Add strangerbot to allowed signers

2023-05-15 23:31:50 -04:00 · 2023-05-15 23:31:50 -04:00 · aa71899e97
parent 3a5f177b24
commit aa71899e97
1 changed files with 13 additions and 6 deletions
--- a/info/ssh-keys.nix
+++ b/info/ssh-keys.nix
@ -1,4 +1,4 @@
-rec {
+with builtins; rec {
  keys = {
    # yubikey ssh key
    "yubikey" = {
@ -46,10 +46,17 @@ rec {
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICILeBcpPVs12pDnsOPyDVwnwReCbrqzXMF+cV5bWCCa nathan@fusion";
    };
  };
-  list = map (x: x.key) (builtins.attrValues keys);
-  allowedSigners = builtins.concatStringsSep "\n" (map (x:
+  signingKeys = {
+    # Git automation bot
+    "strangerbot" = {
+      key =
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINC2cOHgeJaUfwp9DMX6oeIaSfD7pDKN3PUo2+6prC7N strangerbot@oracles";
+      emails = [ "bot@stranger.systems" ];
+    };
+  };
+  list = map (x: x.key) (attrValues keys);
+  allowedSigners = concatStringsSep "\n" (map (x:
    "${
-      builtins.concatStringsSep ","
-      (x.emails or [ "*@mccarty.io" "*@stranger.systems" ])
-    } ${x.key}") (builtins.attrValues keys));
+      concatStringsSep "," (x.emails or [ "*@mccarty.io" "*@stranger.systems" ])
+    } ${x.key}") ((attrValues keys) ++ (attrValues signingKeys)));
 }