tlaternet/tlaternet-server
1
0
Fork 0
Code Issues 9 Pull requests Releases Activity

config: Enable authorization through ssh agent #76

Manually merged
tlaternet merged 1 commit from tlater/ssh-auth into master 2022-11-05 18:02:18 +00:00
Conversation 0 Commits 1 Files changed 2 +10 -3
2 changed files with 10 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
configuration/default.nix
View file

@ -100,6 +100,15 @@
gatewayPorts = "yes"; gatewayPorts = "yes";
}; };
security = {
sudo.execWheelOnly = true;
pam = {
enableSSHAgentAuth = true;
services.sudo.sshAgentAuth = true;
};
};
services.nginx = { services.nginx = {
enable = true; enable = true;
recommendedTlsSettings = true; recommendedTlsSettings = true;

4
flake.nix
View file

@ -53,10 +53,8 @@
}; };
sshUser = "tlater"; sshUser = "tlater";
sshOpts = ["-t" "-p" "2222"]; sshOpts = ["-p" "2222" "-o" "ForwardAgent=yes"];
fastConnection = true; fastConnection = true;
# Currently broken, see https://github.com/serokell/deploy-rs/issues/78
magicRollback = false;
}; };
######### #########