b12f/os
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

initrd: take publicKeys from flake config

Browse source
This commit is contained in:
Benjamin Yule Bädorf 2024-03-25 19:12:45 +01:00
parent 5c13335a52
commit f3804d23cc
Signed by: b12f
GPG key ID: 729956E1124F8F26
3 changed files with 5 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
hosts/droppie/configuration.nix
View file

@ -29,7 +29,7 @@ in {
ssh = { ssh = {
enable = true; enable = true;
port = 2222; port = 2222;
authorizedKeys = psCfg.user.publicKeys; authorizedKeys = flake.self.publicKeys;
hostKeys = ["/persist/etc/secrets/initrd/ssh_host_ed25519_key"]; hostKeys = ["/persist/etc/secrets/initrd/ssh_host_ed25519_key"];
shell = "/bin/cryptsetup-askpass"; shell = "/bin/cryptsetup-askpass";
}; };

3
hosts/frikandel/configuration.nix
View file

@ -2,6 +2,7 @@
config, config,
pkgs, pkgs,
lib, lib,
flake,
... ...
}: }:
with lib; let with lib; let
@ -25,7 +26,7 @@ in {
enable = true; enable = true;
port = 2222; port = 2222;
hostKeys = [ /boot/initrd-ssh-key ]; hostKeys = [ /boot/initrd-ssh-key ];
authorizedKeys = psCfg.user.publicKeys; authorizedKeys = flake.self.publicKeys;
shell = "/bin/cryptsetup-askpass"; shell = "/bin/cryptsetup-askpass";
}; };
postCommands = '' postCommands = ''

3
hosts/pie/configuration.nix
View file

@ -2,6 +2,7 @@
config, config,
pkgs, pkgs,
lib, lib,
flake,
... ...
}: }:
with lib; let with lib; let
@ -34,7 +35,7 @@ in {
ssh = { ssh = {
enable = true; enable = true;
port = 2222; port = 2222;
authorizedKeys = psCfg.user.publicKeys; authorizedKeys = flake.self.publicKeys;
hostKeys = ["/etc/secrets/initrd/ssh_host_ed25519_key"]; hostKeys = ["/etc/secrets/initrd/ssh_host_ed25519_key"];
shell = "/bin/cryptsetup-askpass"; shell = "/bin/cryptsetup-askpass";
}; };