This repository has been archived on 2024-07-08. You can view files and clone it, but cannot push or open issues or pull requests.
nix-config-tn/nixos/profiles/global/users.nix

47 lines
1.4 KiB
Nix
Raw Normal View History

2024-03-18 04:26:02 -05:00
{ pkgs
, config
, ...
}:
let
2024-03-17 16:04:32 -05:00
ifTheyExist = groups: builtins.filter (group: builtins.hasAttr group config.users.groups) groups;
2024-03-18 04:26:02 -05:00
in
{
2024-04-11 04:42:26 -05:00
sops.secrets = {
2024-05-10 10:06:16 -05:00
jahanson-password = {
sopsFile = ./secrets.sops.yaml;
2024-04-11 04:42:26 -05:00
neededForUsers = true;
};
};
2024-05-10 10:06:16 -05:00
users.users.jahanson = {
2024-03-13 06:55:17 -05:00
isNormalUser = true;
shell = pkgs.fish;
2024-05-10 10:06:16 -05:00
hashedPasswordFile = config.sops.secrets.jahanson-password.path;
2024-03-17 16:04:32 -05:00
extraGroups =
[
"wheel"
]
++ ifTheyExist [
"network"
"samba-users"
2024-03-24 07:21:41 -05:00
"docker"
"podman"
"audio" # pulseaudio
"libvirtd"
2024-03-17 16:04:32 -05:00
];
2024-03-13 06:55:17 -05:00
openssh.authorizedKeys.keys = [
2024-05-10 10:06:16 -05:00
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBsUe5YF5z8vGcEYtQX7AAiw2rJygGf2l7xxr8nZZa7w"
"ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBH3VVFenoJfnu+IFUlD79uxl7L8SFoRup33J2HGny4WEdRgGR41s0MpFKDBmxXZHy4O9Nh8NMMnpy5VhUefnIKI="
"ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPHFQ3hDjjrKsecn3jmSWYlRXy4IJCrepgU1HaIV5VcmB3mUFmIZ/pCZnPmIG/Gbuqf1PP2FQDmHMX5t0hTYG9A="
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIETR70eQJiXaJuB+qpI1z+jFOPbEZoQNRcq4VXkojWfU"
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIATyScd8ZRhV7uZmrQNSAbRTs9N/Dbx+Y8tGEDny30sA"
2024-05-11 07:50:38 -05:00
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJyA/yMPPo+scxBaDFUk7WeEyMAMhXUro5vi4feOKsJT jahanson@durincore"
]; # TODO do i move to ingest github creds?
2024-03-13 06:55:17 -05:00
2024-03-25 00:47:43 -05:00
# packages = [ pkgs.home-manager ];
2024-03-13 06:55:17 -05:00
};
}