2023-01-10 02:38:06 +01:00
|
|
|
{
|
2024-08-26 17:38:47 +02:00
|
|
|
pkgs,
|
|
|
|
|
outputs,
|
|
|
|
|
config,
|
|
|
|
|
lib,
|
|
|
|
|
...
|
|
|
|
|
}:
|
|
|
|
|
{
|
|
|
|
|
satellite.pilot.name = lib.mkDefault "adrielus";
|
2024-05-21 01:37:39 +02:00
|
|
|
|
|
|
|
|
sops.secrets.pilot_password = {
|
2024-01-31 20:03:00 +01:00
|
|
|
sopsFile = ../secrets.yaml;
|
|
|
|
|
neededForUsers = true;
|
|
|
|
|
};
|
2023-01-10 02:38:06 +01:00
|
|
|
|
|
|
|
|
users = {
|
|
|
|
|
# Configure users through nix only
|
|
|
|
|
mutableUsers = false;
|
|
|
|
|
|
2024-05-21 01:37:39 +02:00
|
|
|
users.pilot = {
|
|
|
|
|
inherit (config.satellite.pilot) name;
|
|
|
|
|
|
2024-07-08 03:18:36 +02:00
|
|
|
# This gets referenced in other parts of the config
|
|
|
|
|
uid = 1000;
|
|
|
|
|
|
2024-08-26 17:38:47 +02:00
|
|
|
# Adds me to some default groups, and creates the home dir
|
2023-05-28 02:00:10 +02:00
|
|
|
isNormalUser = true;
|
2023-01-12 20:49:08 +01:00
|
|
|
|
2023-12-12 14:32:06 +01:00
|
|
|
# Picked up by our persistence module
|
2024-05-21 01:37:39 +02:00
|
|
|
homeMode = "700";
|
2023-12-12 14:32:06 +01:00
|
|
|
|
2023-01-10 02:38:06 +01:00
|
|
|
# Add user to the following groups
|
|
|
|
|
extraGroups = [
|
2023-05-28 02:00:10 +02:00
|
|
|
"wheel" # Access to sudo
|
|
|
|
|
"lp" # Printers
|
|
|
|
|
"audio" # Audio devices
|
|
|
|
|
"video" # Webcam and the like
|
2023-07-06 21:34:24 +02:00
|
|
|
"network" # wpa_supplicant
|
2023-07-17 16:50:07 +02:00
|
|
|
"syncthing" # syncthing!
|
2023-01-10 02:38:06 +01:00
|
|
|
];
|
|
|
|
|
|
2024-05-21 01:37:39 +02:00
|
|
|
hashedPasswordFile = config.sops.secrets.pilot_password.path;
|
2024-01-31 20:03:00 +01:00
|
|
|
shell = pkgs.fish;
|
|
|
|
|
|
2024-08-26 17:38:47 +02:00
|
|
|
openssh.authorizedKeys.keyFiles = (import ./common.nix).authorizedKeys { inherit outputs lib; };
|
2023-01-12 20:49:08 +01:00
|
|
|
};
|
2023-01-10 02:38:06 +01:00
|
|
|
};
|
|
|
|
|
}
|
