From 86ea20165354d1e970c777769b9173b5c49bc678 Mon Sep 17 00:00:00 2001
From: unexplrd <unexplrd@linerds.us>
Date: Wed, 30 Apr 2025 00:33:56 +0300
Subject: [PATCH] hosts/dunamis: add userborn

Signed-off-by: unexplrd <unexplrd@linerds.us>
---
 hosts/dunamis/services.nix | 1 +
 hosts/dunamis/users.nix    | 3 ++-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/hosts/dunamis/services.nix b/hosts/dunamis/services.nix
index a17583b..7def073 100644
--- a/hosts/dunamis/services.nix
+++ b/hosts/dunamis/services.nix
@@ -5,6 +5,7 @@
     fwupd.enable = true;
     openssh.enable = true;
     syncthing.openDefaultPorts = true;
+    userborn.enable = true;
     dnscrypt-proxy2 = {
       enable = true;
       settings = {
diff --git a/hosts/dunamis/users.nix b/hosts/dunamis/users.nix
index 2f87dda..5da6498 100644
--- a/hosts/dunamis/users.nix
+++ b/hosts/dunamis/users.nix
@@ -6,6 +6,7 @@
 }: let
   inherit (config.sops) secrets;
   inherit (inputs) mysecrets;
+  sshKeys = f: "${mysecrets}/ssh/user/id_${f}_ed25519.pub";
 in {
   nix.settings.trusted-users = ["user" "nix-ssh"];
   users.mutableUsers = false;
@@ -15,7 +16,7 @@ in {
       extraGroups = ["wheel" "video" "libvirtd" "dialout"];
       isNormalUser = true;
       shell = pkgs.fish;
-      openssh.authorizedKeys.keyFiles = map (f: "${mysecrets}/ssh/user/id_${f}_ed25519.pub") [
+      openssh.authorizedKeys.keyFiles = map sshKeys [
         "dunamis"
         "eldrid"
         "sarien"