blob: fb8e1f1bc66bf38fbf2f1318c62596d56ec59d25 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
|
{ config, lib, pkgs, ... }:
let
groupExists = grp: builtins.hasAttr grp config.users.groups;
groupsIfExist = builtins.filter groupExists;
in {
# Users are managed through this configuration. If a user is added
# manually, it will be removed on system activation.
users.mutableUsers = false;
users.groups.fcuny = { gid = 1000; };
users.users.fcuny = {
isNormalUser = true;
uid = 1000;
group = "fcuny";
home = "/home/fcuny";
shell = pkgs.fish;
extraGroups = groupsIfExist [
"docker"
"users"
"nas" # in order to access to files downloaded by transmission
"wheel" # `sudo` for the user.
"cdrom" # in order to read from the bluray
];
hashedPassword =
"$6$i.z1brxtb44JAEco$fDD2Izl.zRR9vBCB2VBKPScChGw38EEl7QEiBTJ/EwgP3oSL0X3ZHq0PJ.RtqzBsWTPUjl4F3MKOBMhnaAPr6.";
openssh.authorizedKeys.keys = [
# aptos
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIdlm/qoR/dnMjZhVSTtqFzkgN3Yf9eQ3pgKMiipg+dl"
# work
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINSWhXmnUplM+xltD0sYiJ6AsjkwHvbjTYLA7GHXHja9"
];
};
users.users.root = {
hashedPassword = null;
openssh.authorizedKeys.keys =
config.users.users.fcuny.openssh.authorizedKeys.keys;
};
}
|
