From 72fa9d89dc1fe7bb2c59338cd25ebab81008fd65 Mon Sep 17 00:00:00 2001
From: RGBCube <git@rgbcu.be>
Date: Fri, 12 Jan 2024 14:59:38 +0300
Subject: [PATCH] Fix passwordFile, make it hashedPasswordFile

---
 hosts/cube/default.nix               |   6 +++---
 hosts/enka/default.nix               |  16 ++++++++--------
 modules/users.nix                    |   5 +++++
 secrets/acme.age                     | Bin 385 -> 385 bytes
 secrets/cube.id.age                  | Bin 1040 -> 1040 bytes
 secrets/cube.mail.password.hash.age  | Bin 273 -> 273 bytes
 secrets/cube.password.age            |   5 -----
 secrets/cube.password.hash.age       | Bin 0 -> 273 bytes
 secrets/enka.orhan.password.age      |  13 -------------
 secrets/enka.orhan.password.hash.age | Bin 0 -> 702 bytes
 secrets/enka.said.password.age       |  13 -------------
 secrets/enka.said.password.hash.age  |  13 +++++++++++++
 secrets/secrets.nix                  |  12 ++++++------
 13 files changed, 35 insertions(+), 48 deletions(-)
 create mode 100644 modules/users.nix
 delete mode 100644 secrets/cube.password.age
 create mode 100644 secrets/cube.password.hash.age
 delete mode 100644 secrets/enka.orhan.password.age
 create mode 100644 secrets/enka.orhan.password.hash.age
 delete mode 100644 secrets/enka.said.password.age
 create mode 100644 secrets/enka.said.password.hash.age

diff --git a/hosts/cube/default.nix b/hosts/cube/default.nix
index 9e90065..a6b95f3 100644
--- a/hosts/cube/default.nix
+++ b/hosts/cube/default.nix
@@ -11,10 +11,10 @@
   users.users.root.passwordFile = config.age.secrets."cube.password".path;
 
   users.users.rgb = normalUser {
-    description = "RGB";
-    extraGroups = [ "wheel" ];
+    description                 = "RGB";
+    extraGroups                 = [ "wheel" ];
     openssh.authorizedKeys.keys = [ keys.rgbcube ];
-    passwordFile = config.age.secrets."cube.password".path;
+    hashedPasswordFile          = config.age.secrets."cube.password.hash".path;
   };
 })
 
diff --git a/hosts/enka/default.nix b/hosts/enka/default.nix
index 0350962..b6fe7b9 100644
--- a/hosts/enka/default.nix
+++ b/hosts/enka/default.nix
@@ -7,19 +7,19 @@
 
   time.timeZone = "Europe/Istanbul";
 
-  users.users.root.passwordFile = config.age.secrets."enka.said.password".path;
+  users.users.root.hashedPasswordFile = config.age.secrets."enka.said.password.hash".path;
 
   users.users.said = graphicalUser {
-    description = "Said";
-    extraGroups = [ "wheel" ];
-    passwordFile = config.age.secrets."enka.said.password".path;
-    uid         = 1000;
+    description        = "Said";
+    extraGroups        = [ "wheel" ];
+    hashedPasswordFile = config.age.secrets."enka.said.password.hash".path;
+    uid                = 1000;
   };
 
   users.users.orhan = graphicalUser {
-    description = "Orhan";
-    passwordFile = builtins.trace (config.age.secrets) config.age.secrets."enka.orhan.password".path;
-    uid         = 1001;
+    description        = "Orhan";
+    hashedPasswordFile = builtins.trace (config.age.secrets) config.age.secrets."enka.orhan.password.hash".path;
+    uid                = 1001;
   };
 
