nixos: use types.enum instead of ad-hoc check in sshd service

author: Jan Malakhovski <oxij@oxij.org> 2015-03-19 16:03:09 +0000
committer: Jan Malakhovski <oxij@oxij.org> 2015-03-26 12:43:42 +0000
commit: 5c6d86540b748096b89051182840e6e3b83b47c8 (patch)
tree: 9461ac98d514ecb25731fa20d5197cef324c2f41 /nixos/modules/services/networking
parent: dc4fa2da8acd6acc2b83fd4526711b8c35a79058 (diff)
download: nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar
nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar.gz
nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar.bz2
nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar.lz
nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar.xz
nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar.zst
nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.zip
1 files changed, 2 insertions, 11 deletions
diff --git a/nixos/modules/services/networking/ssh/sshd.nix b/nixos/modules/services/networking/ssh/sshd.nix
index b11f996c63cf..b2740bd33b7f 100644
--- a/nixos/modules/services/networking/ssh/sshd.nix
+++ b/nixos/modules/services/networking/ssh/sshd.nix
@@ -9,12 +9,6 @@ let
 
   nssModulesPath = config.system.nssModules.path;
 
-  permitRootLoginCheck = v:
-    v == "yes" ||
-    v == "without-password" ||
-    v == "forced-commands-only" ||
-    v == "no";
-
   knownHosts = map (h: getAttr h cfg.knownHosts) (attrNames cfg.knownHosts);
 
   knownHostsText = flip (concatMapStringsSep "\n") knownHosts
@@ -116,12 +110,9 @@ in
 
       permitRootLogin = mkOption {
         default = "without-password";
-        type = types.addCheck types.str permitRootLoginCheck;
+        type = types.enum ["yes" "without-password" "forced-commands-only" "no"];
         description = ''
-          Whether the root user can login using ssh. Valid values are
-          <literal>yes</literal>, <literal>without-password</literal>,
-          <literal>forced-commands-only</literal> or
-          <literal>no</literal>.
+          Whether the root user can login using ssh.
         '';
       };
author	Jan Malakhovski <oxij@oxij.org>	2015-03-19 16:03:09 +0000
committer	Jan Malakhovski <oxij@oxij.org>	2015-03-26 12:43:42 +0000
commit	5c6d86540b748096b89051182840e6e3b83b47c8 (patch)
tree	9461ac98d514ecb25731fa20d5197cef324c2f41 /nixos/modules/services/networking
parent	dc4fa2da8acd6acc2b83fd4526711b8c35a79058 (diff)
download	nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar.gz nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar.bz2 nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar.lz nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar.xz nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.tar.zst nixlib-5c6d86540b748096b89051182840e6e3b83b47c8.zip