From 64c4534d46256603d3234bcff60e73bfe5eef66e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Motiejus=20Jak=C5=A1tys?= <motiejus@jakstys.lt>
Date: Fri, 2 Feb 2024 15:02:31 +0200
Subject: [PATCH] rm -fr certget:

---
 data.nix                             |  2 --
 hosts/vno3-rp3b/configuration.nix    |  6 ------
 modules/services/certget/default.nix | 32 ----------------------------
 modules/services/default.nix         |  1 -
 4 files changed, 41 deletions(-)
 delete mode 100644 modules/services/certget/default.nix

diff --git a/data.nix b/data.nix
index dee44a9..65d254a 100644
--- a/data.nix
+++ b/data.nix
@@ -15,8 +15,6 @@ rec {
 
     jakstpub = 505;
 
-    certget = 506;
-
     photoprism = 507;
   };
 
diff --git a/hosts/vno3-rp3b/configuration.nix b/hosts/vno3-rp3b/configuration.nix
index 80e7103..3f60a1c 100644
--- a/hosts/vno3-rp3b/configuration.nix
+++ b/hosts/vno3-rp3b/configuration.nix
@@ -76,12 +76,6 @@
       node_exporter.enable = true;
       sshguard.enable = true;
 
-      certget = {
-        enable = true;
-        uidgid = myData.uidgid.certget;
-        sshKeys = [myData.hosts."vno1-oh2.servers.jakst".publicKey];
-      };
-
       borgstor = {
         enable = true;
         dataDir = "/data/borg";
diff --git a/modules/services/certget/default.nix b/modules/services/certget/default.nix
deleted file mode 100644
index 4237783..0000000
--- a/modules/services/certget/default.nix
+++ /dev/null
@@ -1,32 +0,0 @@
-{
-  config,
-  lib,
-  pkgs,
-  ...
-}: let
-  cfg = config.mj.services.certget;
-in {
-  options.mj.services.certget = with lib.types; {
-    enable = lib.mkEnableOption "receive acme certs from somewhere";
-    uidgid = lib.mkOption {type = int;};
-    sshKeys = lib.mkOption {type = listOf str;};
-  };
-
-  config = lib.mkIf cfg.enable {
-    users.users.certget = {
-      description = "Cert Getter";
-      home = "/var/lib/certget";
-      shell = "/bin/sh";
-      group = "certget";
-      isSystemUser = true;
-      createHome = true;
-      uid = cfg.uidgid;
-      openssh.authorizedKeys.keys =
-        map (
-          k: "command=\"${pkgs.rrsync}/bin/rrsync /var/lib/certget\",restrict ${k}"
-        )
-        cfg.sshKeys;
-    };
-    users.groups.certget.gid = cfg.uidgid;
-  };
-}
diff --git a/modules/services/default.nix b/modules/services/default.nix
index d43116e..5e949ba 100644
--- a/modules/services/default.nix
+++ b/modules/services/default.nix
@@ -1,7 +1,6 @@
 {...}: {
   imports = [
     ./borgstor
-    ./certget
     ./deployerbot
     ./friendlyport
     ./gitea