Refactor ssh keys

2023-04-26 01:18:27 -04:00 · 2023-04-26 01:18:27 -04:00 · 94a6643fc4
parent c06cd8034e
commit 94a6643fc4
2 changed files with 27 additions and 13 deletions
--- a/info/ssh-keys.nix
+++ b/info/ssh-keys.nix
@ -0,0 +1,23 @@
+{ config, lib, pkgs }: rec {
+  keys = {
+    # yubikey ssh key
+    "yubikey" =
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILRs6zVljIlQEZ8F+aEBqqbpeFJwCw3JdveZ8TQWfkev cardno:000615938515";
+    # WSL key
+    "wsl" =
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGXEV5lvLQ1CcPuJANv5AiYxtcRFEYXD5nODCazWnYC5 nathan@mccarty.io";
+    # Phone key
+    "phone" =
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFR0zpmBCb0iEOeeI6SBwgucddNzccfQ5Zmdgib5iSmF nix-on-droid@localhost";
+    # Tablet key
+    "tablet" =
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKltqneJjfdLjOvnWQC2iP7hP7aTYkURPiR8LFjB7z87 nix-on-droid@localhost";
+    # Macbook key
+    "extremophile" =
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPLIZC4A4OhpTvfoL5jeMb1Ong9CwZ/URCYZL6y4Gp7b nathan@extremophile.local";
+    # vm key
+    "productivity-vm" =
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMgtdTJThr5/vfUswQb3ee6A++W1OxAOGFQJTE8xDuHv nathan@productivity-vm";
+  };
+  list = builtins.attrValues keys;
+}
--- a/modules/linux/user.nix
+++ b/modules/linux/user.nix
@ -1,5 +1,7 @@
 { config, lib, pkgs, ... }:
-let nc = config.nathan.config;
+let
+  nc = config.nathan.config;
+  ssh = import ../../info/ssh-keys.nix { };
 in with lib; {
  config = mkMerge [
    {
@ -32,18 +34,7 @@ in with lib; {
            ];
            hashedPassword =
              "$6$ShBAPGwzKZuB7eEv$cbb3erUqtVGFo/Vux9UwT2NkbVG9VGCxJxPiZFYL0DIc3t4GpYxjkM0M7fFnh.6V8MoSKLM/TvOtzdWbYwI58.";
-            openssh.authorizedKeys.keys = [
-              # yubikey ssh key
-              "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILRs6zVljIlQEZ8F+aEBqqbpeFJwCw3JdveZ8TQWfkev cardno:000615938515"
-              # WSL key
-              "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGXEV5lvLQ1CcPuJANv5AiYxtcRFEYXD5nODCazWnYC5 nathan@mccarty.io"
-              # Phone key
-              "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFR0zpmBCb0iEOeeI6SBwgucddNzccfQ5Zmdgib5iSmF nix-on-droid@localhost"
-              # Tablet key
-              "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKltqneJjfdLjOvnWQC2iP7hP7aTYkURPiR8LFjB7z87 nix-on-droid@localhost"
-              # Macbook key
-              "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPLIZC4A4OhpTvfoL5jeMb1Ong9CwZ/URCYZL6y4Gp7b nathan@extremophile.local"
-            ];
+            openssh.authorizedKeys.keys = ssh.list;
          })
        ];
      };