infra/roles/builder/users.nix

{ pkgs, ... }:
let
  inherit (pkgs) lib;

  users = {
    # 1. Generate an SSH key for your root account and add the public
    #    key to a file matching your name in ./keys/
    #
    # 2. Copy / paste this in order, alphabetically:
    #
    #    youruser.keys = ./keys/youruser;
    #
    "0x4A6F" = {
      trusted = true;
      keys = ./keys/0x4A6F;
    };

    ckie.keys = ./keys/ckie;

    jtojnar = {
      trusted = true;
      keys = ./keys/jtojnar;
    };

    winter.keys = ./keys/winter;

    zowoq = {
      trusted = true;
      keys = ./keys/zowoq;
    };
  };

  ifAttr = key: default: result: opts:
    if (opts ? "${key}") && opts."${key}"
      then result
      else default;

  maybeTrusted = ifAttr "trusted" [] [ "trusted" ];
  maybeWheel = ifAttr "sudo" [] [ "wheel" ];

  userGroups = opts:
    (maybeTrusted opts) ++
    (maybeWheel opts);

  descToUser = name: opts:
    {
      isNormalUser = true;
      extraGroups = userGroups opts;
      createHome = true;
      home = "/home/${name}";
      hashedPassword = opts.password or null;
      openssh.authorizedKeys.keyFiles = [
        opts.keys
      ];
    };
in {
  users = {
    mutableUsers = false;
    users = lib.mapAttrs descToUser users;
  };
}
fix hercules build 2022-01-09 15:40:38 +01:00			`{ pkgs, ... }:`
add first community builder user 2022-01-09 15:34:55 +01:00			`let`
			`inherit (pkgs) lib;`

			`users = {`
			`# 1. Generate an SSH key for your root account and add the public`
			`# key to a file matching your name in ./keys/`
			`#`
			`# 2. Copy / paste this in order, alphabetically:`
			`#`
build01: add winter as user 2022-01-16 10:23:57 -05:00			`# youruser.keys = ./keys/youruser;`
			`#`
add first community builder user 2022-01-09 15:34:55 +01:00			`"0x4A6F" = {`
			`trusted = true;`
			`keys = ./keys/0x4A6F;`
			`};`

builder/users: add ckie I maintain nix-doom-emacs: https://github.com/nix-community/nix-doom-emacs and I currently have a PR that I can't really build locally due to the ~20 rebuilds: https://github.com/NixOS/nixpkgs/pull/158778 https://matrix.to/#/!KqkRjyTEzAGRiZFBYT:nixos.org/$qKKGPfDiNT3Ty8MxTLBg3fgugBfDjkMONnYxWKgQ6x0?via=nixos.org&via=matrix.org&via=tchncs.de 2022-02-10 02:28:16 +02:00			`ckie.keys = ./keys/ckie;`

add first community builder user 2022-01-09 15:34:55 +01:00			`jtojnar = {`
			`trusted = true;`
			`keys = ./keys/jtojnar;`
			`};`
build01: add winter as user 2022-01-16 10:23:57 -05:00
			`winter.keys = ./keys/winter;`
add user 2022-02-09 08:15:28 +10:00
			`zowoq = {`
			`trusted = true;`
			`keys = ./keys/zowoq;`
			`};`
add first community builder user 2022-01-09 15:34:55 +01:00			`};`

			`ifAttr = key: default: result: opts:`
			`if (opts ? "${key}") && opts."${key}"`
			`then result`
			`else default;`

			`maybeTrusted = ifAttr "trusted" [] [ "trusted" ];`
			`maybeWheel = ifAttr "sudo" [] [ "wheel" ];`

			`userGroups = opts:`
			`(maybeTrusted opts) ++`
			`(maybeWheel opts);`

			`descToUser = name: opts:`
			`{`
			`isNormalUser = true;`
			`extraGroups = userGroups opts;`
			`createHome = true;`
			`home = "/home/${name}";`
			`hashedPassword = opts.password or null;`
			`openssh.authorizedKeys.keyFiles = [`
			`opts.keys`
			`];`
			`};`
			`in {`
			`users = {`
			`mutableUsers = false;`
			`users = lib.mapAttrs descToUser users;`
			`};`
			`}`
No results found.