From 787c763b7a033057ed6bac392abc56f97569d3de Mon Sep 17 00:00:00 2001
From: Dreaded_X <tim@huizinga.dev>
Date: Mon, 1 Dec 2025 01:59:39 +0100
Subject: [PATCH] Added sops keys

---
 .gitattributes               |   1 +
 nodes/_defaults.yaml         |   1 +
 nodes/testing/_defaults.yaml |   1 +
 nodes/testing/_sops.asc      | Bin 0 -> 7420 bytes
 nodes/testing/_sops.pub.asc  |  63 +++++++++++++++++++++++++++++++++++
 nodes/titan/_defaults.yaml   |   1 +
 nodes/titan/_sops.asc        | Bin 0 -> 7420 bytes
 nodes/titan/_sops.pub.asc    |  63 +++++++++++++++++++++++++++++++++++
 patches/sops.yaml            |  17 ++++++++++
 9 files changed, 147 insertions(+)
 create mode 100644 nodes/testing/_sops.asc
 create mode 100644 nodes/testing/_sops.pub.asc
 create mode 100644 nodes/titan/_sops.asc
 create mode 100644 nodes/titan/_sops.pub.asc
 create mode 100644 patches/sops.yaml

diff --git a/.gitattributes b/.gitattributes
index cd0b993..4ba266a 100644
--- a/.gitattributes
+++ b/.gitattributes
@@ -1,2 +1,3 @@
 _secrets.yaml filter=git-crypt diff=git-crypt
 secrets.yaml filter=git-crypt diff=git-crypt
+_sops.asc filter=git-crypt diff=git-crypt
diff --git a/nodes/_defaults.yaml b/nodes/_defaults.yaml
index 1f70843..4b17c1b 100644
--- a/nodes/_defaults.yaml
+++ b/nodes/_defaults.yaml
@@ -31,3 +31,4 @@ patches:
   - !patch cilium
 patchesControlPlane:
   - !patch allow-control-plane-workloads
+  - !patch sops
diff --git a/nodes/testing/_defaults.yaml b/nodes/testing/_defaults.yaml
index 1f0088a..8ad83ab 100644
--- a/nodes/testing/_defaults.yaml
+++ b/nodes/testing/_defaults.yaml
@@ -6,3 +6,4 @@ cluster:
   name: testing
   controlPlaneIp: 192.168.1.100
   secretsFile: !realpath _secrets.yaml
+  sopsKeyFile: !realpath _sops.asc
diff --git a/nodes/testing/_sops.asc b/nodes/testing/_sops.asc
new file mode 100644
index 0000000000000000000000000000000000000000..5397e1104657702db64a09bcb65a52e5eb27e08f
GIT binary patch
literal 7420
zcmV<Y90TJ3M@dveQdv+`09^g^W97f0;L$I3#_+ZG^MMx0)T3OUv8VSi=?c}1C@n*i
zZ$uqYu5~9gq9^@gO*0gxG?kiCj7PNP9#9NP7QSf*+68A6D>_NQckv!kLMn5nf)gv|
z%+2s`?knf=OOe2L+PXAIh5m(<0^n?JJl(^M6?n@{ra!vx@>dq{9I<t*-?sY+yKpu^
zC(-aMW*rh?+fv#K+BeN%WJ*0&PA#eFP4#{-XmI!(OFLIQ-l`o>_X24`?ZA<Bk0|Jr
zIhHlQqP$R0u}<ZrWUf5x#iGMr_q%+C>%o<4>5*Q#Zdm7)lj%?x#|4k`sqcX0Ed89V
z_knq^#>W3;HNlv2OdaC3Qp)bhsrO(&Sriqu<3CINC%H-nS%yWHl2J9~sw$V8_heS$
zG_zmS?s>xe1RKV_9mj{cottpO8jk|e5$d;T)50p0tTn<wY{%%{3s89nWo^)Y{nl+#
zS=T@_mjE~pj-BuC2xY$<TlyVn4>HId;Bl@Mnod++?X7t8%{iJ*?7)=xoZZhjQiDe*
zJ@zBP3+KhV;t5B%P}p-7{zt;H^46(OHm#_@dN*>B!>Lb^A78qdES^yF2z>)|PI=1U
z)&2wCFCE;Z!%ltC#DOI07X!!iXuYOt>|n?sHfXTt4B&XFy|#KNL1fEa4f~>sXklk^
zOWKw)JuC?1>APFP6tRvd$t~?ZmaLkfFWx81{Y=6&iKke$@FZ7qajyA@`89_RGy)TP
z1^)L{c-Sf%NKq@+H2;GoL7qI2UHXmdO%HF&iJe4fR4vnuj45T~0hw@mef%x?tk~4S
zSkRpEPY6^6kbPnxbG1aRzyq!VUGU*_tn0E*GW%qCm|j)3doy!{rfs!($O@2>-19G_
zwmb#of0GX73<-NMdM?D-w-ju-y5K!Gv!)V_HkAYn4ajBBk|r$WS5Ay>qKR8P^6+t9
z0DwMlf|S+rI;-jS%dqC^EO#ecoa3J7E=yd;BtS~oF8PJM!wDKR$`#_-vjZ_z3X4pA
z+=<KOPf{{(RcT5-XP}_6I-xY2tS_}e?&E8&@8Jb`zrbVvg506aaPd5(o+GP++hJ+}
z0@wqoRX+0`Pk&24a*YMYmtsR`32#cw$QnC4VK(@?5mH@14tdBfuOed>%u=}|edNPk
z3T>P|j;FAbu@DSrgJnyI_|5r?eUXv4XfsmDfeI#bYCY?FvRsgi?2KXtMV0e)DWjow
zo#d|z+C(-f{F3UK!33LXig_^B5X=}C!L@V&->p^2<NUzP{}59yV3lGzg9UIFYSsDV
z-8*X7KU(H@K3mOs%L04!5cfAWArYC%=|Fm)BfLxV<j2MFYRnXI2P`y~y5?Cyn<zhs
