From 3abc7fe9733808fdb381f657bd73c7f714a57122 Mon Sep 17 00:00:00 2001 From: Timothy DeHerrera Date: Sun, 15 Dec 2019 02:37:45 -0700 Subject: [PATCH] users#nrd: init ssh --- secrets/github | Bin 0 -> 1918 bytes secrets/gitlab | Bin 0 -> 1788 bytes users/nrd.nix | 42 ++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 42 insertions(+) create mode 100644 secrets/github create mode 100644 secrets/gitlab diff --git a/secrets/github b/secrets/github new file mode 100644 index 0000000000000000000000000000000000000000..6f90dc647984f3577f08963e1dd4b04a15c9cf6b GIT binary patch literal 1918 zcmV-^2Z8tiM@dveQdv+`0PYl*H!c;YO(DG1dU7p1f=i9P{qbEfs2iXVCiQB0OR`H< z$dQ2W58IebG_CJ8%?E?3J2Fb|uJ>XLr>aD;kap-{0J4M@3WZxq_1OG-i15-XQWw#V zD^<5Ko4~%biPQ@ZBeOwO>!2JSmqqr$MwH}Z`#-sKghUcCtpFt79BhwHduAv{^|$`t z7Li2*9KKOGlBCcGO}wa9dGr1-AvdeT4#!}bY;&>3cuzqTs*zv5dPI}0nhTn;N6 zPGBrdl>K?+qX1w#9eDrZNU$@4p`u@a%;!9K**pqO+Tq}C0M^o|n$+O_xb`lk#X|Zq zPUI5Z%(TjYyNq!Es&U55A>M-UyD*lVfE?aAJ5U*ZsO375WMvmagO*0oQ@zPfY>ryY z9r5wD`=*fS@>kNX{|A9a+Fega#D+<7QC~+p+%Ab*hrBxCkqG+PXkiTq&~OGHv)XVg zNeDGXn|hHe(K`Wi(up?a;j0N6*oe%MX>O2+g%a1u2?DwqDKy}Qp5dRhcj~jzitK_M z1dV%zC&K`l7?i?Vs|UKo=KGtf(JmttPc(zlXYI&2dGMgj5h@I8fV3k;oOnunv>BAS zW|?+!F~7U>jDR%mE>pv>n?@GA<}+)b&4wfzhr}o2$GS95Oq0xW8fLHP)BaYBfWj_n zR%+fr8fLu;lU9d+8;!SVurp=>IpKaQ;%WgEHpFjR7^@sYW zLlW~ty|}xA&4#Lh3?#)F>HNtF(rjpC=Q^xCyI5_fDY=?jYBky=j8|;Z7nFSaRbw{3 z+EZmeM^gc9o^%#Qu(A`5GWM0vf8XrXTC8Ze0PugU6>_x`7YM8sqRB!S{ZZCxW;;{2 zs^Xpg?Cn`hD4I8~>+hu4D6XW_|LAScfG&%OrcB^&LC?x&{G>AYV19t<*;r zCrPAhVMn9EYv+c^1ClUO0S2ULorOzcVN;f%B`)!&Vpc0)jzWW9Fe9KmeYj0~S2n3t zJZ2WbSuX_Ce#2;p)9NAM&ibOo?@c;+fzP@> zT~)FWOmG>=)&=Z6zY{-L2o z7ri?`!MBh2Isb{@5o|kX-Ec`EB_w=le*P`676nLWQkqV7j6ET*8@mCcY$;?P0^%-98Ir*)Tok55nWc(d&WR zZ9z11ag8q!Wa(!DMLN66>X^j80dp|^<_t73O6O6&=NVwx-(&~t{#^%6Ebd^8=L>{Z z>xqCtoW1i~Ll;+0*y>BtW>`!ITn2^0#8QSw+DXok+(^D5r?^%2`P$z@i!dz{Ql|3_B(>4fGL|YVYLx)uVOdaR?@tveTewL0PX=OUZUFE z^N-IU@dDwM^bHKFq#fldWu>SV9QKzV@nH04So99Not>_6a6=4bfig@k0+nD)`0^DW z6-p`U>Gytic?ku=sHpY4P`%u!QYe1_g*)ZfvEj6AIWvO6)VBOm6*(UFzyK;_x@9l{ za8!r(YU=`B0UQ2HDc6jO%2G)%$^GCQ8jwG9CCaY^;tWIDs$PaFKc*ywE7JS7%cuOk z!Tgfka9)&!{ey*!$CbV;&>bt@_6qhYU*ttk;NJfeBp~2!S_`Gog@-XI1MG;0b|PCsN5b*9^L6E7|Nl}k^C zFu6o})=md?fMI~q+$6_aGoo3=&|}wkJki9_rH)Ts1}eu)7t*4R{H^nDgY`^6)hwe^ z*jg5g71r>lmUCSvgyA}H`XU4ZxC3a3DoYdJ|E~|mWSm*3tI{W(j5^=t_=+$R6shu; zys-Vz@{Wk#jOMTWyVUGzgURfwHgN=fP^RvmDtYeT z#xBsfZ%fM@u4q${S}kY!