From 97e6508ab9378dc3a61d7b5df1459231f6b9071a Mon Sep 17 00:00:00 2001
From: DACHXY <Danny10132024@gmail.com>
Date: Tue, 22 Apr 2025 13:33:06 +0800
Subject: [PATCH] security: add sops-nix for dn-pre7780

---
 .sops.yaml                        |  5 +++++
 system/dev/dn-pre7780/secret.yaml | 27 +++++++++++++++++++++++++++
 2 files changed, 32 insertions(+)
 create mode 100644 system/dev/dn-pre7780/secret.yaml

diff --git a/.sops.yaml b/.sops.yaml
index 6adfc19..a014a40 100644
--- a/.sops.yaml
+++ b/.sops.yaml
@@ -1,8 +1,13 @@
 keys:
   - &dn_server age1z6f643a6vqm7cqh6fna5dhmxfkgwxgqy8kg9s0vf9uxhaswtngtspmqsjw
+  - &dn_pre7780 age1uvsvf5ljaezh5wze32p685kfentyle0l2mvysc67yvgct2h4850qqph9lv
 
 creation_rules:
   - path_regex: system/dev/dn-server/secret.yaml
     key_groups:
       - age:
           - *dn_server
+  - path_regex: system/dev/dn-pre7780/secret.yaml
+    key_groups:
+      - age:
+          - *dn_pre7780
diff --git a/system/dev/dn-pre7780/secret.yaml b/system/dev/dn-pre7780/secret.yaml
new file mode 100644
index 0000000..c2d959b
--- /dev/null
+++ b/system/dev/dn-pre7780/secret.yaml
@@ -0,0 +1,27 @@
+wireguard:
+    privateKey: ""
+    conf: ENC[AES256_GCM,data:ozLdARKsxx5WNxyDgNttKW+FC9/4xEZ0UYmayf04IYNwzzps5Njdtwz1M8/sJoFKoqR7FlQ8eEz1RLCHl9nFwwLkcd14Qm3Du/8Rujw2ZiGJWxO1H71tnJwZBNg0Hr0ex5j4aCs7A38yWA+Grj4FOPvfyMt/zTzUZfu2PYWfPuwMmxR6EU8AMTSDaHUhf26ZwpWg5TG3QjiEJHKnJPzjUo8Imff7XnMENmVMbRSgxCe7CDyrKIAkxQ568sqJpNIovtEXRdEtdLnzI3wUW8WEEnRrfpPwACBsxJxyXLvkr2KIboA4caKiqcFNnx0dzVbDbbWOcgipN3b/ztzNU+mp,iv:p+ITGhlXfDsbx4V+1+P0wKy4OCMXxQZb4loflzFUcrw=,tag:bJuOcphL/K9pBHs/CLQ8rA==,type:str]
+nextcloud:
+    adminPassword: ""
+step_ca:
+    password: ""
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age1uvsvf5ljaezh5wze32p685kfentyle0l2mvysc67yvgct2h4850qqph9lv
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBmSi9ZMWV2V2dETWJsU1JC
+            dm8rWjJOMEh3bW94SFg2RDZlR2h4MFNPbGh3Ck9GeW16OGVNb1g5T1pXZU53T0xr
+            cjZSZjhIN212ZUhvM3lQM3cxY21ZM3MKLS0tIEZSaEZtcjlPQXQ5anYrZlZ5WmdJ
+            MEdmWkFwNXZoR1ZVRnQ0aWlkYzZwSmsK0EFecUIdqlDKX08oRCoDQQ3QCX1wzb8w
+            lghDJhWlfuKr+X24GoE4UK04aJVLqVMRRI4BJW+LQXeHS+dWKu3mQA==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2025-04-22T05:31:48Z"
+    mac: ENC[AES256_GCM,data:8zk3mg3o9CDfu0E66Duyfbeo73hFhrDi3o7lrEv4fysW4lmaXCegHk36zUDlOwap/t5GAifXMXoyVAdbGa8K7IHDt2wEpQxkWrsYsXo9iEBjIMnLLF+OcsXanE1DqCVDnrHHaQ8WnMRff/w504EKDuU4gAAbZ7YSTqYCEu4yLsw=,iv:9VYC22CvM9BkW/ltb9mvB13UupURLla/5yXoYvOCzVg=,tag:xAZOqfEdz/J+PIHUNG2ybQ==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.9.4