zb(mf^=0Gy9XrZ8M=z_i5H?|}1A{BI~t3mHOVFeTA20-3{U2^|++-Sk++4H{ry`9tV
zPL4kH$qhBp<MIz5`9!ty1w$<ZUpbBV(mQG#jp@Z8y#izLV<*J#l*iLA*i)dxz26=A
z`U*G_U*1*1RtOWI!twA8tCHbqpEI`_zK+88L1n&&04>inIq)VOt*TIHu`DV+VKnnK
zh8<HyM6b?hD#kn>Wdp&P@9zfvELDpIUlo$78;Ya^;BDc2zMsgdmZgJ{QGpt-L}s}i
ze%z%{iB{!n7ap*xIkOo@Cn&&@H{4L9CrUdo0-n@}Dh-s33RC7Dv7v*IMho??*-22b
zs{|<qj#i)~l3mp8VeuD{TX&`Wcz|46sOdl}W(c}pG)qz1&EN=Ne`&Ru?H$vXX6wkJ
zPyM|C5BCk)*ldi^i<Qj*iphH5*?Ipj3xAM|{XLd^NwKtEdTRc{HkK|^_NZ?XOvYMG
zdRK32*!;CsQMa8d^9i~*G=?+PmZipHM-cR{xKDTD@1JQR`Y&-iG7f@AIzu>CjiHF*
zgJnj2S(6krkdG-+^d*RcGmk1A;ri74xf|`GAl86@dF9gcG#b-XM{(a6G8~&9o|^Vi
zN?Am|;pM<pqeLB=JGK20og<b~PH(jYr99f1<t;*|X%V=_MXhVi7cVRbhlB`*Yw@E4
zFobmAA`Jt67J%#L=GDYL!JDm?*i^!~LzR$Mw}q6JKiV-vg~%t(qata6#Q1?iHov=S
z*#lGqMQX!<UXc&+ihpEJUteAw3@~#v(ISroCF_s_u-O;M<A&<tP87ISox?PE-a%eJ
zKhB##=Mvm)-3rOLDd{+&k@zIboa4=|ZoDEBg`~mCSvc+^oTqw!>A&Ihw58xZu+N3|
z6pmP@zLMT=r`FO$^D(8&pFOiPLLehC(+)#k)jf8R__yip)H$dkfHerd@GX~<W&YzN
zFz4<{2L3yVdg^=`SokiSuSq41SFL1PA3Wg$gJAal!}OY<*qL1i2)J=n6_c?W-TPAj
zAchv=T5VT(@#S;(yydi#GRJBbO(<jt;J(vDthQ(U_Z(wv1QA{qioIRHHSko%jHis$
z_k9@9nie;T_HPJJf%?SPQH=qY6CH;|^-szz#xzlL`<8SIb0P+Dx{Ncu(zd-+O{pYC
z$6i}F>M1OZl>2KE*PJcW1*G&@$h=u=R-?XdynGky{2uFpyVPTuY!;b%|GW$Gd^&q>
zz;WBO7ZUoSYCHo%U?*aqo(J0)Tqh_E83NB%VXFYW8JSG1Yuhn8xpU*`(Ol0XPH<Pg
z3PHYy=7*;d|I^K#uZqjHWfld^wDga-I}_vzZ)$)EqlvMCu<y~~Y4ktH0sWx&ITRT8
zRP!Q{JjNUgSl4QG!%T-Lu9}PaZQD}RxrL?oA|UBeT|(KJF)eSfr{;eSZ7=hS;RhOo
zL?gpdk^!uwQm<&x6bVFp#EtuwsKf|}WgYBQl(1`I7U1@`n%&z;Y7HnVT**NOW6$Mn
zbVpbgfC5(oHn#rqL}?!b;O+nh$N{<oFNt*Vxc37g_$T}^6_=^cz)%?Wc5$38#|~u(
z!~{RbS&^-0k-6@oRD+5YxF(sKTA%O2<3#x$%1C$<2adUIw3a1Gw?MUJtk?SN+HOY$
zsL{|CJ{g1PKn0*cK($XG_{%tQx6TInAnnjf+JGjl-fZqcoif`lYBL2h34LIQCu9Yq
z_CyvQ=B5#+)C?!lANJ7XzN6KF_TNm`g{9nYmZ_etoJ;o@4qe(M+~jhf5$N}zf6Od=
zCZnfACLbRk-&OjrUm`(FwyL`9m!YTQ;m+NYVRl`sq*5J#?u~13jca?)AZDqF)P}&;
z6E-?iSU0F<tQ(y*;6aF%mKxCohXvdsQ2~BgE2c#O=D2$Qg|$9REqgR9I{?Wp0E`U8
zKl^q(+1XPtEAVp(@Mpt#P%Hh270_8hn3AzHVZG#@fTPgC%;!*0U$Fa+`mW?PdWj&O
z;M+8WC(LCfH5hNwf&k4jMw+_aP~AAxjGF1H+6N08GQg{x=mZEnU*;Eei}D*lNcX@&
ztk#uu*~pbDH*51qCayRtT1iQiK><ADoLEQ4)a^j!TStRK`HS7QaRT-EL?5_DkRsz0
z-kV}CaXp5Y_N1WDUvCFshhHzhX)+50+88^Np^$caZ7yJ_nn}rAC2=jtdw^wT{$xKX
zBaGaJ43*n;mJe|UdcNsDhr52qYtJD}U*JoozK&_x&ocOkL}}6YetEPm$7HE4uX5Xp
zdLuSaVS4e?C#s_3BGsfuvL+xNh&j&aN}yXwpb(Gfo?BDE1}MQ8Wz<9sn<^*~q=iGh
z!da1JWIorrr43LrQoC^<z)Kb<lihgo@T1E;tY8$}Tg!$$K<^s|%P?UjbPX5aiU%l3
zAPcb;A^EtMY3B^Xb?2(LMB$lGW$9}h;K0pDEkJnu|3H+BU|HS072Tutm^Ln=v~p5K
zol`v^El}m6r3AbG+Hn9No<O0AFX`8manfQ>ER|?ItC+yHn`f%z2h}RJ*mQCfpWI~c
z%?bc8;9Unc?MK(>fpLTnM|3*XA;y80-=5wRky|_?54&h?qf+1Nw4Zu0T#ZaMk*WTJ
zA*l5aDz*?HI;({eAK@T9?^@+{IZ2mOZ?7N%4TIQ-iLOG8Cm-RUEVNw_bf%EPace${
zPtg$JvYyTHqXAfANs}xbbsP-OgF1$MmY-5Z6&<U16$_)!O0{Gba(f7q+4(!kr0~h-
zeESMNk;>=gx=dr5U2489Yo{}RpUrdFQ}rWdxBE(kFLkh-3r3rfO<74N1*1xMb<dJ-
z3SQJW7X@7KN{cVW7ictA#+mvBQFDNEl=Sm6qVq^jp?p@?U+plJDLsak#y}m)m2k<)
z1`59IE(c(s3W|;kiys}$TR_Q{SUo(@nQvpO&f@A{lS?oZIw7Iv=!PR{X*bex*a}i0
zUi2GEWx!7<uVPYbteY92`g@3gy%!T!-I(;{JwD2eFVNhs)f%QFLn+fh3ZIR6$UoY8
zv$Cc37BH+x-a!{#xEcDLtZmeskP{!fH9A2~A*)$m!?~S81hocZ_|cFe#JpQcTrcvH
z!Vq|Ktge80WT5n<Ul!=d_eP~pCEjIZDSTGVL4rFBnt!ewdJQ2ly(V}4A3FY7w1%bz
zr^lq$X@<w^tFn&gKv&LX;+Sj9LgZnzM=Q`T7`JFk!X*@<L<**>`)kKTGx9z#dV`y>
zdN%!m+r0$r$#AjnV<!I`HU|7?$y{L*Z!mC@!g_N*OE$V5Ev|7|aTmHI2@lS#l#oEd
zN*6~>0yFi92JXn;cK0#MEoOGe?)=rvu}pbDh=~TRmK(H)=TW+q4AwL2$Uih{CD8Gy
z-ZWZ+9ZYQt%8ow6Q{2X1n2SvU>8S#51gD0Du*j>#&R(I)z?;`*niI<@vFAfX2|t=!
