System/info/ssh-keys.nix

with builtins; rec {
  keys = {
    # yubikey ssh key
    "yubikey" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILRs6zVljIlQEZ8F+aEBqqbpeFJwCw3JdveZ8TQWfkev cardno:000615938515";
    };
    # levitation ssh key
    "levitation" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIG0zeLTlg++shIYcqxksDVkTtHS3MIvlqPIIW+9pufQa nathan@levitation";
    };
    # WSL key
    "wsl" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGXEV5lvLQ1CcPuJANv5AiYxtcRFEYXD5nODCazWnYC5 nathan@mccarty.io";
    };
    # Phone key
    "phone" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFR0zpmBCb0iEOeeI6SBwgucddNzccfQ5Zmdgib5iSmF nix-on-droid@localhost";
    };
    # Tablet key
    "tablet" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKltqneJjfdLjOvnWQC2iP7hP7aTYkURPiR8LFjB7z87 nix-on-droid@localhost";
    };
    # Macbook key
    "extremophile" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPLIZC4A4OhpTvfoL5jeMb1Ong9CwZ/URCYZL6y4Gp7b nathan@extremophile.local";
    };
    # vm key
    "productivity-vm" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMgtdTJThr5/vfUswQb3ee6A++W1OxAOGFQJTE8xDuHv nathan@productivity-vm";
    };
    # oracles key
    "oracles" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAj6He0uDnJAZsfywoUwOSAnxqpbO9UnfcAV78a1SUGa nathan@oracles";
    };
    # fusion key
    "fusion" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICILeBcpPVs12pDnsOPyDVwnwReCbrqzXMF+cV5bWCCa nathan@fusion";
    };
    # pendulum key
    "pendulum" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICIDzy3m10s1sciUCfT1B/IzHeyOenHBxp47jkVrhBfm nathan@pendulum";
    };
  };
  signingKeys = {
    # Git automation bot
    "strangerbot" = {
      key =
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINC2cOHgeJaUfwp9DMX6oeIaSfD7pDKN3PUo2+6prC7N strangerbot@oracles";
      emails = [ "bot@stranger.systems" ];
    };
  };
  list = map (x: x.key) (attrValues keys);
  allowedSigners = concatStringsSep "\n" (map (x:
    "${
      concatStringsSep "," (x.emails or [ "*@mccarty.io" "*@stranger.systems" ])
    } ${x.key}") ((attrValues keys) ++ (attrValues signingKeys)));
}
Add strangerbot to allowed signers 2023-05-15 23:31:50 -04:00			`with builtins; rec {`
Refactor ssh keys 2023-04-26 01:18:27 -04:00			`keys = {`
			`# yubikey ssh key`
Generate git allowed_signers file 2023-05-01 18:00:17 -04:00			`"yubikey" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILRs6zVljIlQEZ8F+aEBqqbpeFJwCw3JdveZ8TQWfkev cardno:000615938515";`
			`};`
Switch levitation over to ssh signing 2023-05-01 17:27:46 -04:00			`# levitation ssh key`
Generate git allowed_signers file 2023-05-01 18:00:17 -04:00			`"levitation" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIG0zeLTlg++shIYcqxksDVkTtHS3MIvlqPIIW+9pufQa nathan@levitation";`
			`};`
Refactor ssh keys 2023-04-26 01:18:27 -04:00			`# WSL key`
Generate git allowed_signers file 2023-05-01 18:00:17 -04:00			`"wsl" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGXEV5lvLQ1CcPuJANv5AiYxtcRFEYXD5nODCazWnYC5 nathan@mccarty.io";`
			`};`
Refactor ssh keys 2023-04-26 01:18:27 -04:00			`# Phone key`
Generate git allowed_signers file 2023-05-01 18:00:17 -04:00			`"phone" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFR0zpmBCb0iEOeeI6SBwgucddNzccfQ5Zmdgib5iSmF nix-on-droid@localhost";`
			`};`
Refactor ssh keys 2023-04-26 01:18:27 -04:00			`# Tablet key`
Generate git allowed_signers file 2023-05-01 18:00:17 -04:00			`"tablet" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKltqneJjfdLjOvnWQC2iP7hP7aTYkURPiR8LFjB7z87 nix-on-droid@localhost";`
			`};`
Refactor ssh keys 2023-04-26 01:18:27 -04:00			`# Macbook key`
Generate git allowed_signers file 2023-05-01 18:00:17 -04:00			`"extremophile" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPLIZC4A4OhpTvfoL5jeMb1Ong9CwZ/URCYZL6y4Gp7b nathan@extremophile.local";`
			`};`
Refactor ssh keys 2023-04-26 01:18:27 -04:00			`# vm key`
Generate git allowed_signers file 2023-05-01 18:00:17 -04:00			`"productivity-vm" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMgtdTJThr5/vfUswQb3ee6A++W1OxAOGFQJTE8xDuHv nathan@productivity-vm";`
			`};`
Add keys 2023-05-13 16:59:27 -04:00			`# oracles key`
			`"oracles" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAj6He0uDnJAZsfywoUwOSAnxqpbO9UnfcAV78a1SUGa nathan@oracles";`
			`};`
			`# fusion key`
			`"fusion" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICILeBcpPVs12pDnsOPyDVwnwReCbrqzXMF+cV5bWCCa nathan@fusion";`
			`};`
Update ssh settings with pendulum 2023-06-04 10:28:40 -04:00			`# pendulum key`
			`"pendulum" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICIDzy3m10s1sciUCfT1B/IzHeyOenHBxp47jkVrhBfm nathan@pendulum";`
			`};`
Refactor ssh keys 2023-04-26 01:18:27 -04:00			`};`
Add strangerbot to allowed signers 2023-05-15 23:31:50 -04:00			`signingKeys = {`
			`# Git automation bot`
			`"strangerbot" = {`
			`key =`
			`"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINC2cOHgeJaUfwp9DMX6oeIaSfD7pDKN3PUo2+6prC7N strangerbot@oracles";`
			`emails = [ "bot@stranger.systems" ];`
			`};`
			`};`
			`list = map (x: x.key) (attrValues keys);`
			`allowedSigners = concatStringsSep "\n" (map (x:`
Generate git allowed_signers file 2023-05-01 18:00:17 -04:00			`"${`
Add strangerbot to allowed signers 2023-05-15 23:31:50 -04:00			`concatStringsSep "," (x.emails or [ "@mccarty.io" "@stranger.systems" ])`
			`} ${x.key}") ((attrValues keys) ++ (attrValues signingKeys)));`
Refactor ssh keys 2023-04-26 01:18:27 -04:00			`}`