infra/kubernetes
1
0
Fork 0
Code Pull Requests 3 Activity

keyserv: Deploy keyserv

Browse Source 
`keyserv` is a little utility I wrote to dispense *age* keys to clients.
It uses SSH certificates for authentication.  If the client presents an
SSH certificate signed by a trusted key, the server will return all the
keys the principal(s) listed in the certificate are allowed to use.  The
response is encrypted with the public key from the certificate, so the
client must have access to the corresponding private key in order to
read the response.

I am currently using this server to provide keys for the new
configuration policy.  The keys herein are used to encrypt NUT monitor
passwords.
This commit is contained in:
Dustin
2024-01-19 22:08:25 -06:00
parent 897923a172
commit 534c4bfca0
19 changed files with 341 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
keyserv/age-keys/age197zq0l27nwxj74d4pmpat6kqqth235mdc0ggmfm3006v0fy7advsg9ljts Normal file
View File

@@ -0,0 +1,8 @@
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBRQ0NsQkUxUU44SmZWYmJT
ZnRwQ3Q1eHBDVkFGeGtpMWdWWlBzaDI2MDBzCnlBa2R6bGZ5bGM3TGRwNVBWdzNq
Ti9SUVNyblF1R2tpWGNvQytGNDFMZFEKLS0tIGtEWDloL2wwUTB3clBKMlRhcHhZ
dkp4Ui9ZV0tTanh6SGVmNlpyNjRQRlUKRzAEPB2VyVOFwSrzoJOhoGf0pZ3yRVIF
y5kaG/u/ZA1Z4v73koRcTR5m0MJwCU+xmzkwm4UAj6rZ+1F2KbDK1ruEFTuOwMGO
BrNxD/28/mt7YQxmnJ9rL/YE895scKq9E4gqg3S0DuFmNBM=
-----END AGE ENCRYPTED FILE-----