self-hosting/modules/openssh.nix

{ config, lib, ... }:
with lib;
let
  cfg = config.custom.services.openssh;
in
{
  options.custom.services.openssh = {
    enable = mkEnableOption "openssh";
  };

  config = mkIf cfg.enable {
    services.openssh.enable = true;
    services.openssh.settings.PermitRootLogin = "prohibit-password";
    users.users.root.openssh.authorizedKeys.keyFiles = [
      ../ssh_keys/froidmpa-desktop.pub
      ../ssh_keys/froidmpa-laptop.pub
      ../ssh_keys/phfroidmont-stellaris.pub
      ../ssh_keys/elios-desktop.pub
    ];
  };
}
Start migrating config to NixOS modules 2022-09-16 01:29:46 +02:00			`{ config, lib, ... }:`
			`with lib;`
Update ssh keys 2025-09-25 18:44:04 +02:00			`let`
			`cfg = config.custom.services.openssh;`
			`in`
			`{`
			`options.custom.services.openssh = {`
			`enable = mkEnableOption "openssh";`
			`};`
Start migrating config to NixOS modules 2022-09-16 01:29:46 +02:00
			`config = mkIf cfg.enable {`
			`services.openssh.enable = true;`
Update to NixOS 23.05 2023-07-10 19:19:25 +02:00			`services.openssh.settings.PermitRootLogin = "prohibit-password";`
Add ssh-key of Elios 2023-10-17 22:36:27 +02:00			`users.users.root.openssh.authorizedKeys.keyFiles = [`
			`../ssh_keys/froidmpa-desktop.pub`
			`../ssh_keys/froidmpa-laptop.pub`
Update ssh keys 2025-09-25 18:44:04 +02:00			`../ssh_keys/phfroidmont-stellaris.pub`
Add ssh-key of Elios 2023-10-17 22:36:27 +02:00			`../ssh_keys/elios-desktop.pub`
			`];`
Start migrating config to NixOS modules 2022-09-16 01:29:46 +02:00			`};`
Split Nix config in modules 2021-07-15 17:09:32 +02:00			`}`