2 files changed, 24 insertions, 0 deletions
diff --git a/accounts/gkleen@sif/ssh-hosts.nix b/accounts/gkleen@sif/ssh-hosts.nix
index 339d085a..ed8e9a1a 100644
--- a/accounts/gkleen@sif/ssh-hosts.nix
+++ b/accounts/gkleen@sif/ssh-hosts.nix
@@ -248,6 +248,22 @@
    { hostname = "vidhar.yggdrasil";
      identityFile = "~/.ssh/gkleen@sif.midgard.yggdrasil";
    };
+  "forward.vidhar" =
+    { hostname = "vidhar.yggdrasil";
+      forwardAgent = true;
+      remoteForwards = [
+        { host = { address = "/run/user/1000/gnupg/S.gpg-agent"; };
+          bind = { address = "/run/user/1000/gnupg/S.gpg-agent"; };
+        }
+        { host = { address = "/run/user/1000/gnupg/S.gpg-agent.extra"; };
+          bind = { address = "/run/user/1000/gnupg/S.gpg-agent.extra"; };
+        }
+      ];
+      extraOptions = {
+        StreamLocalBindUnlink = "yes";
+        ExitOnForwardFailure = "yes";
+      };
+    };
  "init.vidhar" =
    { hostname = "10.141.0.1";
      user = "root";
diff --git a/accounts/gkleen@vidhar.nix b/accounts/gkleen@vidhar.nix
index eba25692..c73faa96 100644
--- a/accounts/gkleen@vidhar.nix
+++ b/accounts/gkleen@vidhar.nix
@@ -10,5 +10,13 @@
        "command=\"${pkgs.unison}/bin/unison -server\",no-port-forwarding,no-X11-forwarding,no-pty,no-agent-forwarding,no-user-rc ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA4izEz5pEjJqFLeJewHCoqtskqA+olKZNEP1yZWK7Ui gkleen@sif"
      ];
    };
+    home-manager.users.${userName} = {
+      file = {
+        ".config/user-tmpfiles.d/gnupg.conf".text = ''
+          d /run/user/${config.users.users.${userName}.uid}/gnupg 0700 ${userName} ${config.users.users.${userName}.group} -
+        '';
+      };
+    };
  };
 }

diff --git a/accounts/gkleen@sif/ssh-hosts.nix b/accounts/gkleen@sif/ssh-hosts.nix index 339d085a..ed8e9a1a 100644 --- a/accounts/gkleen@sif/ssh-hosts.nix +++ b/accounts/gkleen@sif/ssh-hosts.nix
@@ -248,6 +248,22 @@
248	{ hostname = "vidhar.yggdrasil";	248	{ hostname = "vidhar.yggdrasil";
249	identityFile = "~/.ssh/gkleen@sif.midgard.yggdrasil";	249	identityFile = "~/.ssh/gkleen@sif.midgard.yggdrasil";
250	};	250	};
		251	"forward.vidhar" =
		252	{ hostname = "vidhar.yggdrasil";
		253	forwardAgent = true;
		254	remoteForwards = [
		255	{ host = { address = "/run/user/1000/gnupg/S.gpg-agent"; };
		256	bind = { address = "/run/user/1000/gnupg/S.gpg-agent"; };
		257	}
		258	{ host = { address = "/run/user/1000/gnupg/S.gpg-agent.extra"; };
		259	bind = { address = "/run/user/1000/gnupg/S.gpg-agent.extra"; };
		260	}
		261	];
		262	extraOptions = {
		263	StreamLocalBindUnlink = "yes";
		264	ExitOnForwardFailure = "yes";
		265	};
		266	};
251	"init.vidhar" =	267	"init.vidhar" =
252	{ hostname = "10.141.0.1";	268	{ hostname = "10.141.0.1";
253	user = "root";	269	user = "root";


diff --git a/accounts/gkleen@vidhar.nix b/accounts/gkleen@vidhar.nix index eba25692..c73faa96 100644 --- a/accounts/gkleen@vidhar.nix +++ b/accounts/gkleen@vidhar.nix
@@ -10,5 +10,13 @@
10	"command=\"${pkgs.unison}/bin/unison -server\",no-port-forwarding,no-X11-forwarding,no-pty,no-agent-forwarding,no-user-rc ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA4izEz5pEjJqFLeJewHCoqtskqA+olKZNEP1yZWK7Ui gkleen@sif"	10	"command=\"${pkgs.unison}/bin/unison -server\",no-port-forwarding,no-X11-forwarding,no-pty,no-agent-forwarding,no-user-rc ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA4izEz5pEjJqFLeJewHCoqtskqA+olKZNEP1yZWK7Ui gkleen@sif"
11	];	11	];
12	};	12	};
		13
		14	home-manager.users.${userName} = {
		15	file = {
		16	".config/user-tmpfiles.d/gnupg.conf".text = ''
		17	d /run/user/${config.users.users.${userName}.uid}/gnupg 0700 ${userName} ${config.users.users.${userName}.group} -
		18	'';
		19	};
		20	};
13	};	21	};
14	}	22	}