   networking.firewall = enabled {
diff --git a/modules/users.nix b/modules/users.nix
new file mode 100644
index 0000000..b43732e
--- /dev/null
+++ b/modules/users.nix
@@ -0,0 +1,5 @@
+{ ulib, ... }: with ulib;
+
+systemConfiguration {
+  users.mutableUsers = false;
+}
diff --git a/secrets/acme.age b/secrets/acme.age
index 048845f7bfc7af945ebb09baecc356de56aee4a8..b386a61dc8008c17b7252f407798a47ae68c8d48 100644
GIT binary patch
delta 350
zcmZo<Ze*UIQ}3f6U{RS`QDjh==ab@^o8|A8VV;_0>Qr80=u?sxWNsN5Vwza!U*T05
z%4K2hR-Rr~;2YtcQ&{d7RAd~I<Qb*y>+WwHP?hGAVwsi_lv|MFQV{Cp%cZNUs}Pp&
z?qunh>lo>+@0b#(pP%F&k{p=t<QtTqQDNwo8I_eARPP!Xl^5*m8pstTc|!gEC5N2W
zm3O;;9~Nc{Vn5hwD)z6`{_v;r1K-n+`D95Sy=u;R(R#_Wp9dzE%SXzeN$_9hC2(@p
z(Tx*|8d@Ztbk=U=nz%b7v+s$)<hI<zN{;7E{f~D(%ewZpeUg6OhTJ_JjEOTsC-)t+
zzU6iOdc~QxS*zs3Pm4reu-7--7kB#Yp*@Q3hJMQWCVMIhJ}4~N)3kAKRARS6k^Yak
zg!WgeKidO}PcrUQ%=&-Dp!dM}yD!x%^>13K?2u^N#mN=rKGT|iccY%Q=;OO4sR#7{
D^!=5>

delta 350
zcmZo<Ze*UIQ*UOF5$R)Ynx7O9X;5JjRqXE=9^h6Q6<nNLtY4I$=bw|BSYVOv>}Kg$
z%;l0=nHp}H7!s1@nU>;Q?riR7;AvD6m>ZGe<7<|eSC*-5X%Ze36<TQ$%B8ETt6*qe
zSnii%=@DL#=j0ij7-VVY;p>xQtevCp<Xo9p>f&Z#RPU8*kyv0@=E%jW{>jNm>H_<e
z?Rp8NH+$^k98%@>zUQjy%}-n?`;A@j%9Lz|`_l??A5{bzIwghIzKtv?`Ml8Y`SiS!
z{$qQ+P9NO0bfv*WZviz`&xi4uO@az6A7!s7-roFfzOU1{Pls-AGtUu8n%$(DvS~xY
zf!PNCtwnF=-C7VXtHqOi*!YL-*Rq0;V*44(cfV(4our|q9&IMr=6_7YN&K)TzrJeD
zn%~KeXN1hT<{HoX{Oo!~HZvc09f!|Mrn~+w)wPaAo1_oU|6Kaj*LJGa`IEu94V?h@
C_KOh!

diff --git a/secrets/cube.id.age b/secrets/cube.id.age
index 0c5509d11f6f3a149f858fdf5ceefa85fcf06bd0..598a6a4f3e40e3feb4b6e5a29102fb217b13e16d 100644
GIT binary patch
delta 1014
zcmbQhF@a-(MtyF6l&O2Rdq{wBRH~c1aYm3?fMrget6#RUUuv#vNm5a`X=z$jm4{cT
zk5_tnv3`+Ra6ztFX?a?Xx4Wrhr8k#(V4jhwTa>qHYCxh{VM(&DYf@ymONeo5u#rJZ
zZiT;ZrhaHjfk|*kWmZVJxsOqKwohnozP5KoqH%a~NPS=hmzQ5?PKs}2mA_$mu3xA{
zUUFKxkCA>rL_|`0fO&+An`2&xwy9@HMoE!hj%k2du~SLDL4|LolSi_Lo1ceY8kduH
zNU)=}Yj}l)ucLoZpqocZMwzLpYl%;AT5f4>Ua6zAep+6xVV-NLi;Jsvc5aYmU}QvY
zq?4O=WPNUCVqO`SlcAScrha8<aISt@gon3bfM=9pL{&vvh?zyENqLlOgiCQ@UP^el
zzII_sq+3OCWk|W7WmILbQ*fqBSzu8ZmtmP<U{tcXk$a-CVX$L%XjM*5WomX{s%N2*
zqotWkWvN$2XoZDqp0RIEu)9yVS4x0KRicY_WqqZAyMB^kk`tGwQ<Zy#xly>Qc9m<g
zL1sp3l%aWkP(_ZVc5p>zepYx$n2|}Ui)W;tiDQYYzIkAxrGZ;UR%%pmk$bX*nX?gB
zfNyDbc6hR3cA8U&m!E-4P_}!Cg@vC}vXi?{zGbLoX?8%0QDAY2MYf+;iDQ{rx^teB
zetlJPeo~lUN|~>(85ftXuC78^K!LGSNola5qp^{>zq?6taadJGYM`01Z$*f&X+V;p
zVW56sZm^M0N-|fc=A#RHmIiwt{Gzn6HOXV|qgmn=bI-2H>4{sKrW^TTw$+^;dz)vh
zaklR*#F+9OL%yaNvYyuLc)Q_GW$DD0PkY=a)#n_YHaFGcii6d?M$M<WO=`3LKb*VD
zeyQX%JB^6G#w_dWdbzI*JOb;a!@egk$u@9XyShL0J@2ARuLM`^b=cH$&+gpPr*Vc|
z$B%Ug^7NhgsLY~h^L06cLGD96o9T-i*S<S?=xe${?2}i`yw;cfzoqntJ<6+HKl{Sj
z(Ed{QOW`-`mG(RMZH|oLxMn7BXHW4FuF9aR+^vUR?|lAnZ}#;`v#Yigd2F63m%i@t
zeqI-w-OCL(m<R^Sy?E!_SF`uGJ=@Dqdo&(@azB}STzDnBio^3s)0-bCD>y2w5B~Rg
zXL#;q*W7Ia4;DRrm3Ju7W%+ca178YtSeSb<t~;!$lV{ksLEk_B|KFoKL*6b>o?;QT
zzu@0%iMbuom*0eL@MSmNyXRhq(z6|<iznJzaCU!dKDYmZ(3i&h!I^iq_3q%#ea%1n
z)Ti^(=jA2ucDC*R_UaLv(XBv%1xqy}gg?9u`1)%9=MOi2njB~KXg|g%oOb$nOcdK2
GMt1;a44rZS

