diff options
author | Maciej Krüger <mkg20001@gmail.com> | 2024-01-08 17:42:02 +0100 |
---|---|---|
committer | GitHub <noreply@github.com> | 2024-01-08 17:42:02 +0100 |
commit | b5b2f6bec4b2b1ae2d51813011632bbceb893c7d (patch) | |
tree | 1364d16d90a79465ebb84a18e726d955d273592a /nixos/tests | |
parent | a046f198b2922197b9de9cb2b06bb78a1ce462b9 (diff) | |
parent | 2eac5106f1f9628025e9b1bf269f25642ff9690c (diff) | |
download | nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar.gz nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar.bz2 nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar.lz nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar.xz nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.tar.zst nixlib-b5b2f6bec4b2b1ae2d51813011632bbceb893c7d.zip |
Merge pull request #277620 from nbraud/nixos/pam/ssh-agent-auth-31611
nixos/pam: Add option for ssh-agent auth's trusted authorized_keys files
Diffstat (limited to 'nixos/tests')
-rw-r--r-- | nixos/tests/ssh-agent-auth.nix | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/nixos/tests/ssh-agent-auth.nix b/nixos/tests/ssh-agent-auth.nix index 2274e463ce95..fee40afd6153 100644 --- a/nixos/tests/ssh-agent-auth.nix +++ b/nixos/tests/ssh-agent-auth.nix @@ -15,7 +15,11 @@ import ./make-test-python.nix ({ lib, pkgs, ... }: foo.isNormalUser = true; }; - security.pam.enableSSHAgentAuth = true; + security.pam.sshAgentAuth = { + # Must be specified, as nixpkgs CI expects everything to eval without warning + authorizedKeysFiles = [ "/etc/ssh/authorized_keys.d/%u" ]; + enable = true; + }; security.${lib.replaceStrings [ "_" ] [ "-" ] n} = { enable = true; wheelNeedsPassword = true; # We are checking `pam_ssh_agent_auth(8)` works for a sudoer |