Jo/puzzlevision
1
0
Fork 0
mirror of https://github.com/Jokiller230/puzzlevision.git synced 2025-01-18 18:03:06 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: update yubikey configuration

Browse source
This commit is contained in:
Jo 2024-12-23 18:33:51 +01:00
parent d06c14e32d
commit 27829eb0fc
1 changed files with 14 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
modules/nixos/security/yubikey/default.nix
View file

@ -17,6 +17,7 @@ in
example = [ "123456" "1234567" ]; example = [ "123456" "1234567" ];
description = "Register additional Yubikey IDs."; description = "Register additional Yubikey IDs.";
}; };
enable-agent = mkEnableOption "Enable the Yubikey agent";
}; };
config = mkIf cfg.enable { config = mkIf cfg.enable {
@ -34,5 +35,16 @@ in
login.u2fAuth = true; login.u2fAuth = true;
sudo.u2fAuth = true; sudo.u2fAuth = true;
}; };
services.yubikey-agent.enable = cfg.enable-agent;
programs.ssh.extraConfig = mkIf cfg.enable-agent ''
Host *
IdentityAgent /usr/local/var/run/yubikey-agent.sock
'';
environment.sessionVariables = mkIf cfg.enable-agent {
SSH_AUTH_SOCK = "/usr/local/var/run/yubikey-agent.sock";
};
}; };
} }