magic_rb/dotfiles
1
0
Fork 0
mirror of https://git.sr.ht/~magic_rb/dotfiles synced 2024-11-22 08:04:20 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add ssh-remote-access

Browse source 
Signed-off-by: magic_rb <magic_rb@redalder.org>
This commit is contained in:
magic_rb 2023-12-30 19:42:55 +01:00
parent a0f42d9227
commit 39d36d5457
No known key found for this signature in database
GPG key ID: 08D5287CC5DDCA0E
1 changed files with 19 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

19
nixos/systems/blowhole/ssh-machine-access.nix Normal file
View file

@ -0,0 +1,19 @@
{
pkgs,
lib,
...
}: let
inherit (lib) getExe';
in {
users.groups."bot" = {};
users.users."bot" = {
group = "bot";
home = "/var/empty";
shell = "${getExe' pkgs.busybox "sh"}";
isNormalUser = false;
isSystemUser = true;
openssh.authorizedKeys.keys = [
''restrict,command="echo \"It's working\"" ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFVkFvalffJ/SMjJGG3WPiqCqFygnWzhGUaeALBIoCsJ (none)''
];
};
}