infra/kubernetes
1
0
Fork 0
Code Pull Requests 3 Activity

keyserv: Deploy keyserv

Browse Source 
`keyserv` is a little utility I wrote to dispense *age* keys to clients.
It uses SSH certificates for authentication.  If the client presents an
SSH certificate signed by a trusted key, the server will return all the
keys the principal(s) listed in the certificate are allowed to use.  The
response is encrypted with the public key from the certificate, so the
client must have access to the corresponding private key in order to
read the response.

I am currently using this server to provide keys for the new
configuration policy.  The keys herein are used to encrypt NUT monitor
passwords.
This commit is contained in:
Dustin
2024-01-19 22:08:25 -06:00
parent 897923a172
commit 534c4bfca0
19 changed files with 341 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
keyserv/age-keys/age1xfmmwhutwr4cml4dlj6rq6r9mgjs3fake0q4wuly5z9r9mqgk4nsk53d5j Normal file
View File

@@ -0,0 +1,8 @@
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSAwVWk1WGxLRTNPUjFHd2ox
Vy9xZFppdzNZR0diNnJ6NE9UMXBBV1Rnb3pRCjBUVFEwNWtkUFFXY3BSbVdlY3Nr
MlFHa2RyZ2ZlUGZrdzhuVm02UVJ6YW8KLS0tIGR1SThDSXlCOXUvUlBqbVAxN1JN
eDkwSjJoNmlmTlREOFY0Z0V5d21mMWsKUyb6AjI0ZatJV0DSVUn2eE1uHO5alJnC
P5BXKcOhq3yFc4ounDnAUKl+nM6rplIkIfcg9cljf4Mf59Mxwq80EB5Kk1TIOioi
GGGnFilwhUeV122CAKiLbTI4CL9DK+8YY4upuh0QG60bSBs=
-----END AGE ENCRYPTED FILE-----