lilith/nixos
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: lilith:0deecc0aeaa5953a8b510eb1c8b4f99b0945cf82
Branches Tags
lilith:main
...
compare: lilith:e201d874b32e41d253d581e07bece4c8f4ef4b1c
Branches Tags
lilith:main

2 commits
0deecc0aea ... e201d874b3

Author SHA1 Message Date
Lilith
e201d874b3
build 2025-03-24 03:00:42 +01:00
Lilith
cd3ca864ab
build 2025-03-24 02:59:38 +01:00
2 changed files with 29 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

6
system/core/nix.nix
View file

@ -15,6 +15,7 @@
]; ];
trusted-users = [ trusted-users = [
"root" "root"
"nixremote"
"@wheel" "@wheel"
]; ];
@ -28,6 +29,11 @@
system = "x86_64-linux"; system = "x86_64-linux";
protocol = "ssh-ng"; protocol = "ssh-ng";
} }
{
hostName = "lilith-pc";
system = "x86_64-linux";
protocol = "ssh-ng";
}
]; ];
}; };
} }

25
system/core/users.nix
View file

@ -1,14 +1,28 @@
{ config, ...}: let { config, ... }:
let
host = config.networking.hostName; host = config.networking.hostName;
in { in
{
users.mutableUsers = false; users.mutableUsers = false;
users.users = { users.users = {
lilith = { lilith = {
isNormalUser = true; isNormalUser = true;
uid = 1000; uid = 1000;
extraGroups = [ "wheel" "networkmanager" ]; extraGroups = [
"wheel"
"networkmanager"
];
hashedPasswordFile = config.sops.secrets."user/password".path; hashedPasswordFile = config.sops.secrets."user/password".path;
}; };
remotebuilder = {
isNormalUser = false;
group = "users";
extraGroups = [ ];
openssh.authorizedKeys.keys = [
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIN7RJ1q5TczmSDge2U2lXrZVtRzOM/D+Bodwrc6h3EjA"
];
};
}; };
sops.secrets = { sops.secrets = {
@ -26,5 +40,10 @@
path = "/home/lilith/.ssh/id_ed25519.pub"; path = "/home/lilith/.ssh/id_ed25519.pub";
owner = "lilith"; owner = "lilith";
}; };
"ssh/nixremote/private" = {
sopsFile = ../../secrets/default.yaml;
path = "/root/.ssh/nixremote";
owner = "root";
};
}; };
} }