From 63ebc70f8f0e0e94ad47125fb4caf65c5e03f07f Mon Sep 17 00:00:00 2001 From: "RingOfStorms (Joshua Bell)" Date: Tue, 12 Nov 2024 14:55:00 -0600 Subject: [PATCH] add lio ssh keys. Remove frontend forwards on t ssh --- flake.lock | 164 +++++++++--------- hosts/ragenix.nix | 4 + secrets/nix2lio.age | 36 ++++ secrets/secrets.nix | 3 + users/_common/home_manager/ssh.nix | 20 ++- .../lio/nix_modules/TODO_SSH_AUTHORIZED | 0 .../lio/nix_modules/ssh_authorized.nix | 6 + 7 files changed, 146 insertions(+), 87 deletions(-) create mode 100644 secrets/nix2lio.age delete mode 100644 users/josh/by_hosts/lio/nix_modules/TODO_SSH_AUTHORIZED create mode 100644 users/josh/by_hosts/lio/nix_modules/ssh_authorized.nix diff --git a/flake.lock b/flake.lock index 8b4c664..21f52ee 100644 --- a/flake.lock +++ b/flake.lock @@ -336,11 +336,11 @@ }, "nixpkgs-stable_2": { "locked": { - "lastModified": 1729044727, - "narHash": "sha256-GKJjtPY+SXfLF/yTN7M2cAnQB6RERFKnQhD8UvPSf3M=", + "lastModified": 1731239293, + "narHash": "sha256-q2yjIWFFcTzp5REWQUOU9L6kHdCDmFDpqeix86SOvDc=", "owner": "nixos", "repo": "nixpkgs", - "rev": "dc2e0028d274394f73653c7c90cc63edbb696be1", + "rev": "9256f7c71a195ebe7a218043d9f93390d49e6884", "type": "github" }, "original": { @@ -352,11 +352,11 @@ }, "nixpkgs_2": { "locked": { - "lastModified": 1729231104, - "narHash": "sha256-bRfk5ns1kp+D9/ngAYm5RhT9f/egXkfL1Xhd5j0c0W8=", + "lastModified": 1731425077, + "narHash": "sha256-cpbqzVTq814fH5QK9Ry0iGEb8u//l0OCT90cQJOKHyU=", "owner": "nixos", "repo": "nixpkgs", - "rev": "ac76a342a8e881cfae21716a9ef0668422882837", + "rev": "e6fa8c6399e996409853ae5e38b5fce1c44a06cd", "type": "github" }, "original": { @@ -433,11 +433,11 @@ "nvim_plugin-L3MON4D3/LuaSnip": { "flake": false, "locked": { - "lastModified": 1726165831, - "narHash": "sha256-nkaa1NGOI28Et2QitQB+Spv+J42QVdHE1oywteLcJJw=", + "lastModified": 1731421019, + "narHash": "sha256-EBhlTaMs5ugDdA6WUcOWI2VL68BOruRUoiaMei4ECPQ=", "owner": "L3MON4D3", "repo": "LuaSnip", - "rev": "e808bee352d1a6fcf902ca1a71cee76e60e24071", + "rev": "659c4479529a05cc9b05ef762639a09d366cc690", "type": "github" }, "original": { @@ -449,11 +449,11 @@ "nvim_plugin-MeanderingProgrammer/render-markdown.nvim": { "flake": false, "locked": { - "lastModified": 1729200469, - "narHash": "sha256-SUuBju402ORBi9PlL5vcz/VHe0yyRB6MTnGEpm4bJtA=", + "lastModified": 1731358022, + "narHash": "sha256-Li0w+AHSGW/sRJDFGbXipKpWyG2EK1bummTDHMPkiCY=", "owner": "MeanderingProgrammer", "repo": "render-markdown.nvim", - "rev": "bea6f2078e34abdf5c2632f593651bb13205477f", + "rev": "78a2eb7fc273f36790aa390262f390a3265eedff", "type": "github" }, "original": { @@ -529,11 +529,11 @@ "nvim_plugin-b0o/schemastore.nvim": { "flake": false, "locked": { - "lastModified": 1729191636, - "narHash": "sha256-wmTJdOT7ZA17RJx5CDmqRIh4dSnx6AdlcopeTzNYnSs=", + "lastModified": 1731351639, + "narHash": "sha256-6jVbzYitS+gHIyuzfuQ2Q9Sujo+8m+PUKFuyfa/xcdI=", "owner": "b0o", "repo": "schemastore.nvim", - "rev": "ee460baf4c8d29d051906d39b0e095289a3ddc9a", + "rev": "64aed5788796d1f241da0afbd096e6dd649694bd", "type": "github" }, "original": { @@ -545,11 +545,11 @@ "nvim_plugin-catppuccin/nvim": { "flake": false, "locked": { - "lastModified": 1728131011, - "narHash": "sha256-j6F078taxuGzr3jngrc+Pc5I1kDdxTLMETgq6Xn4w/4=", + "lastModified": 1731169755, + "narHash": "sha256-lsnePejThsEygTCKV/rfJJ/h+RSrro91am841iznJe4=", "owner": "catppuccin", "repo": "nvim", - "rev": "7be452ee067978cdc8b2c5f3411f0c71ffa612b9", + "rev": "637d99e638bc6f1efedac582f6ccab08badac0c6", "type": "github" }, "original": { @@ -593,11 +593,11 @@ "nvim_plugin-folke/lazy.nvim": { "flake": false, "locked": { - "lastModified": 1727855684, - "narHash": "sha256-WI241RduX495zN/H1vltxNYC88TiDIJSFwZ5UmA+weU=", + "lastModified": 1731319679, + "narHash": "sha256-fxl5um2Dh7P5iCgGG0vXFKVZfor49djvcS/H9FPqLGg=", "owner": "folke", "repo": "lazy.nvim", - "rev": "1159bdccd8910a0fd0914b24d6c3d186689023d9", + "rev": "7967abe55752aa90532e6bb4bd4663fe27a264cb", "type": "github" }, "original": { @@ -625,11 +625,11 @@ "nvim_plugin-folke/which-key.nvim": { "flake": false, "locked": { - "lastModified": 1727856297, - "narHash": "sha256-crECQnWpptz1A/hOndHPEduK6MqWQH8kyf58h+4snHo=", + "lastModified": 1730919714, + "narHash": "sha256-5t6UnOP2+CXB55/C4YWbp2pE+xKDLMvCJK8m085Fk4w=", "owner": "folke", "repo": "which-key.nvim", - "rev": "8badb359f7ab8711e2575ef75dfe6fbbd87e4821", + "rev": "68e37e12913a66b60073906f5d3f14dee0de19f2", "type": "github" }, "original": { @@ -689,11 +689,11 @@ "nvim_plugin-hrsh7th/nvim-cmp": { "flake": false, "locked": { - "lastModified": 1722509464, - "narHash": "sha256-NcodgUp8obTsjgc+5j2dKr0f3FelYikQTJngfZXRZzo=", + "lastModified": 1730523275, + "narHash": "sha256-iNEoMl/X0nh2sAio1h+dkuobeOXRBXKFJCcElUyyW54=", "owner": "hrsh7th", "repo": "nvim-cmp", - "rev": "ae644feb7b67bf1ce4260c231d1d4300b19c6f30", + "rev": "f17d9b4394027ff4442b298398dfcaab97e40c4f", "type": "github" }, "original": { @@ -705,11 +705,11 @@ "nvim_plugin-j-hui/fidget.nvim": { "flake": false, "locked": { - "lastModified": 1720885602, - "narHash": "sha256-fjxdRN08BMU7jTWdhdzh8kW18ZURS9SJCwnTxuz6aFE=", + "lastModified": 