mirror of
https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-config.git
synced 2025-01-08 00:51:23 +00:00
41 lines
1 KiB
Nix
41 lines
1 KiB
Nix
{ pkgs, config, ... }:
|
|
let
|
|
cfg = config.services.userdata;
|
|
in
|
|
{
|
|
users.mutableUsers = false;
|
|
users = {
|
|
users = {
|
|
"${cfg.username}" = {
|
|
isNormalUser = true;
|
|
hashedPassword = cfg.hashedMasterPassword;
|
|
openssh.authorizedKeys.keys = cfg.sshKeys;
|
|
};
|
|
} // builtins.listToAttrs (builtins.map
|
|
(user: {
|
|
name = "${user.username}";
|
|
value = {
|
|
isNormalUser = true;
|
|
hashedPassword = user.hashedPassword;
|
|
openssh.authorizedKeys.keys = (if user ? sshKeys then user.sshKeys else [ ]);
|
|
};
|
|
})
|
|
cfg.users);
|
|
};
|
|
selfprivacy.ldap = {
|
|
enable = true;
|
|
domain = "${cfg.domain}";
|
|
rootUser = "${cfg.username}";
|
|
rootHashedPassword = cfg.hashedMasterPassword;
|
|
users =
|
|
(builtins.map
|
|
(user: {
|
|
username = "${user.username}";
|
|
email = "${user.username}@${cfg.domain}";
|
|
hashedPassword = user.hashedPassword;
|
|
groups = [ "gitea" "nextcloud" "pleroma" ];
|
|
})
|
|
cfg.users);
|
|
};
|
|
}
|