cf10d7aef8
* services.openssh: support freeform settings Keep "extraConfig" but introduces "settings". Also renames several options (mkRenamedOptionModule [ "services" "openssh" "kbdInteractiveAuthentication" ] [ "services" "openssh" "settings" "KbdInteractiveAuthentication" ]) (mkRenamedOptionModule [ "services" "openssh" "passwordAuthentication" ] [ "services" "openssh" "settings" "PasswordAuthentication" ]) (mkRenamedOptionModule [ "services" "openssh" "useDns" ] [ "services" "openssh" "settings" "UseDns" ]) (mkRenamedOptionModule [ "services" "openssh" "permitRootLogin" ] [ "services" "openssh" "settings" "PermitRootLogin" ]) * updated doc * regen doc
40 lines
951 B
Nix
40 lines
951 B
Nix
{ lib, pkgs, ... }:
|
|
|
|
with lib;
|
|
|
|
{
|
|
imports = [
|
|
../profiles/qemu-guest.nix
|
|
];
|
|
|
|
config = {
|
|
fileSystems."/" = {
|
|
device = "/dev/disk/by-label/nixos";
|
|
autoResize = true;
|
|
};
|
|
|
|
boot.growPartition = true;
|
|
boot.kernelParams = [ "console=tty0" ];
|
|
boot.loader.grub.device = "/dev/vda";
|
|
boot.loader.timeout = 0;
|
|
|
|
# Allow root logins
|
|
services.openssh = {
|
|
enable = true;
|
|
settings.PermitRootLogin = "prohibit-password";
|
|
};
|
|
|
|
# Cloud-init configuration.
|
|
services.cloud-init.enable = true;
|
|
# Wget is needed for setting password. This is of little use as
|
|
# root password login is disabled above.
|
|
environment.systemPackages = [ pkgs.wget ];
|
|
# Only enable CloudStack datasource for faster boot speed.
|
|
environment.etc."cloud/cloud.cfg.d/99_cloudstack.cfg".text = ''
|
|
datasource:
|
|
CloudStack: {}
|
|
None: {}
|
|
datasource_list: ["CloudStack"]
|
|
'';
|
|
};
|
|
}
|