diff options
Diffstat (limited to 'regenerate-secrets.sh')
| -rwxr-xr-x | regenerate-secrets.sh | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/regenerate-secrets.sh b/regenerate-secrets.sh index 08d54821..1451d5b6 100755 --- a/regenerate-secrets.sh +++ b/regenerate-secrets.sh @@ -10,8 +10,9 @@ port () { hostkey () { case $1 in - # lap has no SSH host keys, so use a special age key. + # Laptops have no SSH host keys, so use a special age key. lap) echo age1r2q54q6phf47ssc2wrw6enpdlghfaj0pdhp879se4d47zlkgq4sskzlj25 ;; + frm) echo age1wm9cn6pwguc6a26ltlf39c00qlyka8c48dfc2fcj9w7j522ekcaq5hg2e8 ;; *) ssh-keygen -F "[$1.twilken.net]:$(port "$1")" | awk '$2 == "ssh-ed25519" { print $2, $3 }' ;; esac @@ -30,9 +31,9 @@ store_restic () { } # Wireguard secret keys and pre-shared keys. -for host in lap lud vin; do +for host in lap lud vin frm; do store "$host" "computers/wireguard/private/$host" "tw/system/files/wireguard/$host.key.enc" - for host2 in lap lud vin pi3 fp4; do + for host2 in lap lud vin pi3 fp4 frm; do [ $host = $host2 ] && continue store "$host" "computers/wireguard/preshared/$host-$host2" "tw/system/files/wireguard/$host-$host2.psk.enc" done |