nixos-config/configs/nixos/_users/admin/default.nix

# Mainly used for managing the installations with deploy-rs.
{ config, lib, pkgs, ... }:

let
  name = "admin";
in
{
  users.users.${name} = {
    description = "The administrator account for the servers.";
    isNormalUser = true;
    extraGroups = [ "wheel" ];
    useDefaultShell = true;
    openssh.authorizedKeys.keyFiles = [
      ../../../home-manager/foo-dogsquared/files/ssh-key.pub
      ../../../home-manager/foo-dogsquared/files/ssh-key-2.pub
      ../../ni/files/ssh-key.pub
    ];
  };

  # We're going passwordless, baybee!
  security.sudo.extraRules = [{
    users = [ name ];
    commands = [{
      command = "ALL";
      options = [ "NOPASSWD" ];
    }];
  }];

  security.doas.extraRules = [{
    users = [ name ];
    noPass = true;
  }];

  # This is also a trusted user for the Nix daemon.
  nix.settings.trusted-users = [ name ];

  # Allow the user to easily enter into several services such as the database
  # services to allowing some debugging.
  services.postgresql.ensureUsers = [{ inherit name; }];
  services.mysql.ensureUsers = [{ inherit name; }];
}
users/admin: make the account passwordless 2022-12-13 01:19:48 +00:00			`# Mainly used for managing the installations with deploy-rs.`
users/admin: init This is the user to be used for managing installations with deploy-rs but it is also the main user for servers. 2022-11-25 13:25:40 +00:00			`{ config, lib, pkgs, ... }:`

users/admin: add trust to more applications 2022-12-04 23:17:57 +00:00			`let`
			`name = "admin";`
			`in`
users/admin: init This is the user to be used for managing installations with deploy-rs but it is also the main user for servers. 2022-11-25 13:25:40 +00:00			`{`
users/admin: add trust to more applications 2022-12-04 23:17:57 +00:00			`users.users.${name} = {`
users/admin: init This is the user to be used for managing installations with deploy-rs but it is also the main user for servers. 2022-11-25 13:25:40 +00:00			`description = "The administrator account for the servers.";`
			`isNormalUser = true;`
			`extraGroups = [ "wheel" ];`
			`useDefaultShell = true;`
users: set the correct attributes for authorized keyfiles 2022-11-27 16:41:27 +00:00			`openssh.authorizedKeys.keyFiles = [`
configs: consolidate NixOS and home-manager config into one `configs` folder Now we're going beyond these structuring as we might have to accomodate non-system configurations like Nixvim. 2024-01-14 23:45:43 +00:00			`../../../home-manager/foo-dogsquared/files/ssh-key.pub`
			`../../../home-manager/foo-dogsquared/files/ssh-key-2.pub`
			`../../ni/files/ssh-key.pub`
users/admin: init This is the user to be used for managing installations with deploy-rs but it is also the main user for servers. 2022-11-25 13:25:40 +00:00			`];`
			`};`

users/admin: make the account passwordless 2022-12-13 01:19:48 +00:00			`# We're going passwordless, baybee!`
			`security.sudo.extraRules = [{`
			`users = [ name ];`
users/admin: fix the sudo config I really should get used running checks before pushing. 2022-12-14 09:33:05 +00:00			`commands = [{`
			`command = "ALL";`
			`options = [ "NOPASSWD" ];`
			`}];`
users/admin: make the account passwordless 2022-12-13 01:19:48 +00:00			`}];`

			`security.doas.extraRules = [{`
			`users = [ name ];`
			`noPass = true;`
			`}];`

users/admin: add trust to more applications 2022-12-04 23:17:57 +00:00			`# This is also a trusted user for the Nix daemon.`
			`nix.settings.trusted-users = [ name ];`

			`# Allow the user to easily enter into several services such as the database`
			`# services to allowing some debugging.`
chore: reformat codebase 2023-01-07 08:06:34 +00:00			`services.postgresql.ensureUsers = [{ inherit name; }];`
			`services.mysql.ensureUsers = [{ inherit name; }];`
users/admin: init This is the user to be used for managing installations with deploy-rs but it is also the main user for servers. 2022-11-25 13:25:40 +00:00			`}`