_256xKY)zSxm$~u^l9)iKYY@?o%Vr+Jw?k-yUeCJSieAVZ1dF+r%$^P8pkE)nMn6%6FNTfG+yD+lOm4@7fx}! zuxzfjV3_9^$MgLyues+1A{J|6dQxXzX|1iU4@CU!2juv6G+mM!yB5k}yhhmvO{kjI zSu|O%7R2wJ9hwk3rAj*@`ar`1wYWNlb$r#fxatH)=6h>!sciE zB%~bw)IQQHSQRDR+H-|4A4|AI4|5J%^z^cd4&m0KSlnlIsFR(1E=(OUqlsCRb*Wue z>6fR;uQ{BZk82yeKEf`U6YYNQlWcXkVpb-iaQCOCH+54tG*-X5{ITTFItFcQDGW}# zs4cTgYIGt(8AmXI;5{7qA5`r{YqCFh7tYHraJ-$UfXfid1r(S87dos&&8r0hxisV< z>(AwhpaojSR@fOH=-%d*G6ylA5hxMlNsawinTQ4Qo-(`3jP%sW7GFvO%AI)NnHEp} zP&3_CX(#;f*DXo5=LB-bQF}izro7W`9F!3kWi->xC~Ev4c0$#?l2~3(-N}vai@|Tn zc2|BA_WU~l6MMTlzci8ZY)}M#PUn{sm&8Fmj3opST9GMi+a;=x@M!QHj-&kircOwQ zAJ(e|>Sgn28kP5}@ww5IeQB(;m9mf9mj13 zNqv$-2<;jj0Twa(WzKbvJqcYw%3gVwSzc8YZrc&*D!6=*ADu= zMj7i`1sXWtGW==weDtbb=8g%YkS2cDKYP@((~WQZJo(Q&5KA+0Ev-qoGok3uS=Sgl zrhETi73FX(^yN!MV?nP{QZRxbW3$Y3?U|6iJ4Q+0TLnE9>~fr)r2=#$Q2hOh8o-DR zrGAu<9GdCPwl@bmcHO?I@8^UNZCa?c)9SV$a;CMU4fbc%kKII;rcCpe2RGd*Sv_9b zp<`{ZO=zfv^Q9BDNtapPKV+y&%`rHUtrrm;X47e|BY4))*VtZlE4aRXTRUZ1>fs>j z7HkO^R9j3dbEH0AJ$0*_x8-emG0SHOGG!eLwho1kBoHDF5ApJFffPIfo~$1r@3mBt zY}T;Sw$M2)HWztK&o&IUR3i*z!X(`6N&s0ri0KRk{1hP)`oH*txWV1B_m5NrThs{0 eZ%U6;I)6G=^Poo0Q_iTw&Sy1YjHSomQx8y>wQF4f literal 0 HcmV?d00001 diff --git a/users/nrd.nix b/users/nrd.nix index 3fa4d6d..633be02 100644 --- a/users/nrd.nix +++ b/users/nrd.nix @@ -1,9 +1,14 @@ { lib, ... }: let + inherit (builtins) + toFile + ; + inherit (lib) fileContents ; + name = "Timothy DeHerrera"; in { @@ -48,6 +53,43 @@ in }; }; + programs.ssh = { + enable = true; + hashKnownHosts = true; + identitiesOnly = true; + + matchBlocks = let + githubKey = toFile "github" + (fileContents ../secrets/github); + + gitlabKey = toFile "gitlab" + (fileContents ../secrets/gitlab); + in + { + github = { + host = "github.com"; + identityFile = githubKey; + extraOptions = { + AddKeysToAgent = "yes"; + }; + }; + gitlab = { + host = "gitlab.com"; + identityFile = gitlabKey; + extraOptions = { + AddKeysToAgent = "yes"; + }; + }; + "gitlab.company" = { + host = "gitlab.company.com"; + identityFile = gitlabKey; + extraOptions = { + AddKeysToAgent = "yes"; + }; + }; + }; + }; + services.gng-agent = { enable = true; defaultCacheTtl = 1800;