patrick/nix-config
1
1
Fork 0
Code Issues Pull requests Projects Wiki Activity

fix: switched passwd encryption method to prevent user logout if agenix

Browse source 
fails
This commit is contained in:
Patrick Großmann 2023-06-02 14:53:17 +09:00
parent fc87ccaa12
commit 4fe4f4d5a2
Signed by: patrick
GPG key ID: 451F95EFB8BECD0F
5 changed files with 2 additions and 28 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
secrets/patrick.passwd.age
View file

@ -1,12 +0,0 @@
age-encryption.org/v1
-> X25519 Ub9kushFyUiGgqBg6EELrG3RqaMyuIl5TclGS4og5jw
qTidQ54jNLQ8ge4q6gnB61yg59fxf20RE/5j0kc/LeU
-> piv-p256 XTQkUA A+pbwPwiymxHhE6uLkaUi0KzPt/1zkY5iTXLAeVeoLPZ
x+nX9T7RJgeShnFbGOeYUp5DsDcYIlfQQF+1YNMAvrY
-> piv-p256 ZFgiIw A5aXsAs/josvuRxRl9RUyRpOIECEsu0DPYO4FO2rqguv
Wvh4Fwl5gcsbp8OCUkXoqFGYW+O+lG1g1E3s4zGQmmY
-> kG['(-grease
pwvfbNEpRgk5flUMrx/8rIefRNbC+8pntHmoJD0CUM8rU7rX53OGyXiwrO42yEeO
lzXqzf9KJjok3Iv1TBhmehWoNbyPanX/hFR0xgtSIWfkcYptqw
--- B5u7pwgmQOm6dmLtv9yiVRe35to0xqw0nTLyXWzmym4
XL1†{ð6OÊC…póEHÕ<ƒG¹PÛW­S¿ã±Õi\á9-…xûë…ZÝ%suöúN9í~3¾óLÿ³'Œªv[‡ðßI÷Ò4ÁÁ&»b <>ÖÃýÜWÉ%çÍ3k…H„

12
secrets/root.passwd.age
View file

@ -1,12 +0,0 @@
age-encryption.org/v1
-> X25519 b/8FJSZrQnmmZAa3pd5+S6ny85tDC26v9Mmv4uo3xEI
aObTeesKru9H65F1EXO//7cwxqZ3xRmWN4WPAK33y0A
-> piv-p256 XTQkUA ArgnRrNbgtg95zsDDvIA6rRUDodnPHJIEwRYGXmwx4XW
jqM/jcOLVKallUn7eHXDO9zyWqHNSrZau+qNV8l+Wx8
-> piv-p256 ZFgiIw Ajvy6fO4GytAvZCS38h2wjKghK/XRaPu97QuL07bdiYz
2HBGTQtIiktiAujhGfsM3nPu3hiRkJJKLHF3XxW6yCI
-> ikUP2{-grease kS(OEf]-
qyzIhVtJfVroeCQhEnB290ffq1GNZQwVzL+7aU2lqStVhXdP5Y1sCJoo8YlHjt7c
lZu5rKe2cosKjVZcORyzv4A
--- sYEWTZSkZ9a3zdQs9BDej9+wdvFUJbkSjUGWfWFOm7A
¸Ó«"¢G×Uv®¿DG­ êyè”q³ÙNŠÓE^/ôÙ»uÅ%ºÉq2ad<61>ÇXÎ<58>ƒž+û Òý°ˆ€<äü$ z¨»§J^šŠLe;]Fu ø4‰^÷í±òªÅW¬axhWX^ ú

BIN
secrets/secrets.nix.age Normal file
View file

Binary file not shown.

3
users/patrick/default.nix
View file

@ -9,7 +9,6 @@
imports = [
../../hosts/common/graphical/hyprland.nix
];
rekey.secrets.patrick.file = ../../secrets/patrick.passwd.age;
users.users.patrick = {
shell = pkgs.zsh;
@ -18,7 +17,7 @@
createHome = true;
extraGroups = ["wheel" "audio" "video" "input"];
group = "patrick";
passwordFile = config.rekey.secrets.patrick.path;
hashedPassword = config.secrets.secrets.global.users.patrick.passwordHash;
};
users.groups.patrick.gid = config.users.users.patrick.uid;

3
users/root/default.nix
View file

@ -4,14 +4,13 @@
impermanence,
...
}: {
rekey.secrets.root.file = ../../secrets/root.passwd.age;
users.users.root = {
shell = pkgs.zsh;
openssh.authorizedKeys.keys = [
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDZixkix0KfKuq7Q19whS5FQQg51/AJGB5BiNF/7h/LM"
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHxD4GOrwrBTG4/qQhm5hoSB2CP7W9g1LPWP11oLGOjQ"
];
passwordFile = config.rekey.secrets.root.path;
hashedPassword = config.secrets.secrets.global.users.root.passwordHash;
};
home-manager.users.root = {
imports = [