21 lines
524 B
Nix
21 lines
524 B
Nix
{ pkgs, ... }:
|
|
|
|
{
|
|
users = {
|
|
users.deploy = {
|
|
description = "deploys static websites from forgejo";
|
|
shell = "/run/current-system/sw/bin/nologin";
|
|
isSystemUser = true;
|
|
group = "deploy";
|
|
packages = [
|
|
pkgs.rsync
|
|
];
|
|
openssh.authorizedKeys.keys = [
|
|
"command='rsync --server --daemon . /srv/http/www/',restrict ssh-ed25519 AAAAB3NzaC1yc2EAAAADAQABAAABAQCy... git.berlin.ccc.de/cccb/www"
|
|
];
|
|
#extraGroups = ["nginx"];
|
|
};
|
|
groups.deploy = {};
|
|
};
|
|
}
|
|
|