]> Git — Sourcephile - sourcephile-nix.git/blob - members/julm.nix
tor: improve type-checking and hardening (bis)
[sourcephile-nix.git] / members / julm.nix
1 { inputs, pkgs, lib, config, wireguard, ... }:
2 let
3 inherit (builtins) readFile;
4 userLib = import ./lib.nix { inherit lib; };
5 in
6 {
7 users.users.julm = {
8 openssh.authorizedKeys.keys = [
9 (readFile (inputs.secrets + "/members/ssh/julm.pub"))
10 (readFile (inputs.secrets + "/members/ssh/julm-mob.pub"))
11 (readFile (inputs.secrets + "/members/ssh/julm-mermet.pub"))
12 (readFile (inputs.secrets + "/members/ssh/julm-losurdo.pub"))
13 ];
14 useDefaultShell = true;
15 isNormalUser = true;
16 uid = 1000;
17 #uid = userLib.mkUid "julm";
18 };
19 /*
20 networking.wireguard.interfaces."wg-intranet".peers = [
21 { allowedIPs = [ "192.168.42.3/32" ];
22 publicKey = "QV5rA6FU7PyTD7nvFI7H/X+zkjhjP5EzVHfODEpj+BM=";
23 persistentKeepalive = wireguard."wg-intranet".persistentKeepalive;
24 }
25 ];
26 */
27 }