From 4445ef224f65839a7e4dec4ea1319ff4a6989259 Mon Sep 17 00:00:00 2001
From: Manuel Thalmann <m@nuth.ch>
Date: Thu, 16 May 2024 16:39:47 +0200
Subject: [PATCH] Add new user key to the secrets file

---
 .sops.yaml          |  4 +++
 secrets/global.yaml | 69 +++++++++++++++++++++++++--------------------
 2 files changed, 43 insertions(+), 30 deletions(-)

diff --git a/.sops.yaml b/.sops.yaml
index 8374a57..4f30dd5 100644
--- a/.sops.yaml
+++ b/.sops.yaml
@@ -3,6 +3,7 @@ keys:
   - &host_manu-surface age1ytjxrfkag8n73zym7ptt0axsehtxt85gf06qxdtyntzpcqcd34wqa5kv25
   - &host_der-geret age1nxlfrn0rs7kplgyd37plnwxy9yn9wmqwqw4xs5g5lr8xqqgl3ecql7mq3w
   - &user_manuel_der-geret age12dlu69eph80an3xzfjtutahn8k7qx7jsaplvkmzrm3pw7ph84e5s22nymj
+  - &user_manuel_manu-surface age1y9aqkecwlfzj7n2awtt5xyjt3arn3uszn7np7xdm5glhdpsqh3csea2qem
 creation_rules:
   -
     path_regex: secrets/[^/]+\.(ya?ml|json|env(\.*)?|ini)$
@@ -14,6 +15,7 @@ creation_rules:
           - *host_manu-surface
           - *host_der-geret
           - *user_manuel_der-geret
+          - *user_manuel_manu-surface
   -
     path_regex: secrets/manuel/[^/]+\.(ya?ml|json|env(\.*)?|ini)$
     key_groups:
@@ -24,6 +26,7 @@ creation_rules:
           - *host_manu-surface
           - *host_der-geret
           - *user_manuel_der-geret
+          - *user_manuel_manu-surface
   -
     key_groups:
       -
@@ -33,3 +36,4 @@ creation_rules:
           - *host_manu-surface
           - *host_der-geret
           - *user_manuel_der-geret
+          - *user_manuel_manu-surface
diff --git a/secrets/global.yaml b/secrets/global.yaml
index 1040a5e..9b11956 100644
--- a/secrets/global.yaml
+++ b/secrets/global.yaml
@@ -9,51 +9,60 @@ sops:
         - recipient: age1ytjxrfkag8n73zym7ptt0axsehtxt85gf06qxdtyntzpcqcd34wqa5kv25
           enc: |
             -----BEGIN AGE ENCRYPTED FILE-----
-            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBiRnJrTUQ2WXdETytnbGcr
-            bU9haDFjaG0wVlZ3NFBQTUE2T3I2TlZvMkE4CkMva044a1c1bkFacytuUWd2RU1W
-            U2taZFNTSzRFQnFnWGFSNncybk1vaGcKLS0tIGMyajRzQ2Q0K0hGdFpzUndTemJS
-            cXdkWndnYkJZSU01bU5BWll5ckkrK3cKQWwRfU2eadorFETxP/4uZakoePqOplEY
-            Ml1OH7UGDx7HwEX82124Q3VsIO9m3SeOZqiYT0SG0OYR+GRoUK7HFg==
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBJMzFwNVBtemhQNjUyRjFu
+            M0QyWUtBeVRpc256eDJpWDBOSVlIY1RxUW04CkNPSUYybGMraU5xYndiNXpXRkN4
+            V1habmllakNuTUNFcnBlTjlPbXhiM0EKLS0tIFkxdmR2MjJPWnFIamhPMDI2Z09S
+            RGpMdmNzTWFvczAwTEJMMVgwemJIbkEK3nKz1436E6Ltv9yFD7Q80Hr+Kz1ZVgi+
+            RxlWukIPCbL+74FvczY9sS5GTy5wvwVS+kLqIpvC8iP5oOIecCdJZw==