z1T2U<WX3`xfYK8g%F(Litr|i}Nl+l6)<#P^Uofby;yYfO^gHGn|6KL=X0WHQMc2T@
z$A0gr95uCp3hd;s%!Migf&wE*4=ij0S&)vhdt(Vb)Pdj2J>1Ni3lOR4jD@=2EAK|n
zciowtCx+k7M@s269TlWpMSkT;B;t+I-*El-SAfD%&AgC7=CHoEgesrytHvS3EV0!@
zB*j8Se5<p(x;xp<Y}XMM3uk<lGnE|S<lWPf(~F#YVGc`4!_$pivUxdq!uHmc8KIt*
zJ73k;W7d#`GgemVY`+YXP6+^Hh-{{Q-y|^q{r8OfCv`SEj3{e`oaFgdy#9M{w}dk~
znhKQSc$lxES#2Q=EKo9VvMpJ{MI;Jqm7i5u?{BN<L-__e;QY(ODgHUtplUTGH1SUi
zZLGAp;;ETA?%61por0d$F6RknP%PA?&fzldR4iS*Je^hOCx|Zfxvc26gXjJyML!fK
z;1~B<S{8$v4sC;CFH>ID$*ksTq?+3#c*jDyTPxI@4_kMBU)3`(#p~;05n5{|h?4;Z
z49)whU=n2{M>@HEHRsf_2L(6nN3QL=e)nl<vV6yp27pZau#8BGP*UZ<t}@pU3o?>t
zm4I%IT9EH)Q~EWo4J|P)hrPiwF&|edwOU9DqQ9)tTmd6Plik^4p&-WoYjxF*JD4;A
zr(%=-+P^mG)u)i}LQGzD9LcL9dshSb4_p!*FhHoC97u{-Cy$!6S#b!0RqOD-YF`C0
zAQfSGSkf5(<aky3-VDrc;zM@fMd6M8!2RzTJJ&=57aiVkUhUODgn(}vcvow9j+(T6
zD9U#nCqCC*;Hi^aT9fLxWXCPow!Sp8722Go5~xNqZQXiVl!gCZJzXxbHuzD>e`5bi
zWhIn6(Sc58ZKw`?WMqom;miBz{CB*^=`#Z&E}n%dDuzWA5srUcV_bEC#Xe9T8L!OE
z^3Yrc^qu^E`Jo7!Ufb!CsikkZUP}c(BlL_5J7!9yxJIs{&8$+04ej6Phl;%`ii^%1
zE)t?vP{?QlNepCUBF!zTbAuNJ`DSzBCb=W#MDh@Zw;~O^aKlrfkML8zCUe4z#jN~-
zZrHAwSxag~v@P%`x8gxh4=G+Ry>qBUjQyva>Ax9esPQHc02Q-Q*6X&|AN(vA=0i<c
zKH-vPQPSFh3!lYBHg~c9t|^{|i=@Tr_Q1T7-bhP_yaU5>k@p}rEHj9nyf?kXKNha0
z?4xl>bNOzc61KDgklM9z7NQZBbV|0r2bo&|Dppa-)dT|0K9$sW|CH9on^fHTYv{qC
zMZ}o^(XTcSm{a72Q=4KDBk94V!%NhM>KC!qyrRh2v$%1VKc10FXK8;6&}!KK;N8TT
zCG-Otx#pWb7CkwHeWj7vArf^*vJLmIh$L^ny@NH@SuCtUfRZ5>k*O_CK`gC{5Cvy3
z42x7l-vIGoN}<Gkya&L*Ylyt(W@j50i%_K6-x~oUn+#pavwtgq^fw7S5jTGdi@f#n
zM}-R5dpw!5D0hk{4Y7WKr7DN#oP09MTwrVW?$##Bu{m`ChW(vn&?DgIIqPHLk`r-q
zsWHu~-2|Bk^tlwL0pUA+n)tfs5qNL<2}FAR3FJE4dP;GxpnkeY^WhGm>p;#=IgW^E
z6H!=C)@uVpR(07J3IxhhO%o?8s$eW)faKU@xgRW4c%W^b!WjCNH^^x7e6iwgG&c*Y
z!xQFp81JF-VOyGgP6cShCSLG_&D$T{O?EI2wfDHWqv}SP<e-UxeLdq8#9d?76hyW1
zuzG1RS<`f?2iT^UKA5l1nMif{`bp?+y7r5u&n@uF`Z)oBf$q&|WigL3Qnl0}B40jw
ztK^29bw?kgcAft!>D2%#0;Po;HBx&y&6TkCE^8127$%rcpAZCr8}d#vg5_A3XK>sk
zWn{^U(M9xDO^jhM3c}xPFl&jIiClAsBjLf-nxAuRi2qHO2(lgLRo&u!hBjr;Qt;6X
zxqv%7zH=kyUy?gW;Jo;KVQU@#ea`EV5acvjn5%!oEhHDp>Sf~>t^eg3G=Phj;xb`#
zQuYqBlPn4>(y*wr6$rosT%2k??>f~Xp$dc7$_xug0Eh_>sTBTQEtbkp7P8MC<UJn7
zE@E{+DyAuGKMUDR$ym-N3!&-9v-;6LsS#9Ax5Hf-{Z(|9>);Y&j0z1b!jLw{eh2Vd
zJm&foLVFIMoX7^rN95|y#2jaIevkMqQ^P5wuNE2?b34wTTm4{3mg(j{<~oQ%5SHsF
zLbWpDHiZSq)Hl!%Gqlrpz-no9{4p0n+~uNtqK!aldWoa_J2>;>`9V?-Uwg#RHaWgo
zt!wpYo%FR*Pmv;6#%iky_LI)%+jemI?2uOW`H_jzw7KptW+ofadtpBcomP1nUr?15
zJ5&L|s5!U=z36s=w7Nec<WzcquOORt{v%s^+eNu_KB;yT%mN%--%&s1k=&X~D;Oq`
z?28PCe+XtfN0xx@*zko4mDqHxc;x%*<a80;Dl|hbCQ(|BLHpIBJg?DP{N94W3V&4F
z#K|%L8U|Fb|4dFA!>d#|#`B(_Mh*+FUO7UxzMLBd<Mpt<#4FqQmM*w*UYuq)*Q2=v
zsAV-T(p6c-{;@TU_I}KU_0TE!18qyJ6)_{Sx0VtoC>!LUf}dVOORM8gDz&=S#rkp?
