added password for remote user

README.md

@@ -1,7 +1,6 @@
+# Hosts
 
-Build Command:
+## Host Map
-`sudo nixos-rebuild switch --flake .#hostname`
-
 |   Hostname  |      Device Description    |   Primary User   |    Role   |
 | :---------: | :------------------------: | :--------------: | :-------: |
 |  `twilight` |      Desktop Computer      |      Leyla       |  Desktop  |
@@ -9,3 +8,19 @@ Build Command:
 |  `defiant`  |         NAS Server         |      Leyla       |  Service  |
 |  `emergent` |      Desktop Computer      |       Eve        |  Laptop   |
 | `threshold` |           Laptop           |       Eve        |  Desktop  |
+
+
+### Rebuild current machine to match target host:
+`sudo nixos-rebuild switch --flake .#hostname`
+
+### Rebuild current machine maintaining current target
+`./rebuild.sh`
+
+# New machine setup
+keys for decrypting password secrets for each users located at ~/.config/sops/age/keys.txt
+
+updating passwords: `sops secrets/secrets.yaml`
+
+> how the current config was set up https://www.youtube.com/watch?v=G5f6GC7SnhU
+
+> look into this? https://technotim.live/posts/rotate-sops-encryption-keys/

users/remote/default.nix

@@ -19,6 +19,9 @@ in
       (
         if cfg.isNormalUser then {
           # extraGroups = [ "wheel" ];
+
+          hashedPasswordFile = config.sops.secrets."passwords/remote".path;
+
           isNormalUser = true;
           openssh.authorizedKeys.keys = [];
         } else {