infra/modules/nixos/community-builder/users.nix

{ pkgs, ... }:
let
  inherit (pkgs) lib;

  users = {
    # 1. Generate an SSH key for your root account and add the public
    #    key to a file matching your name in ./keys/
    #
    # 2. Copy / paste this in order, alphabetically:
    #
    #    youruser.keys = ./keys/youruser;
    #
    "0x4A6F" = {
      trusted = true;
      keys = ./keys/0x4A6F;
    };

    a-kenji = {
      trusted = true;
      keys = ./keys/a-kenji;
    };

    bobby285271 = {
      trusted = true;
      keys = ./keys/bobby285271;
    };

    ckie = {
      trusted = true;
      keys = ./keys/ckie;
    };

    fgaz = {
      trusted = true;
      keys = ./keys/fgaz;
    };

    flokli = {
      trusted = true;
      keys = ./keys/flokli;
    };

    glepage = {
      trusted = true;
      keys = ./keys/glepage;
    };

    hexchen = {
      trusted = true;
      keys = ./keys/hexchen;
    };

    janik = {
      trusted = true;
      keys = ./keys/janik;
    };

    jtojnar = {
      trusted = true;
      keys = ./keys/jtojnar;
    };

    lewo = {
      trusted = true;
      keys = ./keys/lewo;
    };

    lily = {
      trusted = true;
      keys = ./keys/lily;
    };

    raitobezarius = {
      trusted = true;
      keys = ./keys/raitobezarius;
    };

    networkexception = {
      trusted = true;
      keys = ./keys/networkexception;
    };

    schmittlauch = {
      trusted = true;
      keys = ./keys/schmittlauch;
    };

    matthiasbeyer = {
      trusted = true;
      keys = ./keys/matthiasbeyer;
    };

    stephank = {
      trusted = true;
      keys = ./keys/stephank;
    };

    teto = {
      trusted = true;
      keys = ./keys/teto;
    };

    winter = {
      trusted = true;
      keys = ./keys/winter;
    };

    matthewcroughan = {
      trusted = true;
      keys = ./keys/matthewcroughan;
    };
  };

  ifAttr = key: default: result: opts:
    if (opts ? "${key}") && opts."${key}"
    then result
    else default;

  maybeTrusted = ifAttr "trusted" [ ] [ "trusted" ];
  maybeWheel = ifAttr "sudo" [ ] [ "wheel" ];

  userGroups = opts:
    (maybeTrusted opts) ++
    (maybeWheel opts);

  descToUser = name: opts:
    {
      isNormalUser = true;
      extraGroups = userGroups opts;
      createHome = true;
      home = "/home/${name}";
      hashedPassword = opts.password or null;
      openssh.authorizedKeys.keyFiles = [
        opts.keys
      ];
    };
in
{
  users = {
    mutableUsers = false;
    users = lib.mapAttrs descToUser users;
  };
}
fix hercules build 2022-01-09 15:40:38 +01:00			`{ pkgs, ... }:`
add first community builder user 2022-01-09 15:34:55 +01:00			`let`
			`inherit (pkgs) lib;`

