mirror of
https://github.com/ryantm/agenix.git
synced 2024-11-22 09:40:47 +03:00
dddc664d4a
Currently rekey re-encrypts all files. For my personal use-case, agenix would ideally only files that require rekeying, i.e. files where the identities changed. But I don’t think there’s an (easy) way to achieve that with `age` currently, as there’s no way to get the current recipients from an encrypted file? This change would allow the user to manually specifiy that only secrets that contain a given identity should be rekeyed. In my use-case this is handy as when I add a new server I want all secrets that are shared between servers (where the new identity was added) to be rekeyed, but I don’t want all secrets that are personal to different servers to also be rekeyed. |
||
|---|---|---|
| .. | ||
| agenix.nix | ||
| agenix.sh | ||
| doc.nix | ||