delta 1014
zcmbQhF@a-(M!l~~m4T_beppGBexa#XrfHd5xnD_mW|En6fk%01MrdH6g{h@eW@@>9
zU|K<#fk&mQYnY*bL|Q;avA2(<n<bZNk(Y&bVxCWMnweW>N<eaUm3yLNq`A47N4}v;
zk%fV$b6{FjXl`niiN9-cMN(izx`kg>Wu%FPepHEHRDGT!SCD(8c2J(HvAKIvc4$Ra
zP<TPQM}fOxMMOqGkWp!+eo0ASR&ilPkb6j}aY|66wrf~oh<kEKhEa*LhjW&*E0=y?
zmZe#WVM?+|ab9*no{6u8ONe7yd0>iZu}gq|dPs3fm{(w4UQR|%WJ-CaQ)RZJQCNAZ
zZ$*@eTfI-PS$GClS!jTnUvjFyPr6%~M?q$ZwttvMxmi}GMY>6fc6woiud_=~pl4EH
zfQ3<NgnwSLkE?~hd$CcZYgT}PqjzyGSE9G8r<re}ubE#-Kt!2uT4i39K~Aw-m_>MK
zdZxRjlY72zMp1c=wy%YWmvgpjUWikkQ9xKpSiNg{Wr#~iP63yxX|k6=ZgEJsyQx{F
zd5Tw%Pi{)Sk9MYUL{)`<KxU|so4#jxq>p!Co=<q7sk=#4fL}m~cCuS?qEUvqUr;tz
zwr7rCv5~8%n?a73SH8Qmez>n=MUsD}MVU*LOO|=6U!=Ejg;{=xN3pg^RC=(FOQcD7
zWWA?(kbkJVQL>qfHW!z!uC9W=kzbH+l!tSmX`*R?Yf7-OONeVpiKDx}zF$Rgif3p>
zpmwr;i9v<GSs>S(xnUo5mW9oZ+mgjub$F%ayr8(nhQh46`rbtsoL93M=o-k~{#(<v
zRM?9nqqOdsx8YQ?<LP%biUa0$-4k!+V?Ekff4-o~yKDOQRZT5(wY(o5+-+p_aq(AC
zNB$6&&(rSROm0^Dxj?SLaM3KjTVJorCo(4~AOBt)eriI(MDdl=oQv8Y?em@2uNEC&
z8r;UHaX8GNWlmn^?491XqCA@d_&F@s+<hP#()FBKd*K=`+w1PF8VWO)tV&8bTx7Fo
zqnP8G7WsNs&7i%XQWZA@?@4FQvp<_Ie|*{kj!WkatW(apRU3JoSfleKTAJyi`g1P!
z69ONnop7<PlGJ8e5^tSje~EET-fF8l?s!#>Yd>o3ude;vvm@-J>i!5>o$D8kb9xpC
z+|1_{*eKZHrT3|0`d|Gcu|aq9&NwQ$y8Y1p+#~aALsMr{{*JgT)d$zNn67P`7b*Ww
z<3E>weo|u7i?IC)@4fOiIz?vek8M-;o}{p@v@dfWi*kkI-y8)~{bjM845@eYAAGAj
z+O}b-$bka0@;LUlI!iiPwC->`@=#&=b3ootGUV=w+b#FwTiidq@n*KrG5#-e3IOT!
Bf@1&x

