kalipso/infrastructure
1
1
Fork 1
Code Issues 43 Pull Requests 3 Actions Projects 2 Releases Wiki Activity

[user module] fix sops user password
All checks were successful
Check flake syntax / flake-check (push) Successful in 4m17s
Details

Browse Source
This commit is contained in:
ahtlon
2025-01-29 09:29:58 +01:00
parent eb61088dc9
commit 8b33a1c704
1 changed files with 5 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
machines/modules/malobeo/users.nix
View File

@@ -10,13 +10,16 @@ in
}; };
config = lib.mkMerge [ config = lib.mkMerge [
(lib.mkIf cfg.malobeo { (lib.mkIf cfg.malobeo {
sops.secrets.malobeoUserPassword.neededForUsers = true; sops.secrets.malobeoUserPassword = {
sopsFile = ./secrets.yaml;
neededForUsers = true;
};
users.users.malobeo = { users.users.malobeo = {
isNormalUser = true; isNormalUser = true;
description = "malobeo user, password and ssh access, no root"; description = "malobeo user, password and ssh access, no root";
extraGroups = [ "pipewire" "pulse-access" "scanner" "lp" ]; extraGroups = [ "pipewire" "pulse-access" "scanner" "lp" ];
openssh.authorizedKeys.keys = sshKeys.admins; openssh.authorizedKeys.keys = sshKeys.admins;
hashedPassword = config.sops.secrets.malobeoUserPassword.path; hashedPasswordFile = config.sops.secrets.malobeoUserPassword.path;
}; };
environment.systemPackages = with pkgs; []; environment.systemPackages = with pkgs; [];
}) })