18 lines
441 B
Nix
18 lines
441 B
Nix
{ config, ... }:
|
|
{
|
|
sops.secrets.guacamole_users.sopsFile = ../../secrets.yaml;
|
|
satellite.nginx.at.guacamole.port = 8443; # default tomcat port
|
|
|
|
services.guacamole_server = {
|
|
enable = true;
|
|
userMappingXml = config.sops.secrets.guacamole_users.path;
|
|
};
|
|
|
|
services.guacamole-client = {
|
|
enable = true;
|
|
};
|
|
|
|
# Allow ssh-ing using the provided key
|
|
users.users.pilot.openssh.authorizedKeys.keyFiles = [ ./ed25519.pub ];
|
|
}
|