zT%;0}%+|H1?%rh4Yo<KcyqW96;ascryG`}`u;vyqr(X(rjn6eb^qrB)81n={yNRO6
zm0`Q|BmR`#yIY~hhF+Rv{0c+SOpghdLyV}gtY{l(^tl_~Og8jx(rb)^P2b};bFNwc
z@H4Ha-5k8mo(IjC$4`_7YXd}ctpBaiYHfIYf;^gXD{UZ@-*~Wynv?|3_dWFfMnF%f
z&9)8^JC4Wxq4F2KoPnhd;w}O4K`)Q=J1^kwRJxVDfhnoZ6@W1d9hu(;NgU!z*>kCV
z#jhH>*em;t<H6?0?L32-9GOX_E%V)cstQ$<GjyiZa9}QG5+zN8ZKa6XCN=$KKI5AL
znnHP`JNKs#==>Gp!0Y5gEVHj$q0q<|WS1^1n+#pW2qxU_-z~Ezhgve`qO(TaCLEr8
z+DH!E#8D?)>?CE70P*eQd<#N!$Py82Bg4RIAyBxWZ8n*px+#3rctw@=W$=A5qq&&H
zb&kJg))-s$cnb_U+-vqEF51pW>G$Conzk2#;bWs#Wk~g3%n+Fr4DOpHdek@XPhL%s
z*#SP6&QZq&wiYmG0;Iv&x}o)ve?0P+68?$V1!J21k|VsiUl)ZLl<tC3Qnmc}8;bJ_
zEe={%-$Y`BuY}eos`ryH64Q{8<Bf;~)f#(2{OM29^?QIHd?xv%-~USzGUfm_w^6@z
z<u;G?W-Xb6PN%uI{9(FXkcWloG>|9O?0e3wo1)k6`dW94osxc$vuBn+d_pyvSg{5Q
z25`2cx?<I`NASGZS{f^Ht8Lnep$eY6#gG2zAi$x)_W1<S2W&ZT5|?Byz!#B-{hfY@
z)c)iBdJvkf1~<N6e-wD&t`R?c)G{fp_j_X1*Gl|eOGrE45o}DEk(p-O)gEfK$DNEI
z<qy$w!~t^p+cY0A`Ym|DVl8bT_blWdJxZK^^aQ<}P|z5{^WYY$1=C_k#&aa<mmjkG
z*LIBt<HPmZIgsMmxzTtS7D>wmzjb?(>Ih<xdszoMe{O!0yO&V&Tkw{6V?*0&a=5Sk
zkvMZ=xv#)?K2eK7&W;)Xa@E<+=bgk-o>3X;!y^S`>1I>u9c{urf)M%bAMVp#y{zX)
z_@@(!_FdIDPCUo<eC1FEm(}kCW}w9N4oKcQ@&9@b_+IAF@|7kN_C7iEk!SrIM`_^;
z4KrHHQYxR^E3Kb`$;%7j%BTJNS7C#cbh1F!(%X4ID4U95+FYbQH9poiC0)LP-k0LM
z&E$C-Dxex{x2XDSeHEap5w2Mq<rLb&{)ry-)-Z)BI(Q)Yo@b$c+qGO{iLUJU%V1@S
z4tGei(#~!F#ShZTXkf($^Z%?G(q1O6m6E;Rz+1|wsRbnW@-EkWTD77fk<i6X5K|3L
zg{MqEQuvClWSz+|6+{#*-K*tfM>>@~t>pE(tQ?e#2<42GgU2|dRQNlg`Zlhy2xh3(
ze#8z9>5QIT-?>QI=<w$k=Uw8xQ}k6Vv!9rtvV&uLsrySh?0)VHko9v(QCpjOD2sOW
z6di)2yG_5gJQlg7Dyjnm8D{TlV88QXRU~xSg`Z-Ts^w2>Z1Xg5B-o=cB2<}7LDhJD
z@^42<(c;MIzAWiEFVDRUQ^f*Q^~>@C3O*bAnvo4mffQt%KqyQ^c(A-2ZHmO=T}jcH
zb>bBc1)&$v`$`VJ?M~&H`|JaDUE+r*;bEdE!QL;}R=7RI-lHLkQO1{RdMEH1(ojzT
zv9u1W<mylHgb#S3c;g>d2vlJ`B(jf}UP_qIU|sIzGD??mQa%kF&;{v~T*m9I3ZtaE
zm^{0Tw<dZ^03)njBw+BcTq*?*bJNx$9q;yPD~~m;^RgOEfrvox*1n5#qyEj+gR+O`
zMP>ZUYg97GA#EKsAe`~e*?PZ&K7D307+i7iON5Yk#osNX%>~DA5&*78=18}1Ov{0D
zZAshqRkZY6YeX161r6{veITi9cMqu5A&NbIi`DfAMDz=Ut49bIFP%6adDJ!yQq!0#
z`xp(m%YzssS!*owWE1fkE-=(B?oVieI8!=UARxA>vFUCQHhM1UK>7<AR%dyzFi&3@
zl%rOOVTK+LdL8pyW|mg8WWnlnB4<tv^0xa9)Ds8%kl@FQ9SlROk?~fq3cO)07lVeb
z$!AZu!itzhk+7(|wR;_Z*@|uo`#<Ft!qfM$9izD}u_Rf1XNzQl|7kPpYC-J=$H^h%
zRbG*X{GTjyDHQ!0;i|)B;2DAaEF=b)4Wo6?&86*_2~MbRT^PX>?TvAxL{7}rs0HjI
uLb0<NN;<Ja>`@UDDggjm?SO$vJ8uej(Dz)|D=ib~^OoSNR@MWWCflqZ$92yD

literal 0
HcmV?d00001

diff --git a/nodes/testing/_sops.pub.asc b/nodes/testing/_sops.pub.asc
new file mode 100644
index 0000000..60d9fb4
--- /dev/null
+++ b/nodes/testing/_sops.pub.asc
@@ -0,0 +1,63 @@
+-----BEGIN PGP PUBLIC KEY BLOCK-----
+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+=DrdW
+-----END PGP PUBLIC KEY BLOCK-----
diff --git a/nodes/titan/_defaults.yaml b/nodes/titan/_defaults.yaml
index efa57c0..6042e07 100644
--- a/nodes/titan/_defaults.yaml
+++ b/nodes/titan/_defaults.yaml
@@ -5,3 +5,4 @@ cluster:
   name: titan
   controlPlaneIp: 10.0.2.1
   secretsFile: !realpath _secrets.yaml
+  sopsKeyFile: !realpath _sops.asc
diff --git a/nodes/titan/_sops.asc b/nodes/titan/_sops.asc
new file mode 100644
index 0000000000000000000000000000000000000000..738d3f80ee5a08f72b6dc559a257584479e77c48
GIT binary patch
literal 7420
zcmV<Y90TJ3M@dveQdv+`0KaVcs~w5ZL@OmQNKWVWu2nGAO(Iqsap-bg!)_MLTm)3Y
zqk<f=W)H#hd>EUG%wDnmL=GnWkh=B;Ctz_y(-zScl>FnQGe}Y%5zVt%FHEp?7e(4!
