motiejus/config
1
Fork 0
Code Packages Releases Activity

deployerbot-follower: also allow from localhost

Browse Source
This commit is contained in:
Motiejus Jakštys
2025-05-24 16:11:34 +00:00
parent 0e882bf94d
commit 741a5ff90b
1 changed files with 11 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
modules/services/deployerbot/default.nix
View File

@@ -142,7 +142,17 @@
createHome = true; createHome = true;
uid = cfg.uidgid; uid = cfg.uidgid;
openssh.authorizedKeys.keys = map ( openssh.authorizedKeys.keys = map (
k: ''from="${builtins.concatStringsSep "," cfg.sshAllowSubnets}" '' + k k:
''from="${
builtins.concatStringsSep "," (
cfg.sshAllowSubnets
++ [
"::1"
"127.0.0.1"
]
)
}" ''
+ k
) cfg.publicKeys; ) cfg.publicKeys;
}; };
users.groups.deployerbot-follower.gid = cfg.uidgid; users.groups.deployerbot-follower.gid = cfg.uidgid;