# Fleet manifest — list every machine that should sync with the others. # # `pubkey` enables passwordless SSH between fleet machines: the # private_dot_ssh/modify_private_authorized_keys.tmpl script reads this # file and appends every entry's pubkey to ~/.ssh/authorized_keys on # apply, so any machine in the list can SSH to any other. # # When a new machine joins the fleet: # 1. Generate its identity key: ssh-keygen -t ed25519 -f ~/.ssh/id_ed25519 # 2. Add its pubkey to this file # 3. Commit + push (or `chezmoi update` on every existing machine) # # Move this file to `.chezmoidata/fleet.yaml` (drop the `.example` suffix) # and replace the placeholder entries with your real fleet. fleet: laptop1: user: alice pubkey: "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAA alice@laptop1" laptop2: user: alice pubkey: "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAA alice@laptop2" desktop: user: alice pubkey: "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAA alice@desktop"