Initializes git-crypt.
Just testing using pubkey files, will add nebula certs later.
This commit is contained in:
parent
b8cb823ff2
commit
4d3c2bb6da
|
|
@ -0,0 +1 @@
|
|||
secrets/** filter=git-crypt diff=git-crypt
|
||||
|
|
@ -1,5 +0,0 @@
|
|||
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGBu4rmDrPAsVNArCMkgqjOSVWOtTaD6ZvWQYtJzUT8u mtxyz@mikenike
|
||||
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINTsm2cnF/gFmJz3ogClVCq/qZP7L0lK+cFH7IQ/mEj6 mtxyz@jellydonut
|
||||
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDmImjnbrhOa8rU2pFISuzt8TlrLmSS40B0IvxwuFrOY mtxyz@sushiroll
|
||||
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPk4uKNLSOJsunzTmx49o6LUeExNP8xVC3+kOGGBbHDl mtxyz@europa
|
||||
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINN+E/BTYS7sV0dXi7RL3xfb2sMz4el1GfKqhSbbayNb termux
|
||||
|
|
@ -2,6 +2,7 @@
|
|||
config,
|
||||
lib,
|
||||
pkgs,
|
||||
inputs,
|
||||
...
|
||||
}:
|
||||
let
|
||||
|
|
@ -26,7 +27,7 @@ in {
|
|||
config = {
|
||||
users.users.${cfg.name} = {
|
||||
openssh.authorizedKeys.keyFiles = [
|
||||
./authorized_keys
|
||||
"${inputs.self}/secrets/authorized_keys"
|
||||
];
|
||||
isNormalUser = true;
|
||||
extraGroups = [ "wheel" "dialout" ] ++ cfg.extraGroups;
|
||||
|
|
|
|||
Binary file not shown.
Loading…
Reference in New Issue