From e6e80926139d75938c0a9d5f7dfa638342544ad2 Mon Sep 17 00:00:00 2001
From: hackens server <hackens@ens.fr>
Date: Fri, 29 Apr 2022 15:09:13 +0200
Subject: [PATCH] adduser hbarral

---
 profiles/core-hackens/personal-users.nix | 5 +++++
 profiles/core-hackens/ssh-server.nix     | 1 +
 pubkeys/backslash.keys                   | 2 ++
 3 files changed, 8 insertions(+)
 create mode 100644 pubkeys/backslash.keys

diff --git a/profiles/core-hackens/personal-users.nix b/profiles/core-hackens/personal-users.nix
index f20e94b..6696eba 100644
--- a/profiles/core-hackens/personal-users.nix
+++ b/profiles/core-hackens/personal-users.nix
@@ -17,6 +17,11 @@
       extraGroups = [ "wheel" ];
       openssh.authorizedKeys.keyFiles = [ ../../pubkeys/sinavir.keys ];
     };
+    hbarral = {
+      isNormalUser = true;
+      extraGroups = [ "wheel" ];
+      openssh.authorizedKeys.keyFiles = [ ../../pubkeys/backslash.keys ];
+    };
     root.openssh.authorizedKeys.keyFiles = [ ../../pubkeys/beigbeder.keys ]; # Jacques Beigbeder est tjrs root.
   };
 }
diff --git a/profiles/core-hackens/ssh-server.nix b/profiles/core-hackens/ssh-server.nix
index 6ef5683..9557439 100644
--- a/profiles/core-hackens/ssh-server.nix
+++ b/profiles/core-hackens/ssh-server.nix
@@ -2,6 +2,7 @@
 {
   # Enable the OpenSSH daemon.
   services.openssh.enable = true;
+  services.openssh.passwordAuthentication = false;
 
   # Open ports in the firewall.
   networking.firewall.allowedTCPPorts = [ 22 ];
diff --git a/pubkeys/backslash.keys b/pubkeys/backslash.keys
new file mode 100644
index 0000000..d6a64db
--- /dev/null
+++ b/pubkeys/backslash.keys
@@ -0,0 +1,2 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIm4XAUjTYdipppVlerlO3ng5KijoEQzuVD7cueq48D8
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAII30ofjlQllI6SlRAZjhGO1nUYA1ciUr3qyBog+HNqVE