Zynh0722
/
nixos
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ssh: refactoring

main
Zynh Ludwig 2024-07-28 06:08:59 -07:00
parent e46de005fd
commit afdd0a22f3
1 changed files with 28 additions and 30 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
home/modules/ssh.nix
View File

@ -11,38 +11,36 @@ in
homeNetwork = lib.mkEnableOption "include local hostnames for home network devices";
};
config = lib.mkIf cfg.enable {
config =
let home = config.home.homeDirectory + "/.ssh";
in lib.mkIf cfg.enable {
programs.ssh = {
enable = true;
includes = [
"conf.d/*"
];
includes = [ "conf.d/*" ];
matchBlocks = {
"git.zynh.me" = {
hostname = "git.zynh.me";
user = "git";
port = 2221;
identityFile = "${config.home.homeDirectory}/.ssh/personal_git";
identityFile = "${home}/.ssh/personal_git";
};
msiserver = {
hostname = "scarlet.zynh.me";
user = "zynh";
identityFile = "${config.home.homeDirectory}/.ssh/msiserver";
identityFile = "${home}/.ssh/msiserver";
};
"msiserver.local" = lib.mkIf cfg.homeNetwork {
hostname = "msiserver";
user = "zynh";
identityFile = "${config.home.homeDirectory}/.ssh/msiserver";
identityFile = "${home}/.ssh/msiserver";
};
caveserver = {
identityFile = "${config.home.homeDirectory}/.ssh/caveserver";
identityFile = "${home}/.ssh/caveserver";
};
};
};
sops.secrets =
let home = config.home.homeDirectory;
in lib.mkIf sops {
sops.secrets = lib.mkIf sops {
"private_keys/msiserver".path = "${home}/.ssh/msiserver";
"private_keys/caveserver".path = "${home}/.ssh/caveserver";
"ssh_hosts/caveserver".path = "${home}/.ssh/conf.d/caveserver_config";