AuthorizedKeysCommandUser nobody
'';
- secrets.keys = [{
- dest = "ssh-ldap";
+ secrets.keys."ssh-ldap" = {
user = "nobody";
group = "nogroup";
permissions = "0400";
text = config.myEnv.sshd.ldap.password;
- }];
+ };
system.activationScripts.sshd = {
deps = [ "secrets" ];
text = ''