From 4c7f22b90377331765392e1d262b9ea66713a673 Mon Sep 17 00:00:00 2001
From: Thierry Pouplier <thierrypouplier@gmail.com>
Date: Sat, 9 Aug 2025 00:05:47 +0000
Subject: [PATCH 1/3] Fixed typo

---
 modules/nixos/filesystem/hoardingcow-mount.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/nixos/filesystem/hoardingcow-mount.nix b/modules/nixos/filesystem/hoardingcow-mount.nix
index 1b9db33..f334e62 100644
--- a/modules/nixos/filesystem/hoardingcow-mount.nix
+++ b/modules/nixos/filesystem/hoardingcow-mount.nix
@@ -1,7 +1,7 @@
 { pkgs, lib, config, ... }: {
 
   options = {
-    hoardingcow-mount.enable = lib.mkEnableOption "enable hoardingcow acces";
+    hoardingcow-mount.enable = lib.mkEnableOption "enable hoardingcow access";
   };
   config = lib.mkIf config.hoardingcow-mount.enable {
     fileSystems."/mnt/HoardingCow_docker_data" = {

From 3497d93dcb7cc064e2bebcbf48086ac49088d21c Mon Sep 17 00:00:00 2001
From: Thierry Pouplier <thierrypouplier@gmail.com>
Date: Tue, 19 Aug 2025 18:00:09 -0400
Subject: [PATCH 2/3] Added a bootstrap key

---
 hosts/lazyworkhorse/configuration.nix | 14 +++++++-------
 lib/keys.nix                          |  1 +
 secrets/secrets.nix                   |  2 +-
 3 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/hosts/lazyworkhorse/configuration.nix b/hosts/lazyworkhorse/configuration.nix
index bb2770c..81aef1a 100644
--- a/hosts/lazyworkhorse/configuration.nix
+++ b/hosts/lazyworkhorse/configuration.nix
@@ -143,13 +143,13 @@
         group = "root";
         mode = "0400";
       };
-      # lazyworkhorse_host_ssh_key = {
-      #   file = ../../secrets/lazyworkhorse_host_ssh_key.age;
-      #   owner = "root";
-      #   group = "root";
-      #   mode = "0600";
-      #   path = "/etc/ssh/ssh_host_ed25519_key";
-      # };
+      lazyworkhorse_host_ssh_key = {
+        file = ../../secrets/lazyworkhorse_host_ssh_key.age;
+        owner = "root";
+        group = "root";
+        mode = "0600";
+        path = "/etc/ssh/ssh_host_ed25519_key";
+      };
     };
   };
 
diff --git a/lib/keys.nix b/lib/keys.nix
index e82a203..b3f8d77 100644
--- a/lib/keys.nix
+++ b/lib/keys.nix
@@ -12,6 +12,7 @@
       main = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINmXqD+bBveCYf4khmARA0uaCzkBOUIE077ZrInLNs1O";
       github = "";
       gitea = "";
+      bootstrap = "age1r796v2uldtspawyh863pks74sd2pwcan8j4e4pjzsvkmr3vjja9qpz5ste";
     };
   };
 }
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 3cdbe08..e3a853f 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -1,6 +1,6 @@
 let
   keys = import ../lib/keys.nix;
-  authorizedKeys = [ keys.users.gortium.main keys.hosts.lazyworkhorse.main ];
+  authorizedKeys = [ keys.users.gortium.main keys.hosts.lazyworkhorse.main keys.hosts.lazyworkhorse.bootstrap ];
 in
 {
   "containers.env.age".publicKeys = authorizedKeys;

From a8851c19e4515aa31e6fd7202d82502ca248614e Mon Sep 17 00:00:00 2001
From: Thierry Pouplier <thierrypouplier@gmail.com>
Date: Sun, 24 Aug 2025 19:02:42 -0400
Subject: [PATCH 3/3] Working bootstrap key

---
 flake.lock                             |  12 ++++++------
 flake.nix                              |   5 ++++-
 secrets/containers.env.age             |  15 ++++++++-------
 secrets/lazyworkhorse_host_ssh_key.age | Bin 727 -> 825 bytes
 4 files changed, 18 insertions(+), 14 deletions(-)

