dotfiles/modules/services/ssh.nix

{ options, config, lib, pkgs, ... }:

with lib;
#with lib.my;
let
  cfg = config.modules.services.ssh;
in {
  options.modules.services.ssh = {
    enable = mkOption {
      type = types.bool;
      default = false;
      description = "Provide system SSH support though OpenSSH.";
    };

    requirePassword = mkOption {
      type = types.bool;
      default = true;
    };
  };

  config = mkIf cfg.enable {
    services.openssh = {
      enable = true;

      settings = {
        PasswordAuthentication = cfg.requirePassword;
        PermitRootLogin = "no";
      };
    };

    programs.gnupg.agent = {
      enable = true;
      enableSSHSupport = true;
    };
  };
}
Dotfiles 2022-01-11 18:44:40 +01:00			`{ options, config, lib, pkgs, ... }:`

			`with lib;`
			`#with lib.my;`
			`let`
			`cfg = config.modules.services.ssh;`
			`in {`
			`options.modules.services.ssh = {`
			`enable = mkOption {`
			`type = types.bool;`
			`default = false;`
			`description = "Provide system SSH support though OpenSSH.";`
			`};`
lucent-firepit shenanigans!! 2023-04-21 15:40:27 +02:00
some refactoring Co-authored-by: Jill Monoids <oatmealine@disroot.org> 2022-09-05 18:16:09 +02:00			`requirePassword = mkOption {`
			`type = types.bool;`
			`default = true;`
			`};`
Dotfiles 2022-01-11 18:44:40 +01:00			`};`

			`config = mkIf cfg.enable {`
some light refactoring 2022-04-23 03:01:00 +02:00			`services.openssh = {`
			`enable = true;`
ssh: fix deprecated warning 2023-02-25 13:50:15 +01:00
			`settings = {`
			`PasswordAuthentication = cfg.requirePassword;`
			`PermitRootLogin = "no";`
			`};`
some light refactoring 2022-04-23 03:01:00 +02:00			`};`
dark-firepit removed. no more crisises 2023-04-24 23:43:34 +02:00
some refactoring Co-authored-by: Jill Monoids <oatmealine@disroot.org> 2022-09-05 18:16:09 +02:00			`programs.gnupg.agent = {`
			`enable = true;`
			`enableSSHSupport = true;`
			`};`
Dotfiles 2022-01-11 18:44:40 +01:00			`};`
			`}`