43 lines
907 B
Nix
43 lines
907 B
Nix
{ lib
|
|
, pkgs
|
|
, config
|
|
, ...
|
|
}:
|
|
|
|
with lib; let
|
|
cfg = config.simmer.openssh;
|
|
in
|
|
{
|
|
options.simmer.openssh = {
|
|
enable = mkOption {
|
|
description = "Whether to enable openssh server";
|
|
type = types.bool;
|
|
default = false;
|
|
};
|
|
|
|
port = mkOption {
|
|
description = "What port the server should run on";
|
|
type = types.int;
|
|
default = 22;
|
|
};
|
|
|
|
allow-password = mkOption {
|
|
description = "Whether the server should allow password authenitication" ;
|
|
type = types.bool;
|
|
default = false;
|
|
};
|
|
};
|
|
|
|
config = mkIf cfg.enable {
|
|
services.openssh = {
|
|
enable = true;
|
|
ports = [ cfg.port ];
|
|
settings = {
|
|
PermitRootLogin = "no";
|
|
PasswordAuthentication = false;
|
|
};
|
|
};
|
|
};
|
|
|
|
}
|