about summary refs log tree commit diff
path: root/nixos/tests
diff options
context:
space:
mode:
authorMaciej Krüger <mkg20001@gmail.com>2024-01-08 17:42:02 +0100
committerGitHub <noreply@github.com>2024-01-08 17:42:02 +0100
commitb5b2f6bec4b2b1ae2d51813011632bbceb893c7d (patch)
tree1364d16d90a79465ebb84a18e726d955d273592a /nixos/tests
parenta046f198b2922197b9de9cb2b06bb78a1ce462b9 (diff)
parent2eac5106f1f9628025e9b1bf269f25642ff9690c (diff)
downloadnixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar
nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar.gz
nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar.bz2
nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar.lz
nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar.xz
nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar.zst
nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.zip
Merge pull request #277620 from nbraud/nixos/pam/ssh-agent-auth-31611
nixos/pam: Add option for ssh-agent auth's trusted authorized_keys files
Diffstat (limited to 'nixos/tests')
-rw-r--r--nixos/tests/ssh-agent-auth.nix6
1 files changed, 5 insertions, 1 deletions
diff --git a/nixos/tests/ssh-agent-auth.nix b/nixos/tests/ssh-agent-auth.nix
index 2274e463ce95..fee40afd6153 100644
--- a/nixos/tests/ssh-agent-auth.nix
+++ b/nixos/tests/ssh-agent-auth.nix
@@ -15,7 +15,11 @@ import ./make-test-python.nix ({ lib, pkgs, ... }:
         foo.isNormalUser = true;
       };
 
-      security.pam.enableSSHAgentAuth = true;
+      security.pam.sshAgentAuth = {
+        # Must be specified, as nixpkgs CI expects everything to eval without warning
+        authorizedKeysFiles = [ "/etc/ssh/authorized_keys.d/%u" ];
+        enable = true;
+      };
       security.${lib.replaceStrings [ "_" ] [ "-" ] n} = {
         enable = true;
         wheelNeedsPassword = true;  # We are checking `pam_ssh_agent_auth(8)` works for a sudoer
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-14 03:59:53 +0000