]> Git — Sourcephile - sourcephile-nix.git/blob - servers/mermet/users.nix
nix: enable nix run servers.$server.install
[sourcephile-nix.git] / servers / mermet / users.nix
1 { pkgs, lib, config, ... }:
2 let
3 inherit (builtins) readFile;
4 inherit (builtins.extraBuiltins) pass-chomp;
5 inherit (config.users) users;
6 in
7 {
8 imports = [
9 ../../members/julm.nix
10 ];
11
12 nix.trustedUsers = [
13 users."julm".name
14 ];
15
16 users = {
17 mutableUsers = false;
18 users = {
19 root = {
20 openssh.authorizedKeys.keys =
21 [ (readFile ../../../sec/ssh/losurdo/root/ssh/id_ed25519.pub) ] ++
22 users."julm".openssh.authorizedKeys.keys;
23 };
24 julm = {
25 hashedPassword = pass-chomp "servers/mermet/login/julm/hashedPassword";
26 };
27 };
28 groups = {
29 wheel = {
30 members = [
31 users."julm".name
32 ];
33 };
34 };
35 };
36 }