2024-04-09 04:52:17 +03:00
|
|
|
{ ... }: {
|
2024-05-12 04:22:57 +03:00
|
|
|
# Password used for root user.
|
2024-06-23 04:55:57 +03:00
|
|
|
hashedPassword = "$y$j9T$oqCB16i5E2t1t/HAWaFd5.$tTaHtAcifXaDVpTcRv.yH2/eWKxKE9xM8KcqXHfHrD7"; # Use `mkpasswd -s`.
|
2024-04-14 19:30:03 +03:00
|
|
|
|
2024-04-14 06:44:00 +03:00
|
|
|
ssh = {
|
2024-05-12 04:22:57 +03:00
|
|
|
# Keys that are allowed to connect via SSH.
|
2024-04-14 06:44:00 +03:00
|
|
|
trustedKeys = [
|
2024-05-25 23:20:52 +03:00
|
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJTI4IUkHH0JSzWDKOAMbzEDbyBXOrmTHRy+tpqJ8twx nix-on-droid@nothing2"
|
2024-06-25 04:04:39 +03:00
|
|
|
(builtins.readFile ./Ssh.key)
|
2024-04-14 06:44:00 +03:00
|
|
|
];
|
|
|
|
|
2024-05-12 04:22:57 +03:00
|
|
|
# Keys that are allowd to connect via SSH to nixbuild user for Nix remote builds.
|
2024-06-24 17:53:37 +03:00
|
|
|
builderKey = "nixbuilder-1:Skghjixd8lPzNe2ZEgYLM9Pu/wF9wiZtZGsdm3bo9h0=";
|
|
|
|
buildKeys = [
|
2024-04-14 06:44:00 +03:00
|
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEuuw5ek5wGB9KdBhCTxjV+CBpPU6RIOynHkFYC4dau3 root@dasha"
|
|
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGIf192IxsksM6u8UY+eqpHopebgV+NNq2G03ssdXIgz root@desktop"
|
|
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJSWdbkYsRiDlKu8iT/k+JN4KY08iX9qh4VyqxlpEZcE root@home"
|
|
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFgiYKFkMfiGOZCZIk+O7LtaoF6A3cHEFCqaPwXOM4rR root@work"
|
2024-08-31 20:35:19 +03:00
|
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPnQ9axOX01pq4EANGOR+5+MMm+pV9GpAAKPc5+fnoBQ root@laptop"
|
2024-04-14 06:44:00 +03:00
|
|
|
];
|
|
|
|
};
|
2024-04-09 14:26:36 +03:00
|
|
|
|
|
|
|
crypto = {
|
2024-05-12 04:22:57 +03:00
|
|
|
# Git commit signing.
|
|
|
|
sign.git = {
|
2024-04-10 11:55:19 +03:00
|
|
|
format = "ssh";
|
2024-06-25 04:04:39 +03:00
|
|
|
key = ./Ssh.key;
|
|
|
|
allowed = ./Signers.key;
|
2024-04-09 14:26:36 +03:00
|
|
|
};
|
2024-05-12 04:22:57 +03:00
|
|
|
|
|
|
|
# List of accepted public keys.
|
2024-04-09 14:26:36 +03:00
|
|
|
publicKeys = [
|
2024-04-14 08:32:29 +03:00
|
|
|
{
|
2024-06-25 04:04:39 +03:00
|
|
|
source = ./Gpg.key;
|
2024-04-14 08:32:29 +03:00
|
|
|
trust = 5;
|
|
|
|
}
|
2024-04-09 14:26:36 +03:00
|
|
|
];
|
|
|
|
};
|
2024-04-09 04:52:17 +03:00
|
|
|
}
|