refactor: moved nixos modules to dendrite pattern

2026-04-07 15:39:45 -05:00 · 2026-04-07 15:39:45 -05:00 · 0ea11e0236
commit 0ea11e0236
parent df8dd110ad
219 changed files with 4802 additions and 4820 deletions
--- a/modules/nixos/ssh.nix
+++ b/modules/nixos/ssh.nix
@ -0,0 +1,46 @@
+{...}: {
+  flake.nixosModules.nixos-ssh = {
+    lib,
+    config,
+    ...
+  }: {
+    options = {
+      services.openssh.impermanence.enable = lib.mkOption {
+        type = lib.types.bool;
+        default = config.services.openssh.enable && config.storage.impermanence.enable;
+      };
+    };
+
+    config = {
+      services = {
+        openssh = {
+          enable = true;
+          ports = [22];
+          settings = {
+            PasswordAuthentication = false;
+            UseDns = true;
+            X11Forwarding = false;
+          };
+        };
+      };
+
+      storage.datasets.replicate."system/root" = {
+        files = lib.mkIf config.services.openssh.impermanence.enable (builtins.listToAttrs (
+          lib.lists.flatten (
+            builtins.map (hostKey: [
+              {
+                name = hostKey.path;
+                value = {enable = true;};
+              }
+              {
+                name = "${hostKey.path}.pub";
+                value = {enable = true;};
+              }
+            ])
+            config.services.openssh.hostKeys
+          )
+        ));
+      };
+    };
+  };
+}