             -----END AGE ENCRYPTED FILE-----
         - recipient: age1nxlfrn0rs7kplgyd37plnwxy9yn9wmqwqw4xs5g5lr8xqqgl3ecql7mq3w
           enc: |
             -----BEGIN AGE ENCRYPTED FILE-----
-            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBEVmNzb0RmN2ovV29pcTI4
-            cXdzYW1TOEhkRHVoZTV1UGhYbGNIVnViNkgwCnRzSUlBUG5rNCtjUkNPbXRwREFW
-            OFFOWk0vWVZMSmE5ckxPUGRzbXdmWWsKLS0tIFIwZVcxRHdWVHlNSDNCZ1U4WXhE
-            TVJsVGdvcjdzdnJueisrU20vRFFTbWMKrVYcSntnfQWsqpSPUdRdt3cBmHl5SJ3p
-            L8dblPKCUi56ibzYsskaqXkVdvBHtij65atmhiwI9ip6RLkYAIbuHQ==
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBwOE8zTjdBditXTUpyTDZi
+            UU5TK3ZTN3ZsZktoaFExU2NxQS8xWnI2eFJjClBjb2R0Z0dRcFVBSkxGSS9DbTR6
+            QkxnSXVtS050dTlyZE1lNm1wNDlVWVUKLS0tIDFCbFFLTEx3QnV0aXJNa3N3UjBR
+            U2d1a1ZENUpoeGdURCtaZ2FDWTJIYUEKkRrZ+r33tussCN3dYVz5prgy2u9pSnD3
+            Peu8zSeE2HdvqXvXCDnR7VTreoAw7Qr9+G8Ps8xvzb7FYsPpfULgcQ==
             -----END AGE ENCRYPTED FILE-----
         - recipient: age12dlu69eph80an3xzfjtutahn8k7qx7jsaplvkmzrm3pw7ph84e5s22nymj
           enc: |
             -----BEGIN AGE ENCRYPTED FILE-----
-            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB2aEZGYkFpc2RBUWdnN3g3
-            WGZPcHdUdWlTWFpUWVNnMElQQlNhemFJYzEwCmFGSWxQdW8xRG9UY0IzdllIU0g1
-            NWRlaUhOUWd4enpsTFlaOGxzWG84SVUKLS0tIHYxdGtDZEtIRExualA0RjZ0bTZx
-            cEpDSGRFYVAzbnJ2Wi9LZDRmRnlDY1EKkw0LAIL9ychnGq70UczJnGkZo7R+ysGD
-            DJ4NPIljBD6rQlfXEw5TGqbhsMT3QHca3ntYrywRPN+ZvtD7N5L5iQ==
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBxQ3NyeWxCQ0t2Nm5hN2Iz
+            TkdIdlFOZ0NqbEF2VHdoei92R0R2b0JRaWxRClB3OFI4bFhhOWhsWm1JQjV2ZU5y
+            SkVKN1NtRVlONHdubFVhSHdWSERyVVUKLS0tIHlXcHRXcmRuYjRjeVlJeU1SYVdl
+            SDB1bVBzaStkcElBZFUzMXZIbWs5ajgKtkuyWEPR80G6SpXqkPeRWbAvZq9fxIHY
+            AoVtiqgKPap9IlU1DJ0gdyETaQ1784WeZKLXeV3FSlOBVq/NPImQ3w==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1y9aqkecwlfzj7n2awtt5xyjt3arn3uszn7np7xdm5glhdpsqh3csea2qem
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBIcFJ5RHhRWWVzODM5dzNQ
+            c2xTVldZUDBCOVIwK3QxSmJpL1R2YnorQXpFCjEwUkF0algrNm5keWZMSnNDbi91
+            T0ZnaDF5YklpdytjMzFOKzZ4Zk5jckUKLS0tIG5mM1Qyck83dTNLN2hFWEN3a3A4
+            T1hzZlluaGs3aDNpWGxsdFNhb2lEM00K24MVEpAnvtOn4sD3VnAHZQwSnFcKxvyW
+            y1GfuG+2ktTuY/lglbXt+JlIU2OlBkV+qjWtsF6424YhfJ8PUExO0Q==
             -----END AGE ENCRYPTED FILE-----
     lastmodified: "2024-05-16T00:11:24Z"
