ssh: refactoring

2024-07-28 06:08:59 -07:00 · 2024-07-28 06:08:59 -07:00 · afdd0a22f3
commit afdd0a22f3
parent e46de005fd
1 changed files with 28 additions and 30 deletions
--- a/home/modules/ssh.nix
+++ b/home/modules/ssh.nix
@ -11,38 +11,36 @@ in
    homeNetwork = lib.mkEnableOption "include local hostnames for home network devices";
  };

-  config = lib.mkIf cfg.enable {
+  config =
+    let home = config.home.homeDirectory + "/.ssh";
+    in lib.mkIf cfg.enable {
      programs.ssh = {
        enable = true;
-      includes = [
-        "conf.d/*"
-      ];
+        includes = [ "conf.d/*" ];
        matchBlocks = {
          "git.zynh.me" = {
            hostname = "git.zynh.me";
            user = "git";
            port = 2221;
-          identityFile = "${config.home.homeDirectory}/.ssh/personal_git";
+            identityFile = "${home}/.ssh/personal_git";
          };
          msiserver = {
            hostname = "scarlet.zynh.me";
            user = "zynh";
-          identityFile = "${config.home.homeDirectory}/.ssh/msiserver";
+            identityFile = "${home}/.ssh/msiserver";
          };
          "msiserver.local" = lib.mkIf cfg.homeNetwork {
            hostname = "msiserver";
            user = "zynh";
-          identityFile = "${config.home.homeDirectory}/.ssh/msiserver";
+            identityFile = "${home}/.ssh/msiserver";
          };
          caveserver = {
-          identityFile = "${config.home.homeDirectory}/.ssh/caveserver";
+            identityFile = "${home}/.ssh/caveserver";
          };
        };
      };

-    sops.secrets =
-      let home = config.home.homeDirectory;
-      in lib.mkIf sops {
+      sops.secrets = lib.mkIf sops {
        "private_keys/msiserver".path = "${home}/.ssh/msiserver";
        "private_keys/caveserver".path = "${home}/.ssh/caveserver";
        "ssh_hosts/caveserver".path = "${home}/.ssh/conf.d/caveserver_config";