From 6bf901b72dda9303d5baad11c04429a02e14784c Mon Sep 17 00:00:00 2001 From: Freya Murphy Date: Wed, 23 Oct 2024 17:30:09 -0400 Subject: [PATCH] add authorized keys and sakura substitutes --- certs/gpgkey.pub | 1 + certs/sakura.pub | 6 ++++++ modules/freya/system.scm | 9 +++++++-- 3 files changed, 14 insertions(+), 2 deletions(-) create mode 100644 certs/gpgkey.pub create mode 100644 certs/sakura.pub diff --git a/certs/gpgkey.pub b/certs/gpgkey.pub new file mode 100644 index 0000000..9d65528 --- /dev/null +++ b/certs/gpgkey.pub @@ -0,0 +1 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPSvC13VgZuP40kWP82fnuthD6h2nXrm5uRgicZNSRTD cardno:24 409 474 diff --git a/certs/sakura.pub b/certs/sakura.pub new file mode 100644 index 0000000..9fb52ae --- /dev/null +++ b/certs/sakura.pub @@ -0,0 +1,6 @@ +(public-key + (ecc + (curve Ed25519) + (q #3E9614FD06AF20F9534DA0DE64FB9004878789744F26FFF2FF381E2EED1DEAC9#) + ) + ) diff --git a/modules/freya/system.scm b/modules/freya/system.scm index 094b2cf..5873d01 100644 --- a/modules/freya/system.scm +++ b/modules/freya/system.scm @@ -224,6 +224,9 @@ ; openssh (service openssh-service-type (openssh-configuration + (authorized-keys + `(("freya" ,(local-file "../../certs/gpgkey.pub")) + ("root" ,(local-file "../../certs/gpgkey.pub")))) (permit-root-login #t) (allow-empty-passwords? #t) (password-authentication? #f) @@ -236,10 +239,12 @@ (guix-configuration (inherit config) (substitute-urls - (append (list "https://substitutes.nonguix.org") + (append (list "https://substitutes.nonguix.org" + "https://substitutes.freya.cat") %default-substitute-urls)) (authorized-keys - (append (list (local-file "../../certs/non-guix.pub")) + (append (list (local-file "../../certs/non-guix.pub") + (local-file "../../certs/sakura.pub")) %default-authorized-guix-keys))))))) (define-public %desktop-freya-services