|
|
|
@ -20,6 +20,14 @@ gpg --import /path/to/keys/*.gpg.pub
|
|
|
|
gpg --list-keys --keyid-format=long
|
|
|
|
gpg --list-keys --keyid-format=long
|
|
|
|
```
|
|
|
|
```
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# EOL: Archive Expired Keys
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
To mark a key as expired, move it to the `archive/` dir as follows:
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
```bash
|
|
|
|
|
|
|
|
mv ${keyname} "archive/${keyname}_$(date '+%Y-%m-%d').archive"
|
|
|
|
|
|
|
|
```
|
|
|
|
|
|
|
|
|
|
|
|
# Configure SOPS
|
|
|
|
# Configure SOPS
|
|
|
|
|
|
|
|
|
|
|
|
SOPS is used for encrypting secrets, e.g. credentials for various systems
|
|
|
|
SOPS is used for encrypting secrets, e.g. credentials for various systems
|
|
|
|
@ -64,4 +72,4 @@ sops -e -i secrets.yaml
|
|
|
|
|
|
|
|
|
|
|
|
# decript, print to console
|
|
|
|
# decript, print to console
|
|
|
|
sops -d secrets.yaml
|
|
|
|
sops -d secrets.yaml
|
|
|
|
```
|
|
|
|
```
|
|
|
|
|
Lee Watson
10 months ago