summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGregor Kleen <gkleen@yggdrasil.li>2022-01-07 18:48:02 +0100
committerGregor Kleen <gkleen@yggdrasil.li>2022-01-07 18:48:02 +0100
commit3e96a4c5884e1f08ff30f6e67ccf655022242402 (patch)
treed25866b46743616902c8716cc85d02875e12d5d4
parent858c716be333c423088628812d22303475bde5df (diff)
downloadnixos-3e96a4c5884e1f08ff30f6e67ccf655022242402.tar
nixos-3e96a4c5884e1f08ff30f6e67ccf655022242402.tar.gz
nixos-3e96a4c5884e1f08ff30f6e67ccf655022242402.tar.bz2
nixos-3e96a4c5884e1f08ff30f6e67ccf655022242402.tar.xz
nixos-3e96a4c5884e1f08ff30f6e67ccf655022242402.zip
forward.vidhar
-rw-r--r--accounts/gkleen@sif/ssh-hosts.nix16
-rw-r--r--accounts/gkleen@vidhar.nix8
2 files changed, 24 insertions, 0 deletions
diff --git a/accounts/gkleen@sif/ssh-hosts.nix b/accounts/gkleen@sif/ssh-hosts.nix
index 339d085a..ed8e9a1a 100644
--- a/accounts/gkleen@sif/ssh-hosts.nix
+++ b/accounts/gkleen@sif/ssh-hosts.nix
@@ -248,6 +248,22 @@
248 { hostname = "vidhar.yggdrasil"; 248 { hostname = "vidhar.yggdrasil";
249 identityFile = "~/.ssh/gkleen@sif.midgard.yggdrasil"; 249 identityFile = "~/.ssh/gkleen@sif.midgard.yggdrasil";
250 }; 250 };
251 "forward.vidhar" =
252 { hostname = "vidhar.yggdrasil";
253 forwardAgent = true;
254 remoteForwards = [
255 { host = { address = "/run/user/1000/gnupg/S.gpg-agent"; };
256 bind = { address = "/run/user/1000/gnupg/S.gpg-agent"; };
257 }
258 { host = { address = "/run/user/1000/gnupg/S.gpg-agent.extra"; };
259 bind = { address = "/run/user/1000/gnupg/S.gpg-agent.extra"; };
260 }
261 ];
262 extraOptions = {
263 StreamLocalBindUnlink = "yes";
264 ExitOnForwardFailure = "yes";
265 };
266 };
251 "init.vidhar" = 267 "init.vidhar" =
252 { hostname = "10.141.0.1"; 268 { hostname = "10.141.0.1";
253 user = "root"; 269 user = "root";
diff --git a/accounts/gkleen@vidhar.nix b/accounts/gkleen@vidhar.nix
index eba25692..c73faa96 100644
--- a/accounts/gkleen@vidhar.nix
+++ b/accounts/gkleen@vidhar.nix
@@ -10,5 +10,13 @@
10 "command=\"${pkgs.unison}/bin/unison -server\",no-port-forwarding,no-X11-forwarding,no-pty,no-agent-forwarding,no-user-rc ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA4izEz5pEjJqFLeJewHCoqtskqA+olKZNEP1yZWK7Ui gkleen@sif" 10 "command=\"${pkgs.unison}/bin/unison -server\",no-port-forwarding,no-X11-forwarding,no-pty,no-agent-forwarding,no-user-rc ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA4izEz5pEjJqFLeJewHCoqtskqA+olKZNEP1yZWK7Ui gkleen@sif"
11 ]; 11 ];
12 }; 12 };
13
14 home-manager.users.${userName} = {
15 file = {
16 ".config/user-tmpfiles.d/gnupg.conf".text = ''
17 d /run/user/${config.users.users.${userName}.uid}/gnupg 0700 ${userName} ${config.users.users.${userName}.group} -
18 '';
19 };
20 };
13 }; 21 };
14} 22}