hosts/dunamis: add userborn

Signed-off-by: unexplrd <unexplrd@linerds.us>

hosts/dunamis/services.nix

@@ -5,6 +5,7 @@
     fwupd.enable = true;
     openssh.enable = true;
     syncthing.openDefaultPorts = true;
+    userborn.enable = true;
     dnscrypt-proxy2 = {
       enable = true;
       settings = {

hosts/dunamis/users.nix

@@ -6,6 +6,7 @@
 }: let
   inherit (config.sops) secrets;
   inherit (inputs) mysecrets;
+  sshKeys = f: "${mysecrets}/ssh/user/id_${f}_ed25519.pub";
 in {
   nix.settings.trusted-users = ["user" "nix-ssh"];
   users.mutableUsers = false;
@@ -15,7 +16,7 @@ in {
       extraGroups = ["wheel" "video" "libvirtd" "dialout"];
       isNormalUser = true;
       shell = pkgs.fish;
-      openssh.authorizedKeys.keyFiles = map (f: "${mysecrets}/ssh/user/id_${f}_ed25519.pub") [
+      openssh.authorizedKeys.keyFiles = map sshKeys [
         "dunamis"
         "eldrid"
         "sarien"