mirror of
https://github.com/serokell/deploy-rs.git
synced 2024-10-03 21:37:46 +03:00
24 lines
625 B
Nix
24 lines
625 B
Nix
|
# SPDX-FileCopyrightText: 2024 Serokell <https://serokell.io/>
|
||
|
#
|
||
|
# SPDX-License-Identifier: MPL-2.0
|
||
|
{ pkgs, ... }:
|
||
|
{
|
||
|
nix.settings.trusted-users = [ "deploy" ];
|
||
|
users = let
|
||
|
inherit (import "${pkgs.path}/nixos/tests/ssh-keys.nix" pkgs) snakeOilPublicKey;
|
||
|
in {
|
||
|
mutableUsers = false;
|
||
|
users = {
|
||
|
deploy = {
|
||
|
password = "";
|
||
|
isNormalUser = true;
|
||
|
createHome = true;
|
||
|
openssh.authorizedKeys.keys = [ snakeOilPublicKey ];
|
||
|
};
|
||
|
root.openssh.authorizedKeys.keys = [ snakeOilPublicKey ];
|
||
|
};
|
||
|
};
|
||
|
services.openssh.enable = true;
|
||
|
virtualisation.writableStore = true;
|
||
|
}
|