From 086cd361a36e5cf369076b3c44270c793f06eb61 Mon Sep 17 00:00:00 2001 From: sefidel Date: Sat, 4 Feb 2023 01:54:22 +0900 Subject: feat(home/development): set key for git.sefidel.com Currently the server accepts both of my keys, and the GPG Authentication subkey is used for provisioning the server. Therefore, an explicit declaration of the IdentityFile to use is needed. The 'IdentitiesOnly' option is added since gpg's ssh-agent always tries their key first. --- home/profiles/development/default.nix | 11 +++++++++++ 1 file changed, 11 insertions(+) (limited to 'home/profiles') diff --git a/home/profiles/development/default.nix b/home/profiles/development/default.nix index c0ae5a5..098f935 100644 --- a/home/profiles/development/default.nix +++ b/home/profiles/development/default.nix @@ -79,6 +79,17 @@ in ]; }; + # GPG Authentication subkey is used for provisioning the server, + # thus we need to use fallback key to identify with gitolite. + programs.ssh.enable = true; # this has no relation with the sshd daemon. + programs.ssh.extraConfig = '' + Host git.sefidel.com + User git + Port 22 + IdentityFile ~/.ssh/id_ed25519 + IdentitiesOnly true + ''; + home.packages = [ pkgs.bfg-repo-cleaner # pkgs.diffoscopeMinimal # broken (rpm) -- cgit 1.4.1