diff options
Diffstat (limited to 'profiles/user.nix')
-rw-r--r-- | profiles/user.nix | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/profiles/user.nix b/profiles/user.nix new file mode 100644 index 0000000..ee29bad --- /dev/null +++ b/profiles/user.nix @@ -0,0 +1,50 @@ +{ + pkgs, + lib, + config, + inputs, + ... +}: { + imports = [ + inputs.home-manager.nixosModules."home-manager" + inputs.agenix.nixosModules + ]; + config = { + users.users.tzlil = { + isNormalUser = true; + description = "Me"; + extraGroups = ["wheel"]; + packages = [pkgs.git]; + shell = pkgs.fish; + hashedPassword = "$5$itsrHkJPRhLdik0x$RxCXp8KmiPVa1dMQhHMQsjLgvx27MmeQ9ZVybV8bzE8"; + openssh.authorizedKeys.keys = [ + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMDyzrs9sbstv3KFK5FV8qYlSknnEy8Cn+qch4dJLmHA" + ]; + }; + + nix.settings.allowed-users = ["root" "tzlil"]; + nix.settings.trusted-users = ["root" "tzlil"]; + + age.secrets.id_ed25519 = { + file = ../secrets/id_ed25519.age; + mode = "600"; + owner = "tzlil"; + group = "tzlil"; + }; + + home-manager.nixosModules.home-manager = { + home-manager.useGlobalPkgs = true; + home-manager.useUserPackages = true; + home-manager.backupFileExtension = "backup"; + }; + + home-manager.users.tzlil = {pkgs, ...}@hm: { + home = { + stateVersion = "22.05"; + username = "tzlil"; + homeDirectory = "/home/tzlil"; + }; + programs.ssh.matchBlocks."*".identityFile = config.age.secrets."id_ed25519".path; + }; + }; +} \ No newline at end of file |