RGBCube/ncc
1
Fork 0
mirror of https://github.com/RGBCube/ncc synced 2025-07-30 11:37:44 +00:00
Code Issues Activity

Add secret SSH host configurations

Browse source
This commit is contained in:
RGBCube 2024-04-30 12:56:07 +03:00
parent 369501ab86
commit 11f2227514
No known key found for this signature in database
4 changed files with 15 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

1
.gitignore vendored
View file

@ -19,6 +19,7 @@
!modules/ !modules/
!modules/hyprland/ !modules/hyprland/
!modules/nushell/ !modules/nushell/
!modules/ssh/
!lib/ !lib/

BIN
modules/ssh/config.age Normal file
View file

Binary file not shown.

11
modules/ssh.nix → modules/ssh/default.nix
View file

@ -1,4 +1,11 @@
{ self, lib, pkgs, ... }: with lib; merge { self, config, lib, pkgs, ... }: with lib; merge
(systemConfiguration {
secrets.sshConfig = {
file = ./config.age;
mode = "444";
};
})
(desktopSystemPackages (with pkgs; [ (desktopSystemPackages (with pkgs; [
mosh mosh
@ -11,6 +18,8 @@
serverAliveCountMax = 2; serverAliveCountMax = 2;
serverAliveInterval = 60; serverAliveInterval = 60;
includes = [ config.secrets.sshConfig.path ];
matchBlocks = { matchBlocks = {
"*" = { "*" = {
setEnv.COLORTERM = "truecolor"; setEnv.COLORTERM = "truecolor";

6
secrets.nix
View file

@ -1,5 +1,7 @@
let let
keys = import ./keys.nix; keys = import ./keys.nix;
all = builtins.attrValues keys;
in with keys; { in with keys; {
### cube ### cube
"hosts/cube/id.age".publicKeys = [ cube enka ]; "hosts/cube/id.age".publicKeys = [ cube enka ];
@ -28,6 +30,6 @@ in with keys; {
"hosts/enka/password.said.age".publicKeys = [ enka ]; "hosts/enka/password.said.age".publicKeys = [ enka ];
### shared ### shared
"hosts/password.acme.age".publicKeys = all;
"hosts/password.acme.age".publicKeys = [ cube disk enka ]; "modules/ssh/config.age".publicKeys = all;
} }