnjabex04KGjVacu/3FBjIHY - XUF9Cfj9CVEJg3cwMGh+w6L/JbfUqsejhttkZMU= - =NUfI + hQEMA2W9MER3HLb7AQf/aq2zWjRyKI+DrJUlutwftMNiNZ18Awpvl0oUve4olKHT + jitTDJo+PgY4o5OPvrlUIsnAhbMoqXkrwddnLv34uJ6lIjYH3fMviPwq75OH0Qhd + Yh1nRaJTu+yg6A2ec5ces9hFaubznyoG8DFKaNFgrjdpbFbMnPBQPbVvwpU+k4Z9 + KbTGkIOAYBzTt2X1GpKSedj8Y6i6HcRebq/19b/vpFL4Cn5wi24rjdeA+Kq+77QG + kuazXcQHaLY8dx3Sz90lQk87pNU3pTOca+449GQ2dv31OQ570Vjd1yPX76TE7PkZ + Fdx4ITtNTQBOmXTXAlTxQ3+/nzVOhLu8bci8rWPNUtJeAcQFAGfFuukFHcH5vttA + kYJzvNcFxOtyI8p56HZs4BUxXDvOSeKMWt1gDVIBQabHyM4mR6Jy6aevtSB0uVTL + ELHu0tJfgxBHhR0Hmue8exvdo+knfTAHjzO1eGWPcw== + =5FTl -----END PGP MESSAGE----- fp: 65BD3044771CB6FB - unencrypted_suffix: _unencrypted + encrypted_suffix: Templates version: 3.8.1