From 2f6bfa3994137152939d448e05374dccb8d6970b Mon Sep 17 00:00:00 2001
From: Devin Finlinson <devin.finlinson@pm.me>
Date: Fri, 6 Mar 2026 02:19:47 -0700
Subject: builder user + key cleanup

---
 modules/users/builder.nix | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 modules/users/builder.nix

(limited to 'modules/users/builder.nix')

diff --git a/modules/users/builder.nix b/modules/users/builder.nix
new file mode 100644
index 0000000..6f14510
--- /dev/null
+++ b/modules/users/builder.nix
@@ -0,0 +1,20 @@
+{ config, pkgs, ... }: {
+	users = {
+		mutableUsers = false;
+		users.builder = {
+			isNormalUser = false;
+			isSystemUser = true;
+			description = "user for automated building";
+			extraGroups = [ "builders" ];
+
+			openssh.authorizedKeys.keys = [
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPLx3RgUgbE7THS7hRZypyudEKffj0ppwQfQuxIpPf8H root@zenbook"
+			];
+		};
+	};
+
+	services.openssh = { 
+		ports = [ 22 ];
+		settings.PasswordAuthenitcation = false; 
+	};
+}
-- 
cgit v1.2.3