6ed53333da
This must be done outside of a Makefile environment due to how it affects the programs that run inside `make`. `sops exec-env` will decrypt a file and export the values as environment variables for the program specified, which in this case is the user's shell. This commit also includes a `.sops.yaml` file with the three PGP keys from the Makefile and regenerates the DigitalOcean PAT. |
||
---|---|---|
config | ||
infra | ||
keys | ||
secrets | ||
src | ||
.gitignore | ||
.gitmodules | ||
.sops.yaml | ||
LICENSE | ||
Makefile | ||
README.md |
README.md
Distrust Infrastructure
For the purpose of transparency, we include our infrastructure configuration right out in the open to encourage those we work with, and otherwise to do the same.
Dependencies
- Docker
- GNU Make
Usage
$ sops exec-env secrets/production.enc.env $(getent passwd $UID | cut -d: -f7)
$ make