nixos-anywhere #4
3 changed files with 8 additions and 6 deletions
|
@ -1,5 +1,4 @@
|
||||||
{ machine, ...}:
|
{ machine, ... }: {
|
||||||
{
|
|
||||||
age = {
|
age = {
|
||||||
identityPaths = [ "/root/age_ed25519" ];
|
identityPaths = [ "/root/age_ed25519" ];
|
||||||
|
|
||||||
|
|
|
@ -32,7 +32,9 @@
|
||||||
KbdInteractiveAuthentication = false;
|
KbdInteractiveAuthentication = false;
|
||||||
};
|
};
|
||||||
extraConfig = ''
|
extraConfig = ''
|
||||||
HostCertificate ${builtins.toFile "host_ed25519-cert.pub" machine.host-cert}
|
HostCertificate ${
|
||||||
|
builtins.toFile "host_ed25519-cert.pub" machine.host-cert
|
||||||
|
}
|
||||||
HostKey ${config.age.secrets.host_ed25519.path}
|
HostKey ${config.age.secrets.host_ed25519.path}
|
||||||
'';
|
'';
|
||||||
};
|
};
|
||||||
|
@ -66,7 +68,9 @@
|
||||||
};
|
};
|
||||||
|
|
||||||
extraConfig = ''
|
extraConfig = ''
|
||||||
CertificateFile ${builtins.toFile "user_ed25519-cert.pub" machine.user-cert}
|
CertificateFile ${
|
||||||
|
builtins.toFile "user_ed25519-cert.pub" machine.user-cert
|
||||||
|
}
|
||||||
HostKey ${config.age.secrets.user_ed25519.path}
|
HostKey ${config.age.secrets.user_ed25519.path}
|
||||||
'';
|
'';
|
||||||
};
|
};
|
||||||
|
|
|
@ -39,8 +39,7 @@
|
||||||
];
|
];
|
||||||
};
|
};
|
||||||
|
|
||||||
# TODO. if uncommented, nix flake check fails
|
formatter.${system} = pkgs.nixfmt;
|
||||||
# formatter = pkgs.nixfmt;
|
|
||||||
|
|
||||||
nixosConfigurations = mkNixosSystems (machine: {
|
nixosConfigurations = mkNixosSystems (machine: {
|
||||||
inherit system;
|
inherit system;
|
||||||
|
|
Loading…
Reference in a new issue