dotfiles/modules/nixos/core/ssh/default.nix

{
  flake,
  config,
  ...
}:
let
  inherit (flake.config.people) user0 user1;
  inherit (flake.config.machines) devices;
  hostname = config.networking.hostName;
  mars = devices.mars.name;
  deimos = devices.deimos.name;
  ceres = devices.ceres.name;

  getUserKeys = user: flake.config.people.users.${user}.sshKeys;

  user0Key = {
    ${user0} = {
      openssh.authorizedKeys.keys = getUserKeys user0;
    };
  };
  user1Key = {
    ${user1} = {
      openssh.authorizedKeys.keys = getUserKeys user1;
    };
  };

in
{
  users.users =
    if hostname == mars then
      user0Key // user1Key
    else if
      builtins.elem hostname [
        deimos
        ceres
      ]
    then
      user0Key
    else
      { };
}
feat: init 2025-03-29 23:08:26 -05:00			`{`
			`flake,`
			`config,`
			`...`
			`}:`
			`let`
chore: removed other users and systems 2025-06-26 02:15:04 -05:00			`inherit (flake.config.people) user0 user1;`
			`inherit (flake.config.machines) devices;`
feat: init 2025-03-29 23:08:26 -05:00			`hostname = config.networking.hostName;`
			`mars = devices.mars.name;`
			`deimos = devices.deimos.name;`
			`ceres = devices.ceres.name;`

			`getUserKeys = user: flake.config.people.users.${user}.sshKeys;`
chore: removed other users and systems 2025-06-26 02:15:04 -05:00
			`user0Key = {`
			`${user0} = {`
			`openssh.authorizedKeys.keys = getUserKeys user0;`
			`};`
			`};`
			`user1Key = {`
			`${user1} = {`
			`openssh.authorizedKeys.keys = getUserKeys user1;`
			`};`
			`};`

feat: init 2025-03-29 23:08:26 -05:00			`in`
			`{`
			`users.users =`
chore: removed other users and systems 2025-06-26 02:15:04 -05:00			`if hostname == mars then`
			`user0Key // user1Key`
feat: init 2025-03-29 23:08:26 -05:00			`else if`
			`builtins.elem hostname [`
			`deimos`
			`ceres`
			`]`
			`then`
chore: removed other users and systems 2025-06-26 02:15:04 -05:00			`user0Key`
feat: init 2025-03-29 23:08:26 -05:00			`else`
			`{ };`
			`}`