33 lines
912 B
Nix
33 lines
912 B
Nix
{
|
|
lib,
|
|
inputs,
|
|
osConfig,
|
|
...
|
|
}:
|
|
let
|
|
inherit (osConfig.networking) hostName;
|
|
nixosHosts = inputs.self.lib.getNixosHosts osConfig.my.ips hostName lib;
|
|
nixosHostsMatch = lib.concatStringsSep " " nixosHosts;
|
|
in
|
|
{
|
|
home.file.".librewolf/.stignore".source = ../dotfiles/stignore;
|
|
programs.ssh = lib.mkIf osConfig.my.secureHost {
|
|
enable = true;
|
|
enableDefaultConfig = false;
|
|
matchBlocks = {
|
|
vps = {
|
|
hostname = osConfig.my.ips.vps;
|
|
user = "jawz";
|
|
port = 3456;
|
|
identityFile = osConfig.sops.secrets."private_keys/${hostName}".path;
|
|
};
|
|
"${nixosHostsMatch}" = {
|
|
user = "jawz";
|
|
identityFile = osConfig.sops.secrets."private_keys/${hostName}".path;
|
|
};
|
|
"${osConfig.my.servers.gitea.host} github.com gitlab.com bitbucket.org".identityFile =
|
|
osConfig.sops.secrets."git_private_keys/${hostName}".path;
|
|
};
|
|
};
|
|
}
|