     mac: ENC[AES256_GCM,data:UHbn7T5oVD9BhtDcbVno26yelKVR8ngR5jkGAucagntATD7h2iteLMQljX0hRqpr7w0HPbBSaBbdz4PlyLvu57/sU6VQbjFuZi/79F+d5rOrulSUFgpKl0kyrkG97Dx+mZAHdvSc/JuGGf+0Bs/rqevzp8ZhXnpYgI4v0x7pk3M=,iv:7vge+gdMTKqTH5VdVee42osWeWRosrTJEXC2AsPaCqE=,tag:266n4f2IFuGl3Jk0t4gsSQ==,type:str]
     pgp:
-        - created_at: "2024-05-15T22:00:47Z"
+        - created_at: "2024-05-16T14:39:29Z"
           enc: |-
             -----BEGIN PGP MESSAGE-----
 
-            hQIMAwAAAAAAAAAAARAAhzbZIDnetB581Axq9UZVB0iHD2B2ROeOV8kbMEt4LXGX
-            2fvRD9JKRJJYH8yyctcoXR2qz9P4VWMZJgyQllrDubxasZ/vNBejZAWYgANgKihW
-            XshXpreQmfjEVseuKr9RyuSSQ8qec5Wq/3+f0YET0LV4nDbi7FZSkH9EgbCeSbD5
-            1uWv5n8DcYhfzW9neMJ6rxX8hHz1Lpag5I/S4J9T/Fn75brauoGrDabMZFxN+vot
-            Gz95eBbtPZHIfT21ZHOInLbe5ug8srWVQfhSrBJLU33CcR9EeXRQwCnXPKz3CzU6
-            ue+XIB+gxLB3YrlTeDpXOg6F8uMg9j8ichcPD0ixThlNRHyhocJtkmcn1V/ol5QA
-            TUuMKWwmeC2e5oB+SfvzsJiYxfte+t22RsaBMTa+XWNpVKgVtSV045+lBnvW3s9j
-            H+pEdc+EKjN2vVt+UxdXP2jFvJoEjqHxo79wjAO1HG/TaO1rw5klDPfdXnPxOdf9
-            Sgy24nMJtoREqC4Qi/YqKLOzEuiqk2D8vWuJyDKWF3elZgNm9wa85Qh2GAKZkhyO
-            bJyrbHS8Wws3YBbcZSnyGYtSjtS6VA+VR0Z/XlWuTIEFAvWCrNuWHfU7pFcjt0ZX
-            VxtrlfX7i6TurI6NwrHUPJZHtSHEaySsJtPbhNIuJhbRveKd53MrD51x1JIl+PHS
-            XgF/L2tvmPCu78q6dS1+TDN8AvSDSofeXJdHGN9LREDJ88DR7Tgmg6ZNcYTEB4cE
-            3on5LY/9zRXoqyMlAWXzvSXseiv1lWcCKSk8/tsfqStjsR8S0mX6NcynOQIr6vI=
-            =ohnZ
+            hQIMAwAAAAAAAAAAAQ//ftDglv3zqHF6Xewhr+0YFz7L1tDYjgkr/tPqSVT+Oy0v
+            rpOWcO75WT+760Ea2KNCQxt1JMoXN3HBbVj2DH3NHu86Cl33X2V+odMx+vnmAw3g
+            qcql76SwDxxtDDnJXlWgs/MJN5HpO9L5l6Rvl6A/9vSgzugQirZ+kDH0gcEavlNK
+            uUp3+I9SzfVg7ZWGZccDqYgYmL5vxPEeKDYDXFq8k9f7VM7yxibIOpD/wcypUCkH
+            bmXHNLYjXaBe6YWI09wxy4QwG/xgJGv/6R9+w/a2t4Ab80WnLqHFWRNItyqF+tia
+            hpyJfJ+nRQcg+06Li2mQ3L5SILNT032WEb2bx9YX2h4K5O/nWnRrGmNUEhhOdeIq
+            MmW+LmQDCdZZ5i/L/7cqtIA5chAEmDgXi3PMG0v3LGrnK07Jid+uoHDzcpyWPEiv
+            APxkUPIMfMbzl5XLSTRW2fWTZU3V/td+Bjs5oSC246Gl+Df3jqTlcEGdw8saWFFr
+            s+b9cptmjK8L70ksZBIvndZ0rfJ6DAkzi8MByMDmap6MMt/TjRYMugrKvAZA3kDx
+            Waizqo+u/p6mZMSsEy53qukLx8XBj5azEy3Fk2Gnzluo5YdrCW3FQ/2p2kyeiWqY
+            wdE8DyjUz+slcTst5DjZTEfl6E9p2x0qKwLQWEYuWJabiH7aEtffOPAdlsWDQzPS
+            XgEukxoNrud81fZqHLlw+AEFk3pzm70S6qNDeqHPrpEaC0O0aBGd7QFZAwwDuqS1
+            mVkKiF8T6PQ4ICQOz1Z5R4vb4uZNc/qgQnzBZhYbjKzrP6NG5+2nC6a6/6bSY2U=
+            =xDMU
             -----END PGP MESSAGE-----
           fp: bbc2e771fcf10534c8c7f960030d26b30736cba9
     unencrypted_suffix: _unencrypted