From df718624c593cf540c538c258640fcf2f8b5ec87 Mon Sep 17 00:00:00 2001
From: Daniel Flanagan <daniel@lyte.dev>
Date: Fri, 28 Jul 2023 13:18:29 -0500
Subject: [PATCH] Stupid mode

---
 os/linux/nix/machines/beefcake.nix        | 33 +++++++++++------------
 os/linux/nix/secrets/beefcake/secrets.yml |  9 +++----
 2 files changed, 19 insertions(+), 23 deletions(-)

diff --git a/os/linux/nix/machines/beefcake.nix b/os/linux/nix/machines/beefcake.nix
index 128d057..38d9c38 100644
--- a/os/linux/nix/machines/beefcake.nix
+++ b/os/linux/nix/machines/beefcake.nix
@@ -26,30 +26,29 @@
       generateKey = true;
     };
     secrets = {
-      example-key = {
-        # see these and other options' documentation here:
-        # https://github.com/Mic92/sops-nix#set-secret-permissionowner-and-allow-services-to-access-it
+      # example-key = {
+      #   # see these and other options' documentation here:
+      #   # https://github.com/Mic92/sops-nix#set-secret-permissionowner-and-allow-services-to-access-it
 
-        # set permissions:
-        # mode = "0440";
-        # owner = config.users.users.nobody.name;
-        # group = config.users.users.nobody.group;
+      #   # set permissions:
+      #   # mode = "0440";
+      #   # owner = config.users.users.nobody.name;
+      #   # group = config.users.users.nobody.group;
 
-        # restart service when a secret changes or is newly initialized
-        # restartUnits = [ "home-assistant.service" ];
+      #   # restart service when a secret changes or is newly initialized
+      #   # restartUnits = [ "home-assistant.service" ];
 
-        # symlink to certain directories
-        path = "/var/lib/my-example-key/secrets.yaml";
+      #   # symlink to certain directories
+      #   path = "/var/lib/my-example-key/secrets.yaml";
 
-        # for use as a user password
-        # neededForUsers = true;
-      };
+      #   # for use as a user password
+      #   # neededForUsers = true;
+      # };
 
       # subdirectory
-      "myservice/my_subdir/my_secret" = { };
+      # "myservice/my_subdir/my_secret" = { };
 
-      api-lyte-dev = {
-        format = "json";
+      "api.lyte.dev" = {
         path = "${services.api-lyte-dev.stateDir}/secrets.json";
         mode = "0440";
         owner = services.api-lyte-dev.user;
diff --git a/os/linux/nix/secrets/beefcake/secrets.yml b/os/linux/nix/secrets/beefcake/secrets.yml
index 806acb5..108405e 100644
--- a/os/linux/nix/secrets/beefcake/secrets.yml
+++ b/os/linux/nix/secrets/beefcake/secrets.yml
@@ -8,10 +8,7 @@ example_number: ENC[AES256_GCM,data:AifVPuuPnEw2lQ==,iv:/L/vG2znNlM35u4ZGM31bweT
 example_booleans:
     - ENC[AES256_GCM,data:GD3U7Q==,iv:ahTK9d6m8lQkjd2sS9Yo6V3EyFWoyEbeQG6Uke4hF40=,tag:rykfnfaLz39V+SJbomu5Zw==,type:bool]
     - ENC[AES256_GCM,data:hK/CtTQ=,iv:EFXdBumvMKdaXdd97vUBIMKIaw1rMfUt+/irkRZGc4Y=,tag:JofhZ5SS+jzRe6WJmP34Xg==,type:bool]
-api.lyte.dev:
-    DISCORD_BOT_TOKEN: ENC[AES256_GCM,data:lzK6/k1bmEPNg92X27rN6/hslxlFWrqhLwTmyKSedImMglOkx8OVDno43ei+RwufPT1C+9hnlpTVh60=,iv:Ye/RClrP2XPn/Mo3IDYdJ4fHS83JkF+VwUNidOZJjj0=,tag:DfehtzPxfp6SlhezYWjUfA==,type:str]
-    DISCORD_OWNER_USER_ID: ENC[AES256_GCM,data:Rfqg6lhXNT2LjgUDKwv6m2P5,iv:weD8F0pR3TeX5eS+7YhK91gRoE525ILn9fUfJpUlhLc=,tag:5aMrfiS0lzS3/HfjagE8GA==,type:str]
-    OPENAI_TOKEN: ENC[AES256_GCM,data:ZVZZIYV0DhChmJBqXWnbvPLLQTNwmKhj7wxuehO3JwKdj5UqYoMlKO1GqhZ00hg1zRrZ,iv:4B8VWjcn3o4/iTO2GU+ZANv0aXYelRKZaIKDReIuoKk=,tag:u/3yBi6TyHZvXmrkpcsjIQ==,type:str]
+api.lyte.dev: ENC[AES256_GCM,data:14C5GQ41m/g7qHPzxlYoWjKWDOcm7MEDkuSofiuLfRNc/nji61t1eDbKX3d+SQL1UBchJFoBrWrUxnf0mUERhED1196z8vUq2jKEkcqKCAUS3soECInlb8zcxTcxaTFjYSjp1vUBdAn05AqLsF+hh9Bsm4fMQYjnHEZke9EmPZhuTlUdZa4eLv3+L3xAPHk2QIHQhdsjcTjGAZRMZOgTEcCvtGlb5pQuo11XmR2JzwzOXMC51WFDeOIWMAdO80yQBAdILso7rp1Nts/lwF0Bc9t7bNdHyoVTOA==,iv:jWGqUpXOTb/O972qXOqeX0EMFQLDKwaNHBqlpuGrZOk=,tag:uwB/jlAgESkLZ+vJ/OeV0A==,type:str]
 sops:
     kms: []
     gcp_kms: []
@@ -36,8 +33,8 @@ sops:
             b0lTRjVCMU9ELzdvbFBJZ0tHbGtsYkEKLEcXCEikC3T3hfVOYKtWcNSGmfg28y+f
             nGC4dQh9EciEbk1ZBbN3i6YSNULDoMSH172KBmRyt1ogr1ZPyCNqtg==
             -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2023-07-28T18:02:26Z"
-    mac: ENC[AES256_GCM,data:YRKrztKaKWqjnSDqWCd1Bbjhg9fpy3nQJqU7Ilt+wuUHiMp/h7x6uucxwton89LIOimJF/crJOvtweryt1zzXrdwOG8h2bUq+T9SLWqxbh30VXiugPChO/vsAHgCCVZBMsgJnUGvVbUY3lP1TEyxcwZhHvuRXGudDEjDgcEwtFw=,iv:7nkY3gT9CVVnDjuljQ3A4t9Og7h+EDUTx+XVD08UuVA=,tag:NCALXKsU16PLYh0EZuXiDA==,type:str]
+    lastmodified: "2023-07-28T18:18:23Z"
+    mac: ENC[AES256_GCM,data:1jsXTfH2XFdm+99XBkZ6Esy8FCQuVYb1khA+iESLdGcQqrkHq5uRBsYD151BcMq7bCz/NDJPzvYx1gdKk1BqWrecfvfbpLZTfySF0LyXkZkGZwiP1Z54NMiFZ5Qp3jLYkwn1le5BPAFYcv8q3qeXCHmoxlCHAbzbvaMzlGhqLcE=,iv:wHEZqC75m+my0g/KUP2oTZMagsSIoXc/cgRp0MF1PyY=,tag:Z9C6Nkqvibw3voAk4l6qAA==,type:str]
     pgp: []
     unencrypted_suffix: _unencrypted
     version: 3.7.3