1730221432, + "narHash": "sha256-fQBrkHV54TaOeLYQJ1DE+lr7SFDPN1yqSlzhFm26NAY=", "owner": "j-hui", "repo": "fidget.nvim", - "rev": "d855eed8a06531a7e8fd0684889b2943f373c469", + "rev": "e2a175c2abe2d4f65357da1c98c59a5cfb2b543f", "type": "github" }, "original": { @@ -737,11 +737,11 @@ "nvim_plugin-lewis6991/gitsigns.nvim": { "flake": false, "locked": { - "lastModified": 1727424886, - "narHash": "sha256-o2Y57z7IuIa9wvLlzyslcs3/+iaZzuqM1NImlKAPt5Y=", + "lastModified": 1730713501, + "narHash": "sha256-FHzufzeVrPnbU5j3UabVTCYXP+QNcb7gMgef0BmuclA=", "owner": "lewis6991", "repo": "gitsigns.nvim", - "rev": "863903631e676b33e8be2acb17512fdc1b80b4fb", + "rev": "4daf7022f1481edf1e8fb9947df13bb07c18e89a", "type": "github" }, "original": { @@ -769,11 +769,11 @@ "nvim_plugin-lukas-reineke/indent-blankline.nvim": { "flake": false, "locked": { - "lastModified": 1728270661, - "narHash": "sha256-OKtaibgT9uPQQmddfj7YKgAYc7lz4ne1dbUz9PdRAvA=", + "lastModified": 1731320409, + "narHash": "sha256-WVDNi/woG0ohPEYzM83mmXDCRNYnQbqooSDVUtBsJbY=", "owner": "lukas-reineke", "repo": "indent-blankline.nvim", - "rev": "e7a4442e055ec953311e77791546238d1eaae507", + "rev": "7871a88056f7144defca9c931e311a3134c5d509", "type": "github" }, "original": { @@ -833,11 +833,11 @@ "nvim_plugin-mfussenegger/nvim-lint": { "flake": false, "locked": { - "lastModified": 1729155978, - "narHash": "sha256-4sGU9yKrIJRlnyRGYVi2aNNycsS+KABTheNnawLGMM8=", + "lastModified": 1730367889, + "narHash": "sha256-vLsyRc8nbJJBjWebNFy5yrS6w2TmibEeMNpyzFenoTg=", "owner": "mfussenegger", "repo": "nvim-lint", - "rev": "16b21a7d04d06661f92f273a0744fd81fb19e09e", + "rev": "36da8dd0ddc4f88e0beae234c20e75397326f143", "type": "github" }, "original": { @@ -849,11 +849,11 @@ "nvim_plugin-mrcjkb/rustaceanvim": { "flake": false, "locked": { - "lastModified": 1729179129, - "narHash": "sha256-CTxEf7w2Pr24Q7QP8sXrq8Yx5eK/Qs0cykMF6gLUNN8=", + "lastModified": 1731403165, + "narHash": "sha256-W4gVCEneDgtLq/6n+iyxu2lULpjAy/aaBbMEosDGF9w=", "owner": "mrcjkb", "repo": "rustaceanvim", - "rev": "6eb1c41463a0ad02a4fe799321cc7f651b87e576", + "rev": "8ece53be36515cb9e76f3d03511643636469502d", "type": "github" }, "original": { @@ -865,11 +865,11 @@ "nvim_plugin-neovim/nvim-lspconfig": { "flake": false, "locked": { - "lastModified": 1729055524, - "narHash": "sha256-f9CqwKBWZgC2ystm+g7FmsHR0fLcM6Wj+GkSwoUIanw=", + "lastModified": 1731401169, + "narHash": "sha256-JmNIK/es9svoi73OZXj50eJq+FD0ZBqWYjtcTU+KxUA=", "owner": "neovim", "repo": "nvim-lspconfig", - "rev": "541f3a2781de481bb84883889e4d9f0904250a56", + "rev": "d2d153a179ed59aa7134d7ebdf4d7dcb156efa22", "type": "github" }, "original": { @@ -897,11 +897,11 @@ "nvim_plugin-nvim-lualine/lualine.nvim": { "flake": false, "locked": { - "lastModified": 1723473562, - "narHash": "sha256-gCm7m96PkZyrgjmt7Efc+NMZKStAq1zr7JRCYOgGDuE=", + "lastModified": 1731050126, + "narHash": "sha256-IN6Qz3jGxUcylYiRTyd8j6me3pAoqJsJXtFUvph/6EI=", "owner": "nvim-lualine", "repo": "lualine.nvim", - "rev": "b431d228b7bbcdaea818bdc3e25b8cdbe861f056", + "rev": "2a5bae925481f999263d6f5ed8361baef8df4f83", "type": "github" }, "original": { @@ -913,11 +913,11 @@ "nvim_plugin-nvim-telescope/telescope-file-browser.nvim": { "flake": false, "locked": { - "lastModified": 1726883879, - "narHash": "sha256-44o8sapjIdIJ+UJJH3X8mUcQjWXzOEI05kCFiVQrlO4=", + "lastModified": 1729728595, + "narHash": "sha256-VJbRi91TTOwUkQYyTM6Njl7MtX8/mOjINiqWYWEtyxg=", "owner": "nvim-telescope", "repo": "telescope-file-browser.nvim", - "rev": "3b8a1e17187cfeedb31decbd625da62398a8ff34", + "rev": "626998e5c1b71c130d8bc6cf7abb6709b98287bb", "type": "github" }, "original": { @@ -961,11 +961,11 @@ "nvim_plugin-nvim-telescope/telescope.nvim": { "flake": false, "locked": { - "lastModified": 1728518892, - "narHash": "sha256-HWNfj3/b+CUFgWR26IzAuMzlSCEuiK/7n8tWHwqAAik=", + "lastModified": 1730164948, + "narHash": "sha256-Qa/f+0asQvA8mhIUajC4BGZCI92OqA6ySVoQSC3ZY3s=", "owner": "nvim-telescope", "repo": "telescope.nvim", - "rev": "df534c3042572fb958586facd02841e10186707c", + "rev": "85922dde3767e01d42a08e750a773effbffaea3e", "type": "github" }, "original": { @@ -977,11 +977,11 @@ "nvim_plugin-nvim-tree/nvim-tree.lua": { "flake": false, "locked": { - "lastModified": 1728892603, - "narHash": "sha256-iYVsOpvKQpPSwVMVRqmKkfsjqU9lsBWWEVkqjT1pH18=", + "lastModified": 1731275826, + "narHash": "sha256-YIClwxyw4fNos5OIBZOjM0dlCw+yOhDDnq5jONSu7rs=", "owner": "nvim-tree", "repo": "nvim-tree.lua", - "rev": "f5f67892996b280ae78b1b0a2d07c4fa29ae0905", + "rev": "28eac2801b201f301449e976d7a9e8cfde053ba3", "type": "github" }, "original": { @@ -1009,11 +1009,11 @@ "nvim_plugin-nvim-treesitter/nvim-treesitter-context": { "flake": false, "locked": { - "lastModified": 1729198533, - "narHash": "sha256-2JAS86lxUuWVoJ3jJQh4gB0bGEY5jSDUVq1lQRyNhmw=", + "lastModified": 1731163983, + "narHash": "sha256-oRmhwRIynCNmgKpTtwUIliYf0Qo+zP3ymEWYs+vzx8A=", "owner": "nvim-treesitter", "repo": "nvim-treesitter-context", - "rev": "bf6386d9bbb9e53386987beb90264abd4faf5c74", + "rev": "158377d700596367a91ea41818f76abdbf75a232", "type": "github" }, "original": { @@ -1025,11 +1025,11 @@ "nvim_plugin-preservim/nerdcommenter": { "flake": false, "locked": { - "lastModified": 