JuliusFreudenberger
f2b2e26ba9
Module will not be added here as usernames, principals and the client id have to be specified directly. Setting them via age secrets is not possible.
18 lines
321 B
Nix
18 lines
321 B
Nix
{
|
|
...
|
|
}: {
|
|
services.opkssh = {
|
|
enable = true;
|
|
providers = {
|
|
pocket-id = {
|
|
issuer = "https://example.com";
|
|
clientId = "";
|
|
lifetime = "12h";
|
|
};
|
|
};
|
|
authorizations = [
|
|
{ user = "<username>"; principal = "<email>"; issuer = "https://example.com"; }
|
|
];
|
|
};
|
|
}
|
|
|