users#nrd: init ssh

2019-12-15 02:37:45 -07:00 · 2019-12-15 02:37:45 -07:00 · 3abc7fe973
parent 4122c25ac0
commit 3abc7fe973
3 changed files with 42 additions and 0 deletions
--- a/secrets/github
+++ b/secrets/github
--- a/secrets/gitlab
+++ b/secrets/gitlab
--- a/users/nrd.nix
+++ b/users/nrd.nix
@ -1,9 +1,14 @@
 { lib, ... }:
 let
+  inherit (builtins)
+    toFile
+    ;
+
  inherit (lib)
    fileContents
    ;

+
  name = "Timothy DeHerrera";
 in
 {
@ -48,6 +53,43 @@ in
      };
    };

+    programs.ssh = {
+      enable = true;
+      hashKnownHosts = true;
+      identitiesOnly = true;
+
+      matchBlocks = let
+        githubKey = toFile "github"
+          (fileContents ../secrets/github);
+
+        gitlabKey = toFile "gitlab"
+          (fileContents ../secrets/gitlab);
+      in
+        {
+          github = {
+            host = "github.com";
+            identityFile = githubKey;
+            extraOptions = {
+              AddKeysToAgent = "yes";
+            };
+          };
+          gitlab = {
+            host = "gitlab.com";
+            identityFile = gitlabKey;
+            extraOptions = {
+              AddKeysToAgent = "yes";
+            };
+          };
+          "gitlab.company" = {
+            host = "gitlab.company.com";
+            identityFile = gitlabKey;
+            extraOptions = {
+              AddKeysToAgent = "yes";
+            };
+          };
+        };
+    };
+
    services.gng-agent = {
      enable = true;
      defaultCacheTtl = 1800;