diff options
| author | Devin Finlinson <devin.finlinson@pm.me> | 2026-04-12 13:51:35 -0600 |
|---|---|---|
| committer | Devin Finlinson <devin.finlinson@pm.me> | 2026-04-12 13:51:35 -0600 |
| commit | fc8c23195504cbad80743705574a204ff9e2136c (patch) | |
| tree | 51b4acf92c7a1109e28d98c36f69cf318c0e5aea | |
| parent | b872f84ae1e8ea25c2f8d54215fa8f44e1b858bc (diff) | |
remote building user for real this time
| -rw-r--r-- | machines/doretta/default.nix | 1 | ||||
| -rw-r--r-- | modules/users/builder.nix | 20 | ||||
| -rw-r--r-- | modules/users/nixremote.nix | 25 | ||||
| -rw-r--r-- | modules/users/root.nix | 2 |
4 files changed, 27 insertions, 21 deletions
diff --git a/machines/doretta/default.nix b/machines/doretta/default.nix index 78b14dd..93e0704 100644 --- a/machines/doretta/default.nix +++ b/machines/doretta/default.nix @@ -11,6 +11,7 @@ # ./website.nix ../../modules/nixos/binary-cache.nix + ../../modules/users/nixremote.nix ../../modules/nixos/webdav.nix diff --git a/modules/users/builder.nix b/modules/users/builder.nix deleted file mode 100644 index 6f14510..0000000 --- a/modules/users/builder.nix +++ /dev/null @@ -1,20 +0,0 @@ -{ config, pkgs, ... }: { - users = { - mutableUsers = false; - users.builder = { - isNormalUser = false; - isSystemUser = true; - description = "user for automated building"; - extraGroups = [ "builders" ]; - - openssh.authorizedKeys.keys = [ - "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPLx3RgUgbE7THS7hRZypyudEKffj0ppwQfQuxIpPf8H root@zenbook" - ]; - }; - }; - - services.openssh = { - ports = [ 22 ]; - settings.PasswordAuthenitcation = false; - }; -} diff --git a/modules/users/nixremote.nix b/modules/users/nixremote.nix new file mode 100644 index 0000000..039295f --- /dev/null +++ b/modules/users/nixremote.nix @@ -0,0 +1,25 @@ +{ config, pkgs, ... }: { + users = { + groups.nixremote = {}; + mutableUsers = false; + users.nixremote = { + isNormalUser = true; + # createHome = true; + homeMode = "500"; + # isSystemUser = true; + description = "user for automated building"; + group = "nixremote"; + # extraGroups = [ "builders" ]; + + openssh.authorizedKeys.keys = [ + # "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPLx3RgUgbE7THS7hRZypyudEKffj0ppwQfQuxIpPf8H root@zenbook" + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINdxcB4CepjCBKNBGfKcnkrfNMiJAxm+whuQL+dhSxqh root@zenbook" + ]; + }; + }; + + services.openssh = { + ports = [ 22 ]; + settings.PasswordAuthentication = false; + }; +} diff --git a/modules/users/root.nix b/modules/users/root.nix index 9464651..f826b77 100644 --- a/modules/users/root.nix +++ b/modules/users/root.nix @@ -3,7 +3,7 @@ # Define a user account. Don't forget to set a password with 'passwd'. users = { users.root = { - hashedPassword = "$6$UljPNAdxZ22lP3Bc$8VaEAacZxtXM3Zji2IA7Jf5fXs9pFnAVQff1d8IbfFOKCvjibceyopOAjRXa8lXtpOSJgPW1OO1dzOspqhWnz0"; + hashedPassword = "$y$j9T$YtRkFL3JLAB/zfyr89aFp.$of1IUt84c2i26l6GQWHO2qX0dNiPDZgVGpaNPVyAs24"; }; }; services.openssh.settings.PasswordAuthentication = false; |