about summary refs log tree commit diff
diff options
context:
space:
mode:
authorFranck Cuny <franck@fcuny.net>2022-09-17 12:00:49 -0700
committerFranck Cuny <franck@fcuny.net>2022-09-17 12:05:36 -0700
commit8ec29059f227c683eca3b19dacb68159b3eb9321 (patch)
tree4c03d6661b858236c7ee5046cfe23497daf7e647
parentfeat(tools/sendsms): build sendsms with nix via naersk (diff)
downloadworld-8ec29059f227c683eca3b19dacb68159b3eb9321.tar.gz
feat(home/git): sign commits with my ssh key
GitHub supports signing commits with a ssh key now (git has supported
this feature for a while but it was not yet available on GitHub).

More details at [1].

I used the steps documented in [2] for nix.

[1] https://github.blog/changelog/2022-08-23-ssh-commit-verification-now-supported/
[2] https://jeppesen.io/git-commit-sign-nix-home-manager-ssh/
-rw-r--r--home/git/default.nix4
1 files changed, 4 insertions, 0 deletions
diff --git a/home/git/default.nix b/home/git/default.nix
index fc368f7..04a4ce5 100644
--- a/home/git/default.nix
+++ b/home/git/default.nix
@@ -32,6 +32,10 @@ in
         branch.autosetuprebase = "remote";
         branch.sort = "authordate";
         commit.template = "${config.xdg.dataHome}/git/commit.template";
+        commit.gpgsign = true;
+        gpg.format = "ssh";
+        user.signingkey = "~/.ssh/fcuny_id_ed25519.pub";
+        gpg.ssh.allowedSignersFile = "${config.xdg.dataHome}/git/allowed_signers";
       };
       userName = "Franck Cuny";
       userEmail = "franck@fcuny.net";