Add script for backup secrets generation

bin/generate-backup-secrets.sh

@@ -0,0 +1,27 @@
+#!/bin/bash
+
+set -euo pipefail
+
+cd $(git rev-parse --show-toplevel)
+
+host=$1
+
+job_main=$(nix run nixpkgs#pwgen -- -1 64 1)
+target_cyan=$(nix run nixpkgs#pwgen -- -1 64 1)
+target_cyan_htpasswd=$(nix shell nixpkgs#apacheHttpd -c htpasswd -nbB ${host} ${target_cyan})
+target_magenta=$(nix run nixpkgs#pwgen -- -1 64 1)
+target_magenta_htpasswd=$(nix shell nixpkgs#apacheHttpd -c htpasswd -nbB ${host} ${target_magenta})
+
+mkdir -p hosts/${host}/secrets
+
+echo "$job_main" | nix run github:ryantm/agenix -- -e hosts/${host}/secrets/new
+mv hosts/${host}/secrets/new hosts/${host}/secrets/clerie-backup-job-main.age
+
+echo "$target_cyan" | nix run github:ryantm/agenix -- -e hosts/${host}/secrets/new
+mv hosts/${host}/secrets/new hosts/${host}/secrets/clerie-backup-target-cyan.age
+
+echo "$target_magenta" | nix run github:ryantm/agenix -- -e hosts/${host}/secrets/new
+mv hosts/${host}/secrets/new hosts/${host}/secrets/clerie-backup-target-magenta.age
+
+echo "$target_cyan_htpasswd" | nix run github:ryantm/agenix -- -e hosts/clerie-backup/secrets/restic-server-cyan-htpasswd.age
+echo "$target_magenta_htpasswd" | nix run github:ryantm/agenix -- -e hosts/backup-4/secrets/restic-server-magenta-htpasswd.age