-
Notifications
You must be signed in to change notification settings - Fork 0
Secrets Management
ワフ edited this page Jan 20, 2023
·
1 revision
When decrypting a file with the corresponding identity, sops will look for a text file name keys.txt located in a sops subdirectory of your user configuration directory.
- On Linux, this would be $XDG_CONFIG_HOME/sops/age/keys.txt.
- On macOS, this would be $HOME/Library/Application Support/sops/age/keys.txt.
- On Windows, this would be %AppData%\sops\age\keys.txt.
You can specify the location of this file manually by setting the environment variable SOPS_AGE_KEY_FILE.
Alternatively you can provide the the key(s) directly by setting the SOPS_AGE_KEY environment variable.
The contents of this key file should be a list of age X25519 identities, one per line.
Lines beginning with # are considered comments and ignored.
Each identity will be tried in sequence until one is able to decrypt the data.
Encrypting with SSH keys via age is not yet supported by sops.