fleet-infra

davide/fleet-infra

Fork 0

Commit Graph

Author	SHA1	Message	Date
Davide Piu	08eb8255a8	sec: new Authelia password + enforce 2FA for all services - Generate new unique password for Authelia (not shared with Gitea) - Change access_control default_policy to two_factor - Re-encrypt authelia-users secret with SOPS	2026-02-19 23:24:26 +00:00
Davide Piu	51bcdebca8	feat: add SOPS encrypted secrets and enable Flux decryption - Add .sops.yaml config with age public key - Encrypt authelia-users, authelia-secrets, vaultwarden-admin - Enable SOPS decryption in Flux Kustomization (gotk-sync.yaml) - Secrets are now safe to store in git (encrypted with age)	2026-02-19 23:20:58 +00:00

Author

SHA1

Message

Date

Davide Piu

08eb8255a8

sec: new Authelia password + enforce 2FA for all services

- Generate new unique password for Authelia (not shared with Gitea)
- Change access_control default_policy to two_factor
- Re-encrypt authelia-users secret with SOPS

2026-02-19 23:24:26 +00:00

Davide Piu

51bcdebca8

feat: add SOPS encrypted secrets and enable Flux decryption

- Add .sops.yaml config with age public key
- Encrypt authelia-users, authelia-secrets, vaultwarden-admin
- Enable SOPS decryption in Flux Kustomization (gotk-sync.yaml)
- Secrets are now safe to store in git (encrypted with age)

2026-02-19 23:20:58 +00:00

2 Commits