From e3904e2674c4c152497ffb8673e5d3dbfa881dcb Mon Sep 17 00:00:00 2001
From: Mark Nipper <nipsy@bitgnome.net>
Date: Tue, 18 Mar 2025 12:42:23 -0700
Subject: Add SSH configuration for root@ginaz

---
 home/root/ginaz.nix | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

(limited to 'home/root/ginaz.nix')

diff --git a/home/root/ginaz.nix b/home/root/ginaz.nix
index 72dbda0..4675184 100644
--- a/home/root/ginaz.nix
+++ b/home/root/ginaz.nix
@@ -1,5 +1,12 @@
 { inputs, lib, pkgs, config, outputs, ... }:
 {
+
+  home = {
+    file = {
+      "bin/knock".source = ../common/scripts/knock;
+    };
+  };
+
   imports = [
     common/core
   ];
@@ -7,4 +14,14 @@
   nix.extraOptions = ''
     !include /run/secrets/nix-access-token-github
   '';
+
+  sops = {
+    age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
+    defaultSopsFile = ./secrets/ginaz.yaml;
+
+    secrets = {
+      "ssh_config" = {
+        path = "/root/.ssh/config";
+      };
+    };
 }
-- 
cgit v1.2.3