zLx#96ieUhUq5}tR@ys>iqEvS@Oeb){bWVf~jY^6e1(W_#QSnELY<Fh@Rs%U9v?qC^
zhUl{64mohtOeg0~y%F?*>Dq{f3nUp{d|byC_|79`z^`!zzo+(tugeoK2Ke&GQ02-W
zJkDl{t^*EtHyA`bouVAk7iBW<{Sb8*D9QB6C`#JZmeOM%7aSzJL>uZmHam=&`=~G1
zwzRb>AIRw*52hV(1r;xD$a`cK58x@azH1+2X-nMT{O+~<14$}Zb#`T5)E%c(F{nw(
ze<fC<`;l$Aeh%<AL>s3X%j1s(3I2Mk&W!L>V_}(1gLA0r8AHn#DV^FRJ1hJGdec6k
zY7-{{0NZZG!{AfAr<?NoGd`YA#ybw(SzG`?E^MqAbs}MR($oD*7lXS#@B>?4=0brj
z#l$O2SnEma!!DEDkmjBk80ma~Mao!#ntJl4{7UVa^WnU&<jaYGr0mokfDLNGbT*%*
zOXBClpl-5PMa-?b6d2`qb{8xRHwbesfdp~wlEpsXx{9(RbOBO5hz;&Tm_qQhkNC=F
zLh^R*jXP&+Zm{ITSTFDYt+r01F8w+$n9Bx9LF^3~ghM8X4EBQ%yZRu0p9ZFuc1Mq)
zy!}?dkm8&aB<g9IVS{-2U#c9T4Ig^vwrl&y*k052zzCL;d-q@3{Q96G&m9!3F0TI&
z89bf>O7zqJBcT@qk0sgc+zZ=NlqtpHB+wDKWndw^i7t?Baq{fy<j}Sm3YkhzteVdv
zU?@bm<(ol%29aWFnwY`nf@v)bMph1w6CUpoP%toO)dy#fw-8Ig$&P!`9w{pd9YJKE
z-1_^7p}E7Y%jaW(;tRspQ$_AL+LtTXuR-}@1;3Q7`Q5L=Mu|rwibmqFaLGbgnlG0Z
zV?OhB%W?Skea0)_x3Z3fN9l&Nl8L?3y}$d)_jJB>*g{~(a$R1X?(^gWQA-!)NZQt!
zXIuS%?6eakK`u+;whGdfP8q4jsMKJ0;lND)HbSFT(y%9)ykhdHS1?ndwsXetDw_8u
zF&4&)<1HQ5cbfY}O6zYHbm$AZ=5AalHh!WaC6J8?%%fQKAfOYD{0~he2RpP)?iF<E
z01W>2U>r_{cn8lOw{OfU=4sqA$Bdwy1rDq(!LFZ&*t66)b5D29Yx&kfT+Drmhev%m
z!YJsetE_j7om}QHhM7*?(iAinZ66wcwOde2nj~5FaJdgYLvQ{F-acgZZyDSqM!W<~
z)RT8L+vd=-OVGf>lhfwF>jI??$@K%S5<+|b%5bg_qRyBMpO|pxE{eVMW(W+fjk*jh
zkWJwr3_*E*Y4&h-+BP`8oZ-Ik71_d8cDn_u8Ia3>NvS_+Kl0vw@nn$e7@7b4@{w97
zsp0yv+|;=J66oR%Z&L7yw*!cZd;Y_)ee@J|QKQm%@7i>sO`mZC>mDl=*$w*-Flj&U
z`%0e)Q=pUAk04ntSWdB*ow`A*A0Em<k2*T=s&QlM-!q@`E3Nl*o!cHPSPg<06Qv(H
z6%r|Z^<hs-`nDTY3vceIpyb&DCbzT`3B;9cI0ZK+nfzPVC}4z?K+U*OJk`ye^7yX0
zqFt*Ky~~Jx`kVrAqG?ova287EY)6L?cROoG-t&Y6KpED)MKgX_DWHp*qX*}-Af}~V
zAbMhL&(XTfvyZg@=2AP@%T0y=esEhEH9$j`5BT7ceI$d-$@L3{s-H-Pe<zOg^1iD#
zJs^l&y_%AcZT`BQkqPCiay}3O8tk#py9B@ZPN2pAi<9yE{VMUG6<R*Jr5}&3P9~w@
zkB2RkPA0NKMKc-ok}c)gVPY63_|Bqr;nzwPh>kRJ2@(d(i@D1g&&SFP^=^dkKfdEO
zLNH}O8y&)-pzt1*Z;C=@Xsp}9Ui(0MP-swR<g<P8)tl9TRd2I$B%-JFp`bZZ!Uc)&
zIK^V2PDxt-Ps-g#=oY#nA}+?%Vix*;rpb3>vFAQ$)&b5wo0=yN9U62!3Iu64cd7G_
z@D+SiBdIbMThi5`-C*%VDkskxG8VLjl<(S%J4Z9dx)0O@=umY)5B>#<B>sd1?8u`>
zX|4z}C&`@oH)^6v7NF84IA5Q0_avC=T_^RNxA|Chv^c&a{u_Hxxdek;*yFnqn&X26
zmXS?dLrzi(ixc}^itUg(b*%oQY)0}&3nA&uiQ^sXlkD)QOOQl;=0IWX;M0IQ9$M}m
z>CR=Ke`dygYysD3*<?bpBE^V307L6bemH?AMiu&}McZMNb?N$Pg>KRX_HRO*6i)Xp
