X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=nixops%2Fmodules%2Fssh%2Fdefault.nix;h=e8d606348bd41c41bf07c544ce730d3deba1d3ef;hb=1a7188052f235fb632700478fad0108e4306107d;hp=81b7751b96ddf5e367383c703995c4eeae9c1374;hpb=362d300efa5bca3bb06e525180a4f0158579fd75;p=perso%2FImmae%2FConfig%2FNix.git

diff --git a/nixops/modules/ssh/default.nix b/nixops/modules/ssh/default.nix
index 81b7751..e8d6063 100644
--- a/nixops/modules/ssh/default.nix
+++ b/nixops/modules/ssh/default.nix
@@ -8,16 +8,19 @@
       AuthorizedKeysCommandUser nobody
       '';
 
-    mySecrets.keys = [{
+    secrets.keys = [{
       dest = "ssh-ldap";
       user = "nobody";
       group = "nogroup";
       permissions = "0400";
       text = myconfig.env.sshd.ldap.password;
     }];
-    system.activationScripts.sshd = ''
+    system.activationScripts.sshd = {
+      deps = [ "secrets" ];
+      text = ''
       install -Dm400 -o nobody -g nogroup -T /var/secrets/ssh-ldap /etc/ssh/ldap_password
       '';
+    };
     # ssh is strict about parent directory having correct rights, don't
     # move it in the nix store.
     environment.etc."ssh/ldap_authorized_keys" = let