			`users = {`
			`# 1. Generate an SSH key for your root account and add the public`
			`# key to a file matching your name in ./keys/`
			`#`
			`# 2. Copy / paste this in order, alphabetically:`
			`#`
build01: add winter as user 2022-01-16 10:23:57 -05:00			`# youruser.keys = ./keys/youruser;`
			`#`
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`"0x4A6F" = {`
			`trusted = true;`
			`keys = ./keys/0x4A6F;`
			`};`
add first community builder user 2022-01-09 15:34:55 +01:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`a-kenji = {`
			`trusted = true;`
			`keys = ./keys/a-kenji;`
			`};`
builder: add a-kenji as user 2022-09-27 13:15:23 +02:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`bobby285271 = {`
			`trusted = true;`
			`keys = ./keys/bobby285271;`
			`};`
builder/users: add bobby285271 2023-08-08 17:21:15 +08:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`ckie = {`
			`trusted = true;`
			`keys = ./keys/ckie;`
			`};`
builder/users: add ckie I maintain nix-doom-emacs: https://github.com/nix-community/nix-doom-emacs and I currently have a PR that I can't really build locally due to the ~20 rebuilds: https://github.com/NixOS/nixpkgs/pull/158778 https://matrix.to/#/!KqkRjyTEzAGRiZFBYT:nixos.org/$qKKGPfDiNT3Ty8MxTLBg3fgugBfDjkMONnYxWKgQ6x0?via=nixos.org&via=matrix.org&via=tchncs.de 2022-02-10 02:28:16 +02:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`fgaz = {`
			`trusted = true;`
			`keys = ./keys/fgaz;`
			`};`
builder/users: add fgaz 2022-08-22 14:01:20 +02:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`flokli = {`
			`trusted = true;`
			`keys = ./keys/flokli;`
			`};`
users: remove admins after quorum changes moved to roles/builder/users as trusted to keep access to the community builder follow up to 232ff1eee52e01fe8732fab281f14db54ed2c1de 2023-02-03 17:04:35 +10:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`glepage = {`
			`trusted = true;`
			`keys = ./keys/glepage;`
			`};`
modules/nixos/community-builder: add glepage user 2023-11-14 09:36:30 +01:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`hexchen = {`
			`trusted = true;`
			`keys = ./keys/hexchen;`
			`};`
add hexchen to community builder 2023-09-09 18:53:20 +00:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`janik = {`
			`trusted = true;`
			`keys = ./keys/janik;`
			`};`
builder/users: add janik 2023-07-25 17:37:58 +02:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`jtojnar = {`
			`trusted = true;`
			`keys = ./keys/jtojnar;`
			`};`
build01: add winter as user 2022-01-16 10:23:57 -05:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`lewo = {`
			`trusted = true;`
			`keys = ./keys/lewo;`
			`};`
users: remove admins after quorum changes moved to roles/builder/users as trusted to keep access to the community builder follow up to 232ff1eee52e01fe8732fab281f14db54ed2c1de 2023-02-03 17:04:35 +10:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`lily = {`
			`trusted = true;`
			`keys = ./keys/lily;`
			`};`
builder/users: add lily 2023-07-27 15:19:33 -04:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`raitobezarius = {`
			`trusted = true;`
			`keys = ./keys/raitobezarius;`
			`};`
apply treefmt to codebase 2022-12-31 07:24:17 +01:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`networkexception = {`
			`trusted = true;`
			`keys = ./keys/networkexception;`
			`};`
builder/users: add networkexception Update modules/nixos/community-builder/users.nix Co-authored-by: zowoq <59103226+zowoq@users.noreply.github.com> 2023-08-18 13:16:28 +02:00
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`schmittlauch = {`
			`trusted = true;`
			`keys = ./keys/schmittlauch;`
			`};`
builder/users: add raitobezarius 2022-08-30 01:51:22 +02:00
Revert "Revert "Add matthiasbeyer as nix-community builder member"" This reverts commit 839821b56483b771c4183ff8c0c6f3e9917135a8. 2023-09-04 16:32:44 +10:00			`matthiasbeyer = {`
modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`trusted = true;`
Revert "Revert "Add matthiasbeyer as nix-community builder member"" This reverts commit 839821b56483b771c4183ff8c0c6f3e9917135a8. 2023-09-04 16:32:44 +10:00			`keys = ./keys/matthiasbeyer;`
			`};`

modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`stephank = {`
			`trusted = true;`
			`keys = ./keys/stephank;`
			`};`
builder/users: add stephank 2023-04-23 11:33:59 +02:00
modules/*/community-builder: add user teto 2024-01-21 21:06:57 +01:00			`teto = {`
			`trusted = true;`
			`keys = ./keys/teto;`
			`};`

modules/nixos/community-builder/users: make everyone trusted 2023-11-14 20:10:35 +10:00			`winter = {`
			`trusted = true;`
			`keys = ./keys/winter;`
			`};`
modules/*/community-builder: add user matthewcroughan 2024-02-24 15:51:53 +00:00
			`matthewcroughan = {`
			`trusted = true;`
			`keys = ./keys/matthewcroughan;`
			`};`
add first community builder user 2022-01-09 15:34:55 +01:00			`};`

			`ifAttr = key: default: result: opts:`
			`if (opts ? "${key}") && opts."${key}"`
run nixpkgs-fmt 2022-08-14 16:49:30 +02:00			`then result`
			`else default;`
add first community builder user 2022-01-09 15:34:55 +01:00
run nixpkgs-fmt 2022-08-14 16:49:30 +02:00			`maybeTrusted = ifAttr "trusted" [ ] [ "trusted" ];`
			`maybeWheel = ifAttr "sudo" [ ] [ "wheel" ];`
add first community builder user 2022-01-09 15:34:55 +01:00
			`userGroups = opts:`
			`(maybeTrusted opts) ++`
			`(maybeWheel opts);`

			`descToUser = name: opts:`
			`{`
			`isNormalUser = true;`
			`extraGroups = userGroups opts;`
			`createHome = true;`
			`home = "/home/${name}";`
			`hashedPassword = opts.password or null;`
			`openssh.authorizedKeys.keyFiles = [`
			`opts.keys`
			`];`
			`};`
run nixpkgs-fmt 2022-08-14 16:49:30 +02:00			`in`
			`{`
add first community builder user 2022-01-09 15:34:55 +01:00			`users = {`
			`mutableUsers = false;`
			`users = lib.mapAttrs descToUser users;`
			`};`
			`}`
No results found.