diff options
| author | Gregor Kleen <gkleen@yggdrasil.li> | 2022-01-07 18:48:02 +0100 |
|---|---|---|
| committer | Gregor Kleen <gkleen@yggdrasil.li> | 2022-01-07 18:48:02 +0100 |
| commit | 3e96a4c5884e1f08ff30f6e67ccf655022242402 (patch) | |
| tree | d25866b46743616902c8716cc85d02875e12d5d4 | |
| parent | 858c716be333c423088628812d22303475bde5df (diff) | |
| download | nixos-3e96a4c5884e1f08ff30f6e67ccf655022242402.tar nixos-3e96a4c5884e1f08ff30f6e67ccf655022242402.tar.gz nixos-3e96a4c5884e1f08ff30f6e67ccf655022242402.tar.bz2 nixos-3e96a4c5884e1f08ff30f6e67ccf655022242402.tar.xz nixos-3e96a4c5884e1f08ff30f6e67ccf655022242402.zip | |
forward.vidhar
| -rw-r--r-- | accounts/gkleen@sif/ssh-hosts.nix | 16 | ||||
| -rw-r--r-- | accounts/gkleen@vidhar.nix | 8 |
2 files changed, 24 insertions, 0 deletions
diff --git a/accounts/gkleen@sif/ssh-hosts.nix b/accounts/gkleen@sif/ssh-hosts.nix index 339d085a..ed8e9a1a 100644 --- a/accounts/gkleen@sif/ssh-hosts.nix +++ b/accounts/gkleen@sif/ssh-hosts.nix | |||
| @@ -248,6 +248,22 @@ | |||
| 248 | { hostname = "vidhar.yggdrasil"; | 248 | { hostname = "vidhar.yggdrasil"; |
| 249 | identityFile = "~/.ssh/gkleen@sif.midgard.yggdrasil"; | 249 | identityFile = "~/.ssh/gkleen@sif.midgard.yggdrasil"; |
| 250 | }; | 250 | }; |
| 251 | "forward.vidhar" = | ||
| 252 | { hostname = "vidhar.yggdrasil"; | ||
| 253 | forwardAgent = true; | ||
| 254 | remoteForwards = [ | ||
| 255 | { host = { address = "/run/user/1000/gnupg/S.gpg-agent"; }; | ||
| 256 | bind = { address = "/run/user/1000/gnupg/S.gpg-agent"; }; | ||
| 257 | } | ||
| 258 | { host = { address = "/run/user/1000/gnupg/S.gpg-agent.extra"; }; | ||
| 259 | bind = { address = "/run/user/1000/gnupg/S.gpg-agent.extra"; }; | ||
| 260 | } | ||
| 261 | ]; | ||
| 262 | extraOptions = { | ||
| 263 | StreamLocalBindUnlink = "yes"; | ||
| 264 | ExitOnForwardFailure = "yes"; | ||
| 265 | }; | ||
| 266 | }; | ||
| 251 | "init.vidhar" = | 267 | "init.vidhar" = |
| 252 | { hostname = "10.141.0.1"; | 268 | { hostname = "10.141.0.1"; |
| 253 | user = "root"; | 269 | user = "root"; |
diff --git a/accounts/gkleen@vidhar.nix b/accounts/gkleen@vidhar.nix index eba25692..c73faa96 100644 --- a/accounts/gkleen@vidhar.nix +++ b/accounts/gkleen@vidhar.nix | |||
| @@ -10,5 +10,13 @@ | |||
| 10 | "command=\"${pkgs.unison}/bin/unison -server\",no-port-forwarding,no-X11-forwarding,no-pty,no-agent-forwarding,no-user-rc ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA4izEz5pEjJqFLeJewHCoqtskqA+olKZNEP1yZWK7Ui gkleen@sif" | 10 | "command=\"${pkgs.unison}/bin/unison -server\",no-port-forwarding,no-X11-forwarding,no-pty,no-agent-forwarding,no-user-rc ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA4izEz5pEjJqFLeJewHCoqtskqA+olKZNEP1yZWK7Ui gkleen@sif" |
| 11 | ]; | 11 | ]; |
| 12 | }; | 12 | }; |
| 13 | |||
| 14 | home-manager.users.${userName} = { | ||
| 15 | file = { | ||
| 16 | ".config/user-tmpfiles.d/gnupg.conf".text = '' | ||
| 17 | d /run/user/${config.users.users.${userName}.uid}/gnupg 0700 ${userName} ${config.users.users.${userName}.group} - | ||
| 18 | ''; | ||
| 19 | }; | ||
| 20 | }; | ||
| 13 | }; | 21 | }; |
| 14 | } | 22 | } |