diff --git a/secrets/cube.mail.password.hash.age b/secrets/cube.mail.password.hash.age
index 8cd11fdffb52f1680727f88c193fec6e0cce0825..e9f2d361501f57cfe73bd53207bbec5508046ff7 100644
GIT binary patch
delta 237
zcmbQpG?8h7PJKw4Q&5DFK~7acSxTW-QkqYiPeoXfYe{aUPicBofJu;ca;9gnwvm6R
z1(#W}OLmT{hnbhFpR0dlM5U{LnrDSYKzM<6cz#iei;<6uc44B6r;lMlD3`9Tu0nZ6
zNtC5~l4Xi}QNBy6Sx$C&RYYF6t7(#VfNO+nlA~KjV49OxWnzA1WhB@Adv*WC=j^^w
z)B8oMUgNZ#-_)3+-_Fl!>u_52e#y&i1^KZu`C=i0?0=psNNw!b^|t?d*s?-6%zWD&
pMa{RYGCG|PIc$FH*-?8~%VMqH<l9GI9zDC%CVJXaw)Niaw*ZhqUl0HQ

delta 237
zcmbQpG?8h7PJM7zUcOmQW_dtvVOo)Pa#?Arf2FUxe_EE8zKMQLU|5x}n}>dodAUoN
zBbQTHUV3D?iN1SfQGvFvrF*)&N11-0xtXz{e^GXYt50&FpG9VImUo3;D3`9Tu0mj?
zepsM^ds1*>YGP_~USv|Bv3GW{d9klacuJaSc79}TcAAsFX|a!+K{nR{Q70dhC!bBH
zdp55u^4|ORiT%HSue&arO#5d0zQSa=9+%MSj{3zbnyTbg(j^)vS1k2fcH=Xj{_%|U
pY)g;(z7bGYwamY~&1{=sLyxXi$5F4@A&*&7-S{SQGic6k0{}deT6X{d

diff --git a/secrets/cube.password.age b/secrets/cube.password.age
deleted file mode 100644
index 6804bf5..0000000
--- a/secrets/cube.password.age
+++ /dev/null
@@ -1,5 +0,0 @@
-age-encryption.org/v1
--> ssh-ed25519 +rZ0Tw x9IJ2ck/8MA6Fs35/BMihuDmKQCSElWbOYJj0LjICm8
-05eogDn65uicgob/Y54fM48oPBEi6MG+MVYklCdGYCc
---- V2522x6kEJw9dTupA5GoH9n3bFCQwIoNbuRWmkNUb4E
-¿5²±Â%##”9={[°6ˆOÅ¯;‚…æØoá]¥†zÑ4/˜½“
\ No newline at end of file
diff --git a/secrets/cube.password.hash.age b/secrets/cube.password.hash.age
new file mode 100644
index 0000000000000000000000000000000000000000..5313c77ba9e169e59b9fbf9cd211d02d532a9699
GIT binary patch
literal 273
zcmYdHPt{G$OD?J`D9Oyv)5|YP*Do{V(zR14F3!+RO))YxHMCUFE{ZY;DOU(ij4TZ*
zaP$l-t;#C&%ByfStZ)u<%=Ac#G&2f!%Pw?xPs>co%k*_KPUo`pDb6TP_RI?N%5kem
z%#U*Ss!B9-&CB(!%<whM%5X2s57sU!tuRZkwBXX!)m5-`F)YmpPBsrTuZ+si^S5v{
z%=PvU_V94`DKrny(@rh0i15@;^Yb#T2<7_W@clmT6Na{<_mUpj38%zP@~z%#e&&Ap
zjQ=ZFDL9H8lE~6Nvpmk;go}CYT$%Nz%GH-1_8QMOns-9fEcGJi(MM0V&b#zb*r9WR
Z!K8+i->g2h-vocJ(c85#QvODMDF6)jXxjh)