zUmn!M;`G|gB&eupW;81wa_QK-X&Q2N94+PG@&;nSu4W$XbqS@UoO3pGCoff@fKu1l
z4|~ce9e^BW|8~f!JOpagb=`H}66RXGuAwHQsRtvwhJ7w-cEx1L?`VbxsY3z(616MR
z)OvW3hVNS&3rv%@<Y{875%}S^jZ>uRhKt!{XfW8gU1=X>D~UEl3?p!Y=rWidKY48j
z12H<T6^O9f$GjYK<rBt<$ts-q8NRKq3ZfW=U;B^~O6xX%y$$(!!2AA8z*AP7vc?fN
zHcY<k5?N?AV5G3qm)u1k*nj2Z8)etj3f|D}8~ewEr%q7Ju9V5+f<ITn1mbL<<}m*G
z!E+mfpX|Z0<vUF@p;_0Uz~Rpgncl-1V=B9fH*GKV*`z=e!A6`$Dn+v&Jk|=q*1rBW
z9L}kFxraz0u#$#w2<q(TuDx@8S!-4(;oX`iBDX)_7A3*fI{hXtU1{G#GjQt7`LVrw
zX@K3*7rLyfKM~&#ST=Xr!x}r;4ljzEn=7I5Pw9*OJJBYPR`|j$r5U|?xQXntlaT!(
zXT<9nmxajmW#v6kar2vg5}h0(<T(bTCb07rBsNwvasC4y?+cOwQQ7Attx@$!N8ZMs
zubR#dG^j-?9$@Z5Tp27CIj^~qIfH6=qNMH$QBx|N;T2}}y~^EYk`BmFQW;jd@kxp^
zUDh~x^u%ma^*pI}gDM6LFOvJEOp@HlN`9PEGAbie5Ee?w3JZ)!Ptu-W_!tn2n-{t_
z&eXkjIPFX0@`x2{n4-svN_x@;F*kb=9X2ICyx1_P{vTX+zcIzzSICGhSkrW?C=<hS
zsH&Ys<5(rDvd-`R34zRhiYlWCTM9%d;A5+bVVsMKMZm_)<x8`U(6RB4uuQb*%97@j
z!)m!s&Q5cnu6PwYl*YY+IXS9ZhC09#J(Ci7d{>iRj|gVrbKo-qZ33+2Z*}$C>Vu5m
zcc=Kruk2v$KU+Vyi8j()m}@}_Z*{ztq+|T`WhX<4_n_32TN_a-rPJpifg3^9Sj}J}
zCesiEJ(PGd2BtWQW*I`iA)V9`aHaVyDiPih51yi`qouE5Q7yh$DWrz4;SJUpfvEN7
zb<p8nLi7w>R?Dr`)ccqi>s5T_79)aC$^_&y!evBmVK$#@oW2lTtshhlzXZ$2!A!3X
z1{!9Ql%o>|N9_B9B?P2d{rSEffqEu36~jFxy1!WbkgUh`G?A9BJ-dzQZ<rVvm#P2K
zJtt2^IqQ|>@dnT|ZPFek_K>LMj5O+AUMi5=DyO0U2<L@<<^oI}7OV5C*&E;lLsJ^{
zE0tH$)i{MxF!8!|=DsiixiL)(iI&(cZD}$J(Xt2TiR@mlmoMBoh*HSh&ntL3h+6Ya
zM(P$v5ZhIj%Y*}}<bMxT1FqasQ6zw2<!SJ!GJ7tMI_VbO^#j!t?Uqd6yCgM=_~a_i
z%Cz0OULtn)cD|9<v1NlpT@F7h>A-oR!HKqkr014}bAC}08R)#|cPiSrU1Of4?j)Hy
zIaYvm`PCh<>*K;4x-i{ccZ;p0<)L2S4*WiGQbO$(W<}mZtl!eLK8(X!c;N&xt(jTx
z=lj%YI~kaYBENXUD9|KTUiOy|>@G%1Yx26WU<vXhwYTHkzHUSC?@uGgX8a;z$l5&;
z2D1S|H~ILifj!vGxC#R~3sKP(-#MHf$ICP~Ij8?OQi{~#2S3@nz8t28sfi%TPRC}*
zY7w`(guM?<BEd(^BAcO*h=I?Pcyjg~(xvVn-rTaC-3O7ZXl()Km2`qCg0wj*c44lU
zj?vQu_d-z>?@s)s$QvP28Wf~O7a>!Cwua2y>7xpjW+*eL74)<4Js5-*(1cY*aB7yS
z->Xl!mYX7Ru-AYKl9xeu|G!4bdIA!=WH*Xv;%y^Ap@WFqkl>uXTn?p-L+MQC;^Jj2
z-%Iw>tBt0}*BSqurBXr%lTtx$u{iSP%T(8781#Mv;JPl_8%->9rGvrOiT7w%V~IXh
zz=ubZo8N;}>+lGJ9l;g2PE=Li{QgXoI!>pqh%Y1MX-F#0btk61UFPj^-NO=c3HjcL
zo0!AJ`?};({MQ?J4I`)%SJ}8pQdZR{Tzs~CdB_Pi`WHeUY09Lw$bv{~gQg0p`2w-L
zW<`sCP*8n(XbKGH_ofQ6T8}aQO#n6)JCj*-6JM3l%qRS+^Zk#=Vj|n}d(o6SN@>V1
zUi-^{XiCq>s6jt_yYgTta%;oa6bpEE;j1zM#c|+h-}cmqroEA3S|OpI=LO@=_@2#6
