dotfiles.nix/nixos/common/optional/key.nix

{ pkgs, ... }:

{
  environment.systemPackages = with pkgs; [
    # Configure your YubiKey via the command line
    yubikey-manager
    # Enables files to be encrypted to age identities stored on YubiKeys
    age-plugin-yubikey
  ];

  # GPG and SSH support
  # services.udev.packages = [ pkgs.yubikey-personalization ];

  # programs.gnupg.agent = {
  #   enable = true;
  #   enableSSHSupport = true;
  # };

  # Use our yubikey as a user login or for sudo access 
  security.pam.services = {
    login.u2fAuth = true;
    sudo.u2fAuth = true;
  