1723109629, - "narHash": "sha256-2ppUyQL9y5m81e9HrcqPD4I1xLidIKn/kpLS6/xfrnw=", + "lastModified": 1729604332, + "narHash": "sha256-IW4RToMGwOSX0GbNXpBkOqtZ2C9Mgbk6iZWPGX5jDr4=", "owner": "preservim", "repo": "nerdcommenter", - "rev": "3f860f2d981547c18f2c9599e3c358ea488c3be4", + "rev": "66c07e4083ab02ed2540ac289cc602c70b858c13", "type": "github" }, "original": { @@ -1073,11 +1073,11 @@ "nvim_plugin-rmagatti/auto-session": { "flake": false, "locked": { - "lastModified": 1728095376, - "narHash": "sha256-WM/Umjw8EvO6pUoKOG2MYXlmHxgIh42YGKH2w/g02Yg=", + "lastModified": 1730603060, + "narHash": "sha256-IlrScM5bSg2+JKR2nCZTN2MUSbFUWasSTKZ+k+Oa7+w=", "owner": "rmagatti", "repo": "auto-session", - "rev": "9d02776ed42874d37869dc683396234e3724b52d", + "rev": "542d338ec5ee027638c8e076110b188a465b45d2", "type": "github" }, "original": { @@ -1105,11 +1105,11 @@ "nvim_plugin-saadparwaiz1/cmp_luasnip": { "flake": false, "locked": { - "lastModified": 1696878902, - "narHash": "sha256-nUJJl2zyK/oSwz5RzI9j3gf9zpDfCImCYbPbVsyXgz8=", + "lastModified": 1730707109, + "narHash": "sha256-86lKQPPyqFz8jzuLajjHMKHrYnwW6+QOcPyQEx6B+gw=", "owner": "saadparwaiz1", "repo": "cmp_luasnip", - "rev": "05a9ab28b53f71d1aece421ef32fee2cb857a843", + "rev": "98d9cb5c2c38532bd9bdb481067b20fea8f32e90", "type": "github" }, "original": { @@ -1137,11 +1137,11 @@ "nvim_plugin-stevearc/conform.nvim": { "flake": false, "locked": { - "lastModified": 1729039923, - "narHash": "sha256-X+9+X31AmJqYWQv2QxX5AEovHwGV/K2q6A0RtiIZGGk=", + "lastModified": 1731295166, + "narHash": "sha256-i36OS+hs8wd3SZgToLh+vkn1gNt3pvzGgCHalASsywA=", "owner": "stevearc", "repo": "conform.nvim", - "rev": "f5bd8419f8a29451e20bdb1061a54fe13d5c8de3", + "rev": "8c354323201d04530727d8bdcc4669791ee082ef", "type": "github" }, "original": { @@ -1233,11 +1233,11 @@ "nvim_plugin-zbirenbaum/copilot.lua": { "flake": false, "locked": { - "lastModified": 1726092169, - "narHash": "sha256-kHxWWJ6HQTze7l55EdDV1Z1FY+jgWPpspmiKvfHzWjI=", + "lastModified": 1729295476, + "narHash": "sha256-UY6N2Q+egh+Cn4REZXrSGH9ElWQBedl0n8tWJvGe7vs=", "owner": "zbirenbaum", "repo": "copilot.lua", - "rev": "1a237cf50372830a61d92b0adf00d3b23882e0e1", + "rev": "f8d8d872bb319f640d5177dad5fbf01f7a16d7d0", "type": "github" }, "original": { @@ -1350,11 +1350,11 @@ "rust-overlay": "rust-overlay_3" }, "locked": { - "lastModified": 1729555214, - "narHash": "sha256-z58uNzWmrJw8UmDzsGR9BzCnKpr48FNoN4sqhLAUcfg=", + "lastModified": 1731426133, + "narHash": "sha256-u4XwZd1voL5pKJQKmHKuepycdM8SfDaGmQhGGVkVQK0=", "ref": "refs/heads/master", - "rev": "215778e9c430d8fae9171719f80a3a6d63a59e55", - "revCount": 