1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
{
sopsSecrets,
config,
lib,
pkgs,
...
}:
{
options.common.users.zaphyra.enable = lib.mkEnableOption "zaphyra user";
config = lib.mkIf config.common.users.zaphyra.enable {
environment.systemPackages = [ pkgs.ghostty.terminfo ];
sops.secrets.zaphyraPassword = {
neededForUsers = true;
sopsFile = sopsSecrets.common;
};
users.users.zaphyra = {
uid = 1001;
description = "Katja";
hashedPasswordFile = config.sops.secrets.zaphyraPassword.path;
isNormalUser = true;
extraGroups = [
"ssh"
"wheel"
];
openssh.authorizedKeys.keys = [
(builtins.readFile "${pkgs.zpha.website}/ssh_pubkey.asc")
];
};
};
}