literal 0
HcmV?d00001

diff --git a/secrets/enka.orhan.password.age b/secrets/enka.orhan.password.age
deleted file mode 100644
index d4e03b3..0000000
--- a/secrets/enka.orhan.password.age
+++ /dev/null
@@ -1,13 +0,0 @@
-age-encryption.org/v1
--> ssh-rsa jPaU3Q
-GlmABFdE3kDBw9CViYn1me+juMa33cJnG2A+JbFLkf0kxIjOc60fu1V94NgmkX+c
-GDwVJf3orhjdNPX74we7hjQh2Qr4TlgQJiBm8InqU5B+hM7UHU9rVkTXi0VGf+WP
-2AQM6ROk+zzGdfT2wGf9Q49DQ/hVLqTsY+CZI4+UvqUFYP8n/GiXAC4RaTAYA+RB
-krD5pFTsxRIu+l7J3JrbFDna1YpeYZhCXeIt5tvKOhJFUklzvlYhSc8g9kNKmE1/
-aN1wCy86vaHcxe3MBIBdj0vfqyQk+wx9lInW2GIqmjn84+HG/r4k9hShljdrJHLe
-h99xblajmoCSuLrw7Bx/zz9Bb9UApP0Jybn+2YKh0dKmFl/twIDZhNOUlxI6r/XM
-h8puG7Fmh/jaqrWFBflh4f73PcLuCUU93t0D29HRzELL1l99ZZNednSTj8BVnE0o
-kgOGpKzoC7B+T6SA8+9wg1RnXOCS5EjLhsNuIiOGr5Z/iIxpSG8ZyaE9IR/qHgXx
-
---- H1Sj5NTcvGobXVCgNTrFlJ43hM+M9wy02THaguqhvL8
-4kÅ>Åý fÍ(;lXÊU	ªL'ÈŽ|CÌ“üÀ÷xróL\µ”ŸiO
\ No newline at end of file
diff --git a/secrets/enka.orhan.password.hash.age b/secrets/enka.orhan.password.hash.age
new file mode 100644
index 0000000000000000000000000000000000000000..224ec2cf98309943695c314ae08047a9c66675ce
GIT binary patch
literal 702
zcmYdHPt{G$OD?J`D9Oyv)5|YP*Do{V(zR14F3!*`Do#|$3P=n!4&-tT4k;*gDvHRB
zN_7kh3373aEOaU}(YMTXt}@lGEYi>ScMUD|DDrjA2{ca4w)FCk3eWX)cQ!Q5^C-`<
zNDk*RGxQD2EH>~C$}sYF^*1i}4|MaW@J=%c3Qh?~^@;K+GEeg?^2sd>&NFcg%!w>1
z4-P7GE2%6Gat{pgbItYVDs|5bFU}~=v`jHh@k%uCEeI+zEpRV#HBAiEE-lMTG7E6^
zGl?vWuyoAN&ogle@eM22PBSUaOtegOcdN=T=E}*oOpkDKsW7ex_RMkhG4l(}HL@rO
ztjs7*Hg|D$Hq6a1s4_3M)c4H`Do-;H_Am}|PcDwkcQte_sWOiA&*k#-E_V$#Fex`P
z^QtIz(NA$N%y5qk@pJPJFv|!rH%!SgHVQM)P7HA?&oguP@CkG?H+A$5O)IN1aWeAB
z47cPmDfCY_HB7CD3Jh`%Ef4TE@Jy@p$c>0F4D$=h2{kk?Fif^gH;gb%uZRjXFz^Vi
z2uRm1$}$SiHmnTI3D&OQN_IEQO7@G)Gxy3$&Ik=n$|*9fu&k_f_6~F}E-TKm$Z#zS
zi84!0Px15g3XC+2)D8>|C=4xf%6E$}EC{ZM;EFWPGcodWFY-<F_s{aS2n_TH&onj)
zPRk7sH#OGRFY@&WF)9iu4=!~J%MQ<W%nb<2v-BylbS<q&D)4hmEau|U)zww7ObWM1
z_X&*hcgw0Mun2X|^-C{u&P^&!3pe)gbIu41DbMuD57Ey{cXi}ieZITyzoN~QDABZ1
zskzQQlHO;__S@UfdYU$2A=mQLzJJYK&9`uSE>|gcyplgP<>js~GVEN<Zv?L$)^zFa
ltuPnOFbGkfVq@|5qV)j|w(s69YLgi1ZNjeZJ??$@7ywXr@EZUC

