movefasta/nixpkgs
1
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-06-13 05:05:29 +03:00
Code Issues Projects Releases Packages Wiki Activity

Revert "nixos/sshd: drop mode from auth keys file".

Browse source 
This reverts commit a3331eb87b.

See https://github.com/NixOS/nixpkgs/issues/2559#issuecomment-47313334
for a description why this is not a good idea.

I guess it's better to implement a sane way to remove all files in
authorized_keys.d, especially because it is also backwards-compatible.

Reopens #2559.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
This commit is contained in:
aszlig 2014-06-27 09:19:30 +02:00
parent 865787ef32
commit da32f052b1
No known key found for this signature in database
GPG key ID: D0EBD0EC8C2DC961
1 changed files with 1 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
nixos/modules/services/networking/ssh/sshd.nix
View file

@ -56,6 +56,7 @@ let
authKeysFiles = let authKeysFiles = let
mkAuthKeyFile = u: { mkAuthKeyFile = u: {
target = "ssh/authorized_keys.d/${u.name}"; target = "ssh/authorized_keys.d/${u.name}";
mode = "0444";
source = pkgs.writeText "${u.name}-authorized_keys" '' source = pkgs.writeText "${u.name}-authorized_keys" ''
${concatStringsSep "\n" u.openssh.authorizedKeys.keys} ${concatStringsSep "\n" u.openssh.authorizedKeys.keys}
${concatMapStrings (f: readFile f + "\n") u.openssh.authorizedKeys.keyFiles} ${concatMapStrings (f: readFile f + "\n") u.openssh.authorizedKeys.keyFiles}