fix sudo not accessible via pam ssh module (hyrule)
This commit is contained in:
parent
f32b784ed7
commit
8661d198b2
1 changed files with 11 additions and 2 deletions
|
|
@ -41,6 +41,9 @@ in {
|
||||||
targetHost = "imbored.dev";
|
targetHost = "imbored.dev";
|
||||||
targetUser = "ae";
|
targetUser = "ae";
|
||||||
targetPort = 22;
|
targetPort = 22;
|
||||||
|
sshOptions = [
|
||||||
|
"-A" # forward ssh-agent
|
||||||
|
];
|
||||||
buildOnTarget = false; # build locally then deploy
|
buildOnTarget = false; # build locally then deploy
|
||||||
};
|
};
|
||||||
|
|
||||||
|
|
@ -420,10 +423,16 @@ in {
|
||||||
defaults.email = "eclarkboman@gmail.com";
|
defaults.email = "eclarkboman@gmail.com";
|
||||||
};
|
};
|
||||||
|
|
||||||
sudo.wheelNeedsPassword = true;
|
sudo = {
|
||||||
|
enable = true;
|
||||||
|
wheelNeedsPassword = true;
|
||||||
|
};
|
||||||
# allow SSH keys for passwordless auth
|
# allow SSH keys for passwordless auth
|
||||||
# TODO: DO NOT USE THIS (create my own alternative to colmena)
|
# TODO: DO NOT USE THIS (create my own alternative to colmena)
|
||||||
pam.services.sudo.sshAgentAuth = true; # pam_ssh_agent_auth module
|
pam = {
|
||||||
|
enableSSHAgentAuth = true;
|
||||||
|
services.sudo.sshAgentAuth = true; # pam_ssh_agent_auth module
|
||||||
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
environment.systemPackages = with pkgs; [
|
environment.systemPackages = with pkgs; [
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue