nixos-config/home/ssh.nix

{
  config,
  lib,
  ...
}: let
  inherit
    (lib)
    mkEnableOption
    mkIf
    ;

  cfg = config.my.home.ssh;
in {
  options.my.home.ssh = {
    enable = (mkEnableOption "ssh configuration") // {default = true;};
  };

  config = mkIf cfg.enable {
    programs.ssh = {
      enable = true;

      matchBlocks = let
        addGPGAgentForwarding = hostConf:
          {
            remoteForwards = [
              {
                # shhhh this is a path but it works
                bind.address = "/run/user/1000/gnupg/S.gpg-agent.ssh";
                host.address = "/run/user/1000/gnupg/S.gpg-agent.ssh";
              }
            ];
          }
          // hostConf;
      in {
        boreal = addGPGAgentForwarding {hostname = "boreal.alarsyo.net";};
        hades = addGPGAgentForwarding {hostname = "hades.alarsyo.net";};
        thanatos = addGPGAgentForwarding {hostname = "thanatos.alarsyo.net";};
        pi = addGPGAgentForwarding {
          hostname = "pi.alarsyo.net";
          user = "pi";
        };

        "thanatos.lrde.epita.fr" =
          lib.hm.dag.entryBefore ["*.lrde.epita.fr"]
          (addGPGAgentForwarding {
            user = "alarsyo";
          });

        "*.lrde.epita.fr" = {
          user = "amartin";
        };

        lrde-proxyjump = {
          host = "*.lrde.epita.fr !ssh.lrde.epita.fr";
          proxyJump = "ssh.lrde.epita.fr";
        };
      };

      includes = ["prologin_config"];
    };
  };
}
format all code with alejandra 2022-04-10 11:54:58 +02:00			`{`
			`config,`
			`lib,`
			`...`
			`}: let`
			`inherit`
			`(lib)`
nix: exorcise all `with <expr>;` uses 2022-01-11 16:08:21 +01:00			`mkEnableOption`
			`mkIf`
format all code with alejandra 2022-04-10 11:54:58 +02:00			`;`
nix: exorcise all `with <expr>;` uses 2022-01-11 16:08:21 +01:00
home: ssh: setup config 2021-07-29 11:31:21 +02:00			`cfg = config.my.home.ssh;`
format all code with alejandra 2022-04-10 11:54:58 +02:00			`in {`
nix: exorcise all `with <expr>;` uses 2022-01-11 16:08:21 +01:00			`options.my.home.ssh = {`
format all code with alejandra 2022-04-10 11:54:58 +02:00			`enable = (mkEnableOption "ssh configuration") // {default = true;};`
home: ssh: setup config 2021-07-29 11:31:21 +02:00			`};`

nix: exorcise all `with <expr>;` uses 2022-01-11 16:08:21 +01:00			`config = mkIf cfg.enable {`
home: ssh: setup config 2021-07-29 11:31:21 +02:00			`programs.ssh = {`
			`enable = true;`

home: ssh: setup gpg ssh agent socket forwarding 2022-11-15 00:36:30 +01:00			`matchBlocks = let`
			`addGPGAgentForwarding = hostConf:`
			`{`
			`remoteForwards = [`
			`{`
			`# shhhh this is a path but it works`
			`bind.address = "/run/user/1000/gnupg/S.gpg-agent.ssh";`
			`host.address = "/run/user/1000/gnupg/S.gpg-agent.ssh";`
			`}`
			`];`
			`}`
			`// hostConf;`
			`in {`
			`boreal = addGPGAgentForwarding {hostname = "boreal.alarsyo.net";};`
			`hades = addGPGAgentForwarding {hostname = "hades.alarsyo.net";};`
home: ssh: thanatos config 2023-12-14 13:45:10 +01:00			`thanatos = addGPGAgentForwarding {hostname = "thanatos.alarsyo.net";};`
home: ssh: setup gpg ssh agent socket forwarding 2022-11-15 00:36:30 +01:00			`pi = addGPGAgentForwarding {`
home: ssh: add more custom hosts 2021-08-21 12:06:09 +02:00			`hostname = "pi.alarsyo.net";`
			`user = "pi";`
home: ssh: setup config 2021-07-29 11:31:21 +02:00			`};`
home: ssh: add lrde proxyjump settings 2021-08-01 13:33:21 +02:00
home: ssh: thanatos config 2023-12-14 13:45:10 +01:00			`"thanatos.lrde.epita.fr" =`
			`lib.hm.dag.entryBefore ["*.lrde.epita.fr"]`
			`(addGPGAgentForwarding {`
			`user = "alarsyo";`
			`});`

home: ssh: add lrde proxyjump settings 2021-08-01 13:33:21 +02:00			`"*.lrde.epita.fr" = {`
			`user = "amartin";`
			`};`

			`lrde-proxyjump = {`
			`host = "*.lrde.epita.fr !ssh.lrde.epita.fr";`
			`proxyJump = "ssh.lrde.epita.fr";`
			`};`
home: ssh: setup config 2021-07-29 11:31:21 +02:00			`};`
home: ssh: add included config file to ssh_config 2022-11-23 00:38:38 +01:00
			`includes = ["prologin_config"];`
home: ssh: setup config 2021-07-29 11:31:21 +02:00			`};`
			`};`
			`}`