members/julm.nix

   1 { inputs, pkgs, lib, config, wireguard, ... }:
   2 let
   3   inherit (builtins) readFile;
   4   inherit (config.users) users;
   5   userLib = import ./lib.nix { inherit lib; };
   6 in
   7 {
   8 users.users.julm = {
   9   openssh.authorizedKeys.keys = [
  10     (readFile (inputs.secrets + "/members/ssh/julm.pub"))
  11     (readFile (inputs.secrets + "/members/ssh/julm-mob.pub"))
  12     (readFile (inputs.secrets + "/members/ssh/julm-mermet.pub"))
  13     (readFile (inputs.secrets + "/members/ssh/julm-losurdo.pub"))
  14   ];
  15   useDefaultShell = true;
  16   isNormalUser = true;
  17   uid = 1000;
  18   #uid = userLib.mkUid "julm";
  19 };
  20 nix.trustedUsers = [ users."julm".name ];
  21 users.users.root = {
  22   openssh.authorizedKeys.keys = users."julm".openssh.authorizedKeys.keys;
  23 };
  24 users.groups.wheel.members = [ users."julm".name ];
  25 environment.systemPackages = [
  26   pkgs.neomutt # hack until neomutt becomes installable by home-manager again
  27 ];
  28 /*
  29 networking.wireguard.interfaces."wg-intra".peers = [
  30   { allowedIPs = [ "192.168.42.3/32" ];
  31     publicKey = "QV5rA6FU7PyTD7nvFI7H/X+zkjhjP5EzVHfODEpj+BM=";
  32     persistentKeepalive = wireguard."wg-intra".persistentKeepalive;
  33   }
  34 ];
  35 */
  36 }