218, + "rev": "31244ea8a805065f2596d8ed476a9547444c80c5", + "revCount": 227, "type": "git", "url": "https://git.joshuabell.xyz/nvim" }, @@ -1451,11 +1451,11 @@ ] }, "locked": { - "lastModified": 1729218602, - "narHash": "sha256-KDmYxpkFWa0Go0WnOpkgQOypVaQxbwgpEutET5ey1VQ=", + "lastModified": 1731378398, + "narHash": "sha256-a0QWaiX8+AJ9/XBLGMDy6c90GD7HzpxKVdlFwCke5Pw=", "owner": "oxalica", "repo": "rust-overlay", - "rev": "9051466c82b9b3a6ba9e06be99621ad25423ec94", + "rev": "0ae9fc2f2fe5361837d59c0bdebbda176427111e", "type": "github" }, "original": { diff --git a/hosts/ragenix.nix b/hosts/ragenix.nix index 8edca05..9232cea 100644 --- a/hosts/ragenix.nix +++ b/hosts/ragenix.nix @@ -61,6 +61,10 @@ file = /${settings.secretsDir}/nix2l002.age; owner = settings.user.username; }; + nix2lio = { + file = /${settings.secretsDir}/nix2lio.age; + owner = settings.user.username; + }; }; }; } diff --git a/secrets/nix2lio.age b/secrets/nix2lio.age new file mode 100644 index 0000000..b3fc3f0 --- /dev/null +++ b/secrets/nix2lio.age @@ -0,0 +1,36 @@ +-----BEGIN AGE ENCRYPTED FILE----- +YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IHNzaC1lZDI1NTE5IDd6MzN5USA0ZlJL +OGxtL2lxcjlQcWFQNld0UThybzF1aUlMMjloNm41UWR0SUx1YWc0CmQzWkkxdmNS +UVdPaFdyTTR5RFdKRkJxVkMxdHhDRFIzd1JHd0FjTUUxakkKLT4gc3NoLWVkMjU1 +MTkgSmh2TCtRIFQ4NlNLeDkxQWQyVXR4dGo1b2VJVlpKeHhwdjJNMERBQnREOFo4 +d0l2MzQKZXFrVHEzYXZ3anRQWWUwQjZubDYvSTgvbDFNUytjdVpNYStaQ0Y5dDlx +WQotPiBzc2gtZWQyNTUxOSBTcENqQlEgdFZ5cmFZNms2WUM0T0l6eWlkUDNhNkRs +Q29VWnBJQlp0VzByNVpNNzloNApEZTgzRm8zakp2VVcrcExhZXd0alQxaXIxTG8y +dGptNitKcE1MMUU1eXNVCi0+IHNzaC1lZDI1NTE5IEJZS0crdyBqR0pYSG1rSVFs +TE9oc2h2WklWTHlQNlp1NUpFRW9OTmEzSjUvZzk4VFU0ClZ0KzhrRi94a0dWNFlv +NnFpdmoyZy9oS3FPYjMrRUc4ay9yYStZYytPWEkKLT4gc3NoLWVkMjU1MTkgWHpm +bWFRIFFadlBxZktjTkxUQVAvZ3VjNTBYcDdKbHpqNU1pd1h6OThReC9uQkZlVzgK +TnVEb2gxQURsdXkyZmhWbzUvRnNyTitWRWpteklUUVBoR3JXeE9WL3JRRQotPiBz +c2gtZWQyNTUxOSBSNSt4Zncgb0lzTEtUb2pRNWEydk9aSnVESWE5ZmloQVhWVmk4 +MXRoVW9VQjN1NUR5WQpMR2tKSXVhdFRHd01rZlBWaWhKOXNLM2VvemMrVWNWMCtZ +QnlwVzN4TGpZCi0+IHNzaC1lZDI1NTE5IFJvWDVQUSBhRG1jTWlGUy9FUWdEVWJI +R1VsV2l2RWNLd2M3UXBqd0pPRk96VlhLMHhJCkhURHhXQjI2cXFwSEk5NUREWHZz +OGpRazBrVHNLTFl5by9uMis4ZUFqbm8KLT4gc3NoLWVkMjU1MTkgRjRiYjhnIFJ5 +Y1Q4dUJkUGNSYmZxejJ4WVVtaUNwYS9mK3A5WlV5SkVBUXFEWEFnaFUKeHkxNU9L +ZFJXbU0rNXZzRjJCUFpCSXh0bjh5M2dpMXJJczdHNzNHMS82WQotPiBzc2gtZWQy +NTUxOSB3ZHJaSkEgWUJqekhudHpnOXZWc1BlY0IwUzBCUmdYT09UZWlBR1BoeC9I +TmRqbXRYVQpjVVdHczViV1pqdHVkK1BUNThaZlVMY0xpY2Y4TXpZQ1VOOWE0VUk5 +RGJzCi0+IHotZ3JlYXNlIE9aZ2IlQiYiIDkKL2J2NjFaZzdLbmc4d1M0RkpmYnlO +azFyM2xoZGI3ODU1MHdwaWVReU8zd2hJOGpwWjVHZUF4bE9uN3RyR1dDOApibWRH +YXBUb3NjL1RiT0F6ZHI2SnM4dmxpTnJmbXdTRnRZRGEKLS0tIFdrVHlWU3lwVTVL +SnVSdGt0VGZqTmFTVzdLbzZ6Z094VWxZT2hxbDZDZ0UKuVCJiqU4tfF5kySR0XFs +ZEDsvKzt3Bw3LVsxvrD58mVl6FdtSTlG9+F/9M5DW0PWWZjOAwJNlgDIbULkyhV/ +yu71kHfQux6U8qUXHxC+dVuncCTb0EGqy1v//swe7LJg8EE+v30I55VWVcsgxkMd +m2BJS1svEH3YYcl/D+HiKimXbjGHVIAlSuRqRXuSMBhRyuemJ1jl3zmbcHP6P0t6 +8usYJrhXh1HmxXO5DyIKWWeZnwepvNR0A++Q1y9QswQlypU56KhkNLP4EGLG/O/j +85bSIdnUyKTpgmulLVSUi1R376KBYpOm2hgw3HPC0lXTe20zOQDaWRInw5VzvkgC +v8DgK/eHcoZ2M0Wnfx9oxG9BW6tlIpgBshjPlqSlyi3SJ0Dmp60CVh5xsdc1xT8d +ym/16ot1CgSvRyK2SyNDNy/ANNEO1zK0zbhPXR0pHyaaf0/jhg56pxYxlXDadB9H +TPNBrBOWB8YbKgo8Kx7jpUkg0qomNrms3da5pR+/MMVP9myMFFWf15avflrmReXj +iUa+T1QrjmPUL6QJeJcN1BToCandCm5+Fqv6MIxh78M= +-----END AGE ENCRYPTED FILE----- diff --git a/secrets/secrets.nix b/secrets/secrets.nix index b87a9e4..b2e4211 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -59,4 +59,7 @@ in "nix2l002.age" = { inherit publicKeys; }; + "nix2lio.age" = { + inherit publicKeys; + }; } diff --git a/users/_common/home_manager/ssh.nix b/users/_common/home_manager/ssh.nix index f0e6953..8479349 100644 --- a/users/_common/home_manager/ssh.nix +++ b/users/_common/home_manager/ssh.nix @@ -16,6 +16,16 @@ port = 3032; }; # PERSONAL DEVICES + "lio" = { + identityFile = age.secrets.nix2lio.path; + hostname = "10.20.40.104"; + user = "josh"; + }; + "lio_" = { + identityFile = age.secrets.nix2lio.path; + hostname = "10.12.14.116"; + user = "josh"; + }; "joe" = { identityFile = age.secrets.nix2joe.path; hostname = "10.20.40.102"; @@ -31,11 +41,11 @@ hostname = "10.20.40.180"; user = "joshua.bell"; localForwards = [ - { - bind.port = 3000; - host.port = 3000; - host.address = "localhost"; - } + # { + # bind.port = 3000; + # host.port = 3000; + # host.address = "localhost"; + # } { bind.port = 3002; host.port = 3002; diff --git a/users/josh/by_hosts/lio/nix_modules/TODO_SSH_AUTHORIZED b/users/josh/by_hosts/lio/nix_modules/TODO_SSH_AUTHORIZED deleted file mode 100644 index e69de29..0000000 diff --git a/users/josh/by_hosts/lio/nix_modules/ssh_authorized.nix b/users/josh/by_hosts/lio/nix_modules/ssh_authorized.nix new file mode 100644 index 0000000..0ce5ab1 --- /dev/null +++ b/users/josh/by_hosts/lio/nix_modules/ssh_authorized.nix @@ -0,0 +1,6 @@ +{ settings, ... }: +{ + users.users.${settings.user.username}.openssh.authorizedKeys.keys = [ + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJN2nsLmAlF6zj5dEBkNSJaqcCya+aB6I0imY8Q5Ew0S nix2lio" + ]; +}