diff --git a/flake.lock b/flake.lock
index a5b95ac..58340e8 100644
--- a/flake.lock
+++ b/flake.lock
@@ -10,11 +10,11 @@
         "systems": "systems"
       },
       "locked": {
-        "lastModified": 1754337839,
-        "narHash": "sha256-fEc2/4YsJwtnLU7HCFMRckb0u9UNnDZmwGhXT5U5NTw=",
+        "lastModified": 1754433428,
+        "narHash": "sha256-NA/FT2hVhKDftbHSwVnoRTFhes62+7dxZbxj5Gxvghs=",
         "owner": "ryantm",
         "repo": "agenix",
-        "rev": "856df6f6922845abd4fd958ce21febc07ca2fa45",
+        "rev": "9edb1787864c4f59ae5074ad498b6272b3ec308d",
         "type": "github"
       },
       "original": {
@@ -46,11 +46,11 @@
     },
     "nixpkgs": {
       "locked": {
-        "lastModified": 1753939845,
-        "narHash": "sha256-K2ViRJfdVGE8tpJejs8Qpvvejks1+A4GQej/lBk5y7I=",
+        "lastModified": 1755615617,
+        "narHash": "sha256-HMwfAJBdrr8wXAkbGhtcby1zGFvs+StOp19xNsbqdOg=",
         "owner": "nixos",
         "repo": "nixpkgs",
-        "rev": "94def634a20494ee057c76998843c015909d6311",
+        "rev": "20075955deac2583bb12f07151c2df830ef346b4",
         "type": "github"
       },
       "original": {
diff --git a/flake.nix b/flake.nix
index af799ae..7943f17 100644
--- a/flake.nix
+++ b/flake.nix
@@ -17,7 +17,10 @@
       keys = import ./lib/keys.nix;
       paths = {
         flake = "/home/gortium/infra";
-        identities = [ "/home/gortium/.ssh/gortium_ssh_key" "/etc/ssh/ssh_host_ed25519_key" ];
+        identities = [
+          "/home/gortium/.ssh/gortium_ssh_key"
+          "/etc/ssh/ssh_host_ed25519_key"
+          "/root/.age/bootstrap.key" ];
       };
       overlays = [ agenix.overlays.default ];
       pkgs = import nixpkgs {
diff --git a/secrets/containers.env.age b/secrets/containers.env.age
index 2a8c362..5dffed4 100644
--- a/secrets/containers.env.age
+++ b/secrets/containers.env.age
@@ -1,8 +1,9 @@
 age-encryption.org/v1
--> ssh-ed25519 GhMD8A rV+MVE/yCBXffr3Za8av5+lL8B/473Owe7phe2oKzXs
-1Y3qBT07SKzO0EaSzLelbz5/whoEVfBD52N4+WwVScU
--> ssh-ed25519 kYn3oA fHmhGCOWPfUOQpGEY0+lA6akxhJcCzn1zmiBQFeD4wg
-k48jDsxD7uXfg+VUgM0+PIL1WOBdSOGsLyvsuqYOziY
---- PXyg0xCJqashEWw9FNHv5g9UWWZ/vzvgKfZJ85OyNKU
-Ü;O*ììþ½¬àEü[¶ƒ	ú„z4XG‘;R~ÓSê\çÂ7Ð‚ßîì¯>ÌZ¥¬Uö,üéì“ÎÈ¬êç³¿’#³„ß`:Ô%' ixû…ÉŸMfßÆW
-Å&EÇÌ›ó›C °>íH–,´ëîÁíW«Zºä‰%×@ênèY Ã
\ No newline at end of file
+-> ssh-ed25519 GhMD8A gLjSioFoNbora4jCZw3UguGp5TdUBLLMaYAiW11T824
+TXRVls3R4Zaz2AOvRujcy1kf2XqBQulK3gRzoh45g5g
+-> ssh-ed25519 kYn3oA 25YlZSMkVE6I3VMUrlF4t3ZwuKj9PsMQoh2gi/pHb10
+CAFHTAZ7eyGHT8t766aBiT2Iiq9ZBKitVIIt3AxJfTE
+-> X25519 2mIaB09iQVif9F3UF9azfs5bFpUkLIU4wtjsyavHPHc
+GAoZGils65rkG8wOhR4MJB1M2c9IdVSPh0frZdc3Pg0
+--- 4Ujt4d9bouX5RsLq4WnkKb8vvGCrsLXfk3MWxP4Jar0
+ùÚ÷’ÔÒ“Ùw9"ýâ=UYEÞŠ(¬J9çmw{ûý\­jcc>ÖN»q…­T|ƒ»^õˆˆ¸öX¶´äyõíÀïö”¥ÇIœ¤+ß˜œÛóN> |Hƒº´ß€“WcØW—Ó	Šz“^9¨TØˆ	.qüú²æÉ	ª£á¨L
\ No newline at end of file
diff --git a/secrets/lazyworkhorse_host_ssh_key.age b/secrets/lazyworkhorse_host_ssh_key.age
index 6fc1a13e78b88f5d699ca899e3233c1ab170e40a..ac242175efc6e3115ff4870a0a6a73101c993bed 100644
GIT binary patch
delta 794
zcmV+#1LgeJ1-S;0EPpjGH%LivP(oO9M|UwXctL1WRakX5F;{L-Fi3S~S};g%FLF>r
za%^lcRSHHyMtXBjY)3<BH&;1FFk@zLQ&wp+WO8;-G;d;Na&|~$WKVB4IB`o)RSGRW
zAaiqQEoEdfH8n9gAZuA}GjBm4OEETQD`!}1I8${>ctvt*Q-3!wF*r*|LU&?Vcy~8e
zaYSxnabh+{I5lWE3T8}dZf!wUQcN^CMr?UWc6C!mG<ivQOl3?`XE$L(L`qk9P(@Hx
zRcUxt3N1b$STZ#=F*zVFaCJmgIdL#!PeNC5dM{5?b9HhzQEP8cSVnj<SvF~Oab!kH
za92TDMMVl@bbmo>SY<Fzcr!*rF;_WLI5c5RLsEK5Gh$0MSVJ;-PjX2$aW!{PWI0s|
zEiEk|F?upEM|Nd3XE{+tN_J6nI5IO;Pfc!9Y-V_OModFfOJi9~O+{=uM|wdDD$+1*
zZT50Z0G{d9<)L!GD~wa&(_C1O^c>Drs)TM&oLU{-+J7_0>1ykM=@Zmxjz62(ySPa~
z+`NLx_a;Q>)VC5!hO3#z%F1T81DsOR1+a_G^QYlU8B{J<HYzgt;ccY^ib-s-1Y*s7
z;L`d#Y*`yE9r?jwz0TIlHW-U<Xc_V7Vx-eu$H2x;Cx8K0V7gx8P#hyRhL*7V{p^?4
zVT(OS%YPwk`3iKvcwY$56Kqfo#BlV|GP26o2p$qbY=l0CukBri4*Td9)N;BPmY*y(
zLP7x}(9Dh7Q-?ui_>2SIs2mO8ldWvElbMCYlUMK<r@v}*nEJo^o{c95&h0%R>7`MP
zzJW%}{XPo6D|$$Z7l(ahQb!!ZPeW#|Fh>*vKYzaN`L&r9X0dwnNvG5pWy4#+YlpX1
z1A^t<lnCZq^bT3S7sfzC0qZ@pVoQxO=(YL+yqV<baguq~zbOl&>iB8h<s6nXl;HnC
z=(&A&5dR<zc`SDghz%otK`2**w}S|-={FoDDU(<}-3ZbV9(W{Lqb^;B_5-EUa!V3o
Y?-R1P6UW`EPbp}f%)iCA=stBz7~#WA;s5{u

