22 lines
744 B
Nix
22 lines
744 B
Nix
{ pkgs, ... }:
|
|
|
|
{
|
|
users = {
|
|
users.deploy = {
|
|
description = "deploys static websites from forgejo";
|
|
shell = "/run/current-system/sw/bin/nologin";
|
|
isSystemUser = true;
|
|
group = "deploy";
|
|
packages = [
|
|
pkgs.rsync
|
|
];
|
|
openssh.authorizedKeys.keys = [
|
|
#"command='rsync --server --daemon . /srv/http/www/',restrict ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPtN5miFqjb585xuM89PXo3yxtY7WS159BvYS26HbZxC git.berlin.ccc.de/cccb/www"
|
|
"command='rsync --server --daemon . /srv/http/www-staging/',restrict ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPtN5miFqjb585xuM89PXo3yxtY7WS159BvYS26HbZxC git.berlin.ccc.de/cccb/www"
|
|
];
|
|
#extraGroups = ["nginx"];
|
|
};
|
|
groups.deploy = {};
|
|
};
|
|
}
|
|
|