literal 0
HcmV?d00001

diff --git a/secrets/enka.said.password.age b/secrets/enka.said.password.age
deleted file mode 100644
index 7d04208..0000000
--- a/secrets/enka.said.password.age
+++ /dev/null
@@ -1,13 +0,0 @@
-age-encryption.org/v1
--> ssh-rsa jPaU3Q
-n0HmR5sh8691NXK0g1f4IlxFsVDVD1/WFqOUHdIDIJCZJQJlnto+dAxK/Lm3116/
-F+4ptdlLrmOsK45KkKXqXGn2mVEDXUAtj6cfxO0uIF8hX6vdMI+pKkWkmGQrIMlP
-WExmWAB5aPdtMiKq/ON9OWzCgAGrrOxvt944tIcA/7JvtD/fiOB/n1CLq7xnG0z4
-wsnL5qxujrVYi5kfejPKH9iMLc0W9/4TBh99xlfCOSvu7ZdJSMeTBe3gYVSCS30n
-BiLwSXByQ9vhGjWOzw9WYRAR2QWh+Nez9z5O7RUTH4QyCnWNaqza9lixAid6GU9P
-eqScuqJD7t8/bbVB+AATlEcNKhajwg0+rI17rKAYavP5YBQMW3Wh8J6MeHDRNoll
-SjjN/JnSPzny2+UtaWxx86uM8r18l1aC1X3/yIHEU39IZNtEsRTXEeahszveT10j
-OKBd6DwDPHjP38Hz1hmg0VSqmZ88pLJjmx4nW5C/zBrzErl09aeYHDYaxBzLoaIv
-
---- E48Sdci1uNpRiCQUtsmHvrXfVp09RP1PZyYGE8fy/MA
-gÄaì9‡ßŽ+‰?§Ô¬¯ýø)˜Pã–XDZúN\ý^s…5
\ No newline at end of file
diff --git a/secrets/enka.said.password.hash.age b/secrets/enka.said.password.hash.age
new file mode 100644
index 0000000..09e141d
--- /dev/null
+++ b/secrets/enka.said.password.hash.age
@@ -0,0 +1,13 @@
+age-encryption.org/v1
+-> ssh-rsa jPaU3Q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+--- mkKbbwjMlBGtzye+ey4JDdT1zWxoI6nU2l8pNlG44ow
+)nÒ_ßK¢=M\`ÿ&…ró¹ÐÓvVŸ#ï§)ÚNóš•q°ß¸UÔ“»(Ü¸OÚ‹³¤Z‚f3ÌÏÍxºB9šeE…S£ãÝ«Ð°¿ê#ò1uä°%ý¢b
\ No newline at end of file
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 1e9ca60..ee0de1f 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -1,10 +1,10 @@
 with import ./keys.nix;
 
 {
-  "acme.age".publicKeys                    = [ cube ];
-  "cube.password.age".publicKeys           = [ cube ];
-  "cube.mail.password.hash.age".publicKeys = [ cube ];
-  "cube.id.age".publicKeys                 = [ rgbcube ];
-  "enka.said.password.age".publicKeys      = [ rgbcube ];
-  "enka.orhan.password.age".publicKeys     = [ rgbcube ];
+  "acme.age".publicKeys                     = [ cube ];
+  "cube.password.hash.age".publicKeys       = [ cube ];
+  "cube.mail.password.hash.age".publicKeys  = [ cube ];
+  "cube.id.age".publicKeys                  = [ rgbcube ];
+  "enka.said.password.hash.age".publicKeys  = [ rgbcube ];
+  "enka.orhan.password.hash.age".publicKeys = [ rgbcube ];
 }