delta 695
zcmV;o0!aP22G<3UEPrlvT5B(NYi3z&R8UJeI5RauYj9^dbx%lkOJ`O_MnY*cdRbXS
zPgqfCSqf4!cThoTR#!A`Pjz@_bTKb+aCLTdH91yjOE_m~IXG5rRcUWfQek0DV+t)k
zAaiqQEoEdfH8n9gAZuA}GjBm4Y*#XLQ7=|TO-4;YVK!)acYkL>WL9%_Pjf43cUnPb
zO<6%uNKZmXRd_)#3VKOJO?X&GZ#hYMG;u>kQciMsR%1p=SaL#GcWg8^WK&T}ZFEX+
zb~0313N0-yAVP3!Gjd90a%?qjH&R10c11%}V^vscQ8I5vZ%A4}G%<B|D@sr{M=La0
z3N9bCGK|IK41dzUq*B^L!p3N$2}9DWCQ|gj!TE2$_>ATb9xFyCuWcB3MZCSxwA>;K
z=vV65o6zsZ`;d1nP9^Jbj7id#=c;xcf^7Iqb#A{q3P*IrMXoU}X~@M|Thh1mriL+x
z8_@63feL!md}9EIR=dQ76Z;<l*}|jt!#qtMvpeWv{(mW!mEZbL0lc^F47Os!7nJom
zOP0dX$rzof_0jsNqwxk4pjpix>=lkT1y8WrC_E{+>zQp?`E^}<?=IPJADcn@)I3fd
zY&sgmx#Z;R<mP^npiI)?ocaf6!C89HQv=EIo>lpu0hAaZE=?SJXmV}=2aVHd$(G86
z$Mc^@`+qTR=BKV#pRC3F|0hj5Bf$%w2<E(QIKN9K;bWaNmaALp?uW{0^R}-O_}p2!
z(5^7Mv$l<)D2&Tgg{^RbhI5r2c0&cd)yY-jWExNz(kMt7pS_M|4-C25To~mWeWk3N
zu!yqLPms01(sj&CW4A`v0TlLL)z5|#H;#NnL@<_CJz5wslOCyE1I;R`*dR*Bsjolj
dx*gqz$L-(;5|LDvlnlb6;MAQy=lkvp)&&kDIMDzA