zpfUj=i?wV<4R}4AicbI)c=G~FDta1^hR$R<TJoK()KwcM?UeRlDxRMfq%yjfBgbb#
ztSeZh#7Y8PULr%xN%@Iq_+yhO!7gWCT4V;cL^62wFXf%90ydJ-;mR`TW=Le0OO>qn
zNGhS?nDqkWrvd^d;c(u;6jo#d;`$mnFF|e<DxsHTqYLhvCxDEAFE+RQlKw-63#2|&
z55&YqXq{5TG+o^6y>7992XEXER{UN$Tz;8HL#tMSOD$^~80owU6p?-a376xeaUWAW
zyBNiz_<;7{YrF2nkUes??pgETYYhH`><%rI>B)_=9wHwBV>+taVGR7ff}@D#je&+g
z(YwgVZ+_9)@#kQ#!l|Wj{#uVCaU&cMFNfm)|Mx#M(Sc+7H<;+m<u{f2Am?$6<ph$8
zWz#w7cN;)?T-1Zx4^F3QkiJTVU;cF(Gz@A4d%!=Vecfyc*`=iZ@kkA0p1a`=8XlbM
z{G*KzNyPeAqeOrc@o&7E-ze?Rc!vU13*6SYA$%|ARC8=2X!!>h`C|P2qDUk3p8>Tp
zKs&cR+tipYzFK<rqh?B`;@;8gvB%==v0}%>R^>;J4PVcl<`ItE@^5Q^w+hd#WhvH^
zjs0E19B!1+fxLOz&3RFX-lZY5P5?dUPb>Rv^7Fzn&f%WMnbdjRdTQkJ|CrndCBSR;
zsi^^iJ{|dto3#FB+?mghaVVu^2}#k+zzXKQbTu%)KTCiM{vVrp@E>AJz(+bZVgK+w
z574?=^0&7Plr!3pXiv><$B0Na$k26Cr<U;Qq;Zns5H)%rw)p|ywZe6A5K(|fX0V>T
zXXT$Y$fos@suK~S`l8F-&4JljSA@}ohy=(`AYw=dX>i~3mCjHd@T-#AAoDtejWn&W
z+p_GxG%L!DCt&P#%E!U*%2|z0hBo5$#t|-d(l+FhuY11D2gp*~W_G@afy(Hp27%lP
zYR<}oa=y&swpvq%J5Jo2i=T9J``9SN9tLJgH?qv|^=(&L(nwNo1#(tmP3E^(Od=bw
z0Fp)FX``*17PAyM*A%&8H{tX8hD3E-cG^`0JauOkk34sJr!7eS6ngARl}x7ee6c_d
zzi;|o-7uZm4nZ^TpJ=vDuBF%CiUOgE40Y!Mly-|(gWWuAHtRYud$ny)8r5M_C8r<}
z1fOU2^FZ^Jx!3LrS1PhUcs2d<i9`4mP8nV5snv29q`6Z)MO7>2rHI*!O=1#{GB89R
zW6bIsT)q&ad{tAWCCx7N5`CZ_pksz26<}o#3iY@dCD7lI<G!hDcWXk(dOKbi?^oMs
zK=FF#!b8P`3;=v>XWsbIy*|+%pZ0@UNPn)(003)i2@AwsHigiy%NLz*)MRhvoz`A=
z2uEu*6Bbum_pQbH!9L(?vFVyR-;E*<Y@pvkfq|L7ZEF%b0U&!)Aa1dhblG^4A8;xQ
ze$qf*X6WgXyx4_Mo&!Z2`|-L#Kt9<)W4Cg^jpzdVdUVhTTO^?fj#qE#=R;4`{etqt
z68b`S4FT4^(PE?7`~-v*5gbG3Z4lq7Ym;Jxj4V+-hY8bp;0R0+f!@KPcgjN`js;Ju
zu8!AP3=vM>#z#o4kR`~J(Tubns~mF&D=w}clM9QqqdnWme>buBsXmyv=7}&O*=O5&
z>I~p`j&pIiB6=^MfKRXWGkDczo|}|K%{>9petJG&Sp)7Hucu2c-*RMMUyD#_Li#}`
z#>~VD?rB~8Iqmo1g4548OWL&}mT?`1!esU@2M%b<vE2!=hc`y+rRqcXcCnFoXS_{S
zT&^U->_tfAJ{Fo7*~U)yNNmGLOOnrDU5zP|TW?1>sC>~(e@(axi}|rv|9gc&PEikV
zv@8odTF;V{OHMN9R&KL_+jK%t8tV=D8T=toeYn5!TgVj16HF98gxq<8^wJ2N?JoT~
zu5mAWI8dmtuU3au(R=5{Gh*BS@OPR9avTgFxXQ5@Fcb$I?yCt3uecu5M=TA}nVaGE
zk+wGIn~t32_;?++=<Yf#{$*30O*&M%*%IZV=q?y5{ANK=VsI|@(6cGc4>>x%2=>{+
zWgqEV_YB2IVsjlVy`}^f;!wc^^tly})a6jtUY&rmP1(e7ay5Ns>DET~_NIZ|txYuo
z+gA5+V$-8J1=-!Qd{)HirnLH`5K+rg1G^cN6}DSH+1Y$JLs|n>IMgW<?Z4m;Yb&MC
zlXvj-k6<S6D_{MXupCpc!u2&zh1KfNsHg+Ff_$F`BnNcBhY4O3y5(e_xQk3uOI_W!
zm{zwkowI4u|B6b~_4r6qv2N4HA5TWpVkd0U(G3=3qk)P$*V+ItU5z#t9l_d*Q+~ZW
zRIc8Hb$2pX@4^An)b$-ZXVZ13VQ1EbH+Dsw5l>Rd6f%K5(k4S(d_@kwfI?i_07f{z
zyK~&*zcf~4RNWODj@=_}b1k>thPR1-{f|eKm^zJ?o)ad_&gM+$)FLd5J}q1`CgmAj
z=I<D@{1|9+AagNlkC%0P1oyI@f63`C&`}8fp@yOpsvvU<$<_a_;fCJ_F*lSyy<_fv
z_jPno-yn#vCQw(qP@(~Ks~nctS*V-{<LHwatLS+Slc6l>>sn*n^^u5o)S=HZd=-34
zQY1+!y%O2{iJp<|!LMP%eL#rB3G^JDcc}SqDDu$UjyKz@{fRgvB9~7{!ahLmKnIkB
z_19K7Am)+kt(iVBu(RjP9?+Q8o$Q#&nFJlNqNhm=xXWKUwgEY3FetwlLmIf=!2?i`
zun~JwX)6~V+!7Z<(;nW113=kms6~OQiC`CZaeSrGoGVDRv}nVbDEi^sSUz$OL3g}0
zR~)x4hpA^8>i+#9Z;8u;HGTzC(tY=UwhgT!GyujYjF-BDdRb9+xk>oBRMCdRw7?Fz
zf54O?Bv86?tWJ9=k8!JWc($PinkFrG0EUH}ye;)puML(N-(F@<op5RRN^sCNf9Cjf
zxtb7A`p!=?jiEylErlAK6H00kkFCrIzJaoik97aN$0fhO8cv|z&-#9R@ItXBvD+G%
z6Q&*5cY?TvzRAF>(zN{f^D|}Ap7cuAxR<G0rPd)R2xL#Rd`|FsGmwquZ1#{vi&3u$
zn``I7nBm{=(LKxM*f&7K5YYp8DdogTXuMJl;M3}yj;8WRqcf&rD=}moF`$jNLN>w@
zaWdyVcI+_eFrQ?$fjk>LKe`-Lu<S8Nie2v~Fw_T*#CMLu>2LW0D2Zz&R7}gzw-u_+
zOZA)`bo|IALS{#|@5WG<aTZy3ks?#DU%saF=A|9>g%4ba!scH8VuAz9(n6q%<}#>`
zypv!<Z!y5VXBv+)6+-+b?pm`>F_0s0<P83_qFif3;587h*g8O3Ds=$3Gw5yD{8)fB
zYigOS*=gIbF1dYZ{rJ9}EJ&tLC~!^J7T9Gw-lLZ&vL?QOZex}ryvS{4tZT8RdF)_U
zo+d&52X*{tw~<qJ7i#!5&ckCuKgo2&>F5w=#PfKgv-a?{RtP1qlmp!AaRICiK2l?E
zkuy+-8^?^X2%DYq#<2gB7NxUYet=-BPEY5rohO)k7D~d``5*URbA|b*k@>I5IX>$f
z+FRUfDI(iy|1s#M+W5oh^*Fr&v*G97c7iVuS*)e;5(m!yk<hQDj`cHA<-p%M#>#kB
zPn=7sZi9yEo#0?r#Npj>;zkw_66o;qFbpUy&)(p7gV&=fmC5OsAV93|Fx77oWDKY;
z4^-31t&PV0Ko(FgfMzcB9JB$!UrFlUC?jOoy!KY(K7>-f5-3P%mzdA#bKN#-^!yp1
zB@NN_<)$C@7SfU^mVv8a18*((2)*#xe;a3%{rP5RO#zd^67)}KejMZ9#rWEOoKln~
zt2(0j%Ad+4T!+M9hphw3JVXvf{o1myKm-_7;y+U3*o*=wwu0spR^rJAddD3C(!S&|
zfY{oA$yX*QnaJQ3>Cr?<&O9Vz*PVJIxyCCNY%NkVn3J}TWas@B%yi|H$&c$RJ@wj+
zwdZWOS+GZy^91?d>D&S8JPl1{{h#uAAk@Qtbg|go(4BW%+OqO_t6=BEvi4$Ew&<n2
zDcp0jbOZlU9{%Z8>sp}C{c{u4L&!+rFmrKzvb-5NAxBXlnsTglXl`a42Fotd`cGIZ
zjDDE^H|SvA<qQQEyDT!6eaMbl#bamc>d!?z(mhpjRtkc+XVL_FH%ImyFBx8+kJXFh
zv>&k+2jAG5+HYDBIpG@Ob1B*H0KAtTMtFlA)mDeJZyEc1;4(js%;&(!KVI<QaU;bR
zEQi<Smmlqpg7M;~N)IzBjiz$HNxoEXYH+3Dq-fa^%p@Oc^@|-`AOsS`Qv;@rB+yJK
zHX}Gl>XO{sA3Gew^UK>r>~;g!(UxSp=TVO`kFHR-Z{%;LS-y#I{hz4$6toshy89Qb
z;w}8K*q)f)AMx@V=~W5-E8t975{`AEm2Jd!lq<y?)w%a>f%Xc+KOlIm8hDFC;FDW5
zM&s~1jWTcnjh66>1JPN<-_1jV2)9i@a&o`lc_J`vc-owIMhga$9psBAm?(`vw#M}E
zvbtaBrL9d~vfcs8K4@K;8@-rvQ4h4PX8KpKE4OdRAdG>Q$AFvXVd03`q%1Z8D>sJA
zc32G2R^3a<b@CB+VF{61+Pw1q8B8CY!FIhCioj5~4b+!Y^2%#G0vj7U6R|haGXZbg
zBFM%5d}hk|Jj?CYWhJ$Y$j^3|(meYARE*>HZu(`i^G{e-qLe09QLDPxC$v`J<hB>D
zqtj_7?@IDsx``2o_v><(3Zd~26IFrxhzck0G_IEw8g{~5te`K6iI%{Z18Gz3JaF`Y
z9an_X-{!s=Y)zT%ZKBD7!PWf;9zeR!LX~O3Zl<33hmjrd9>N|Wq87?nD8s|-tF@2-
z_^&Pn30ntXf8sHEnAZquQ?j7<Rb31ZG>vHDrQM(h<oZS+Zmul%s4eYdLk)OSY<>kl
z$FO%Y--P^kcY3r~N-zmaSvNqxDJ&E7ch(s3AHHU9A)i3=<St$!Fn2yE;{h5|;v;zU
zM$Q%INy_DTFQzprs+CP>(Tw>^*o}0hN%-839o8xjsHRjT(4V05?scK!$6R|)l%Zel
uRPfa|!SSS7WVnq(6YD8qLGt%XLWP=9hs_YT;x{zttNJH9U&}SWwwE4xi=oZ{

literal 0
HcmV?d00001

diff --git a/nodes/titan/_sops.pub.asc b/nodes/titan/_sops.pub.asc
new file mode 100644
index 0000000..1ea8481
--- /dev/null
+++ b/nodes/titan/_sops.pub.asc
@@ -0,0 +1,63 @@
+-----BEGIN PGP PUBLIC KEY BLOCK-----
+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+=UtAO
+-----END PGP PUBLIC KEY BLOCK-----
diff --git a/patches/sops.yaml b/patches/sops.yaml
new file mode 100644
index 0000000..c8dc814
--- /dev/null
+++ b/patches/sops.yaml
@@ -0,0 +1,17 @@
+cluster:
+  inlineManifests:
+    - name: sops-key
+      contents: |
+        apiVersion: v1
+        kind: Namespace
+        metadata:
+          name: flux-system
+        ---
+        apiVersion: v1
+        kind: Secret
+        metadata:
+          name: sops-gpg
+          namespace: flux-system
+        data:
+          sops.acs: |
+            {{ helper.load_secret(node.cluster.sopsKeyFile) }}