self-hosting/modules/openssh.nix

{ config, lib, ... }:
with lib;
let cfg = config.custom.services.openssh;
in {
  options.custom.services.openssh = { enable = mkEnableOption "openssh"; };

  config = mkIf cfg.enable {
    services.openssh.enable = true;
    services.openssh.settings.PermitRootLogin = "prohibit-password";
    users.users.root.openssh.authorizedKeys.keyFiles = [
      ../ssh_keys/froidmpa-desktop.pub
      ../ssh_keys/froidmpa-laptop.pub
      ../ssh_keys/elios-desktop.pub
    ];
  };
}
Start migrating config to NixOS modules 2022-09-16 01:29:46 +02:00			`{ config, lib, ... }:`
			`with lib;`
Update to NixOS 23.05 2023-07-10 19:19:25 +02:00			`let cfg = config.custom.services.openssh;`
			`in {`
			`options.custom.services.openssh = { enable = mkEnableOption "openssh"; };`
Start migrating config to NixOS modules 2022-09-16 01:29:46 +02:00
			`config = mkIf cfg.enable {`
			`services.openssh.enable = true;`
Update to NixOS 23.05 2023-07-10 19:19:25 +02:00			`services.openssh.settings.PermitRootLogin = "prohibit-password";`
Add ssh-key of Elios 2023-10-17 22:36:27 +02:00			`users.users.root.openssh.authorizedKeys.keyFiles = [`
			`../ssh_keys/froidmpa-desktop.pub`
			`../ssh_keys/froidmpa-laptop.pub`
			`../ssh_keys/elios-desktop.pub`
			`];`
Start migrating config to NixOS modules 2022-09-16 01:29:46 +02:00			`};`
Split Nix config in modules 2021-07-15 17:09:32 +02:00			`}`