27 lines
623 B
Nix
27 lines
623 B
Nix
{ pkgs, config, ... }:
|
|
|
|
{
|
|
users.users.nixremote = { # System User
|
|
isSystemUser = true;
|
|
group = "nixremote";
|
|
extraGroups = [ "kvm" ];
|
|
uid = 1001;
|
|
openssh.authorizedKeys.keys = [
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILczsj4W1kFQaalFwaY+RJ4LEzNeFKD+itXB40Q2O59M nixremote@hades"
|
|
];
|
|
};
|
|
|
|
users.groups.nixremote = {};
|
|
|
|
nix.settings.trusted-users = [
|
|
"nixremote"
|
|
];
|
|
|
|
services.nix-serve.secretKeyFile = config.age.secrets."keys/nixservepriv".path;
|
|
|
|
age.secrets."keys/nixservepriv" = {
|
|
file = ../../secrets/keys/nixservepriv.age;
|
|
owner = "nixremote";
|
|
};
|
|
}
|