]> git.immae.eu Git - perso/Immae/Config/Nix.git/blobdiff - nixops/ldap_authorized_keys.sh
projects / perso / Immae / Config / Nix.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Add deploy webhook
[perso/Immae/Config/Nix.git] / nixops / ldap_authorized_keys.sh
diff --git a/nixops/ldap_authorized_keys.sh b/nixops/ldap_authorized_keys.sh
index e8d7a6487f676a77b9cf903849ba961b8fdf8304..d869d74a063b9dcb076ef0af8e53a04eea0d5234 100755 (executable)
--- a/nixops/ldap_authorized_keys.sh
+++ b/nixops/ldap_authorized_keys.sh
@@ -45,7 +45,7 @@ clean_key_line() {
 }
 
 ldap_search() {
-  $LDAPSEARCH -h $LDAP_HOST -b $LDAP_BASE -D $LDAP_BIND -w "$LDAP_PASS" -x -o ldif-wrap=no -LLL "$@"
+  $LDAPSEARCH -h $LDAP_HOST -ZZ -b $LDAP_BASE -D $LDAP_BIND -w "$LDAP_PASS" -x -o ldif-wrap=no -LLL "$@"
 }
 
 ldap_keys() {
@@ -92,7 +92,7 @@ ldap_keys() {
             key_forward=$(clean_key_line forward "$line")
             if [ ! -z "$key" ]; then
               if [[ $key != *$'\n'* ]] && [[ $key == ssh-* ]]; then
-                echo -n 'command="$HOME/bin/restrict '$user'" '
+                echo -n 'command="/etc/profiles/per-user/pub/bin/restrict '$user'" '
                 echo $key
               fi
             elif [ ! -z "$key_forward" ]; then
My infrastructure configuration