From 48e1c530c35103de1489b326ac9b2a8fe8d95fd5 Mon Sep 17 00:00:00 2001
From: Sheogorath <sheogorath@shivering-isles.com>
Date: Fri, 13 Aug 2021 21:20:04 +0200
Subject: [PATCH] Improve sops and gitignore handling

This patch adds the new way to handle secrets by using `.yamld` for
decrypted files. This should help to prevent ever commiting secrets
unencrypted.
---
 .gitignore                             | 1 +
 clusters/okd4/.sops.yaml => .sops.yaml | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)
 create mode 100644 .gitignore
 rename clusters/okd4/.sops.yaml => .sops.yaml (80%)

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 000000000..eb3e9af0b
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1 @@
+*.yamld
diff --git a/clusters/okd4/.sops.yaml b/.sops.yaml
similarity index 80%
rename from clusters/okd4/.sops.yaml
rename to .sops.yaml
index e7bfab748..44d4ba7ca 100644
--- a/clusters/okd4/.sops.yaml
+++ b/.sops.yaml
@@ -1,5 +1,5 @@
 creation_rules:
-  - path_regex: .*.yaml
+  - path_regex: clusters/okd4/.*.yamld?
     encrypted_regex: ^(data|stringData)$
     pgp: >-
       9D02A9AD73EF7F3D5F657AC2B392F6EB325E8C50,
-- 
GitLab