sercanto/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

modules/darwin/common: add customer user

Browse source
This commit is contained in:
zowoq 2024-05-16 13:52:21 +10:00
parent e6eb662b36
commit 4acae13372
1 changed files with 10 additions and 6 deletions

16
modules/darwin/common/default.nix
View file

@ -1,4 +1,12 @@
{ inputs, pkgs, ... }: { inputs, pkgs, ... }:
let
authorizedKeys = {
keys = [
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDPVjRBomWFJNNkZb0g5ymLmc3pdRddIScitmJ9yC+ap" # deployment
];
keyFiles = pkgs.lib.filesystem.listFilesRecursive "${toString inputs.self}/users/keys";
};
in
{ {
imports = [ imports = [
./apfs-cleanup.nix ./apfs-cleanup.nix
@ -12,12 +20,8 @@
# TODO: refactor this to share /users with nixos # TODO: refactor this to share /users with nixos
# if user is removed the keys need to be removed manually from /etc/ssh/authorized_keys.d # if user is removed the keys need to be removed manually from /etc/ssh/authorized_keys.d
users.users = { users.users = {
hetzner.openssh.authorizedKeys = { customer.openssh = { inherit authorizedKeys; };
keys = [ hetzner.openssh = { inherit authorizedKeys; };
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDPVjRBomWFJNNkZb0g5ymLmc3pdRddIScitmJ9yC+ap" # deployment
];
keyFiles = pkgs.lib.filesystem.listFilesRecursive "${toString inputs.self}/users/keys";
};
}; };
services.nix-daemon.enable = true; services.nix-daemon.enable = true;