users/robots: add hora for automation

2025-04-15 23:05:33 +02:00 · 2025-04-15 23:05:33 +02:00 · ab26776832
commit ab26776832
parent 77356dd455
3 changed files with 9 additions and 4 deletions
--- a/modules/core/users.nix
+++ b/modules/core/users.nix
@ -52,7 +52,7 @@
      robot.username = mkOption {
        description = "username for the robot user";
        type = types.str;
-        default = "hakkonaut";
+        default = "hora";
      };

      robot.sshPubKeys = mkOption {
@ -88,7 +88,7 @@
          home = "/home/${config.momo-cloud.authentication.robot.username}";
          createHome = true;
          useDefaultShell = true;
-          uid = 998;
+          uid = 1100;
          group = "${config.momo-cloud.authentication.robot.username}";
          isSystemUser = true;
          openssh.authorizedKeys.keys = config.momo-cloud.authentication.robot.sshPubKeys;
@ -108,7 +108,9 @@
        acc // { "${name}" = { }; }
      ) { } config.momo-cloud.authentication.users)
      // {
-        ${config.momo-cloud.authentication.robot.username} = { };
+        ${config.momo-cloud.authentication.robot.username} = {
+          gid = 1100;
+        };
      };

    security.sudo.wheelNeedsPassword = false;
--- a/staging/logins/robots.nix
+++ b/staging/logins/robots.nix
@ -1,2 +1,5 @@
 {
+  # automation user, e.g. used to deploy the momo.koeln website
+  "hora" =
+    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFvcB5rOTGsfDmH6dCnDgVszgEAHXSm9rn7TuHfBcoh6 hora@automation";
 }
--- a/tests/support/mail-server.nix
+++ b/tests/support/mail-server.nix
@ -21,7 +21,7 @@
      "admins@${config.momo-cloud.networking.domain}" = {
        hashedPasswordFile = "/tmp/emailpw";
      };
-      "hakkonaut@${config.momo-cloud.networking.domain}" = {
+      "hora@${config.momo-cloud.networking.domain}" = {
        hashedPasswordFile = "/tmp/emailpw";
      };
      "test-user@${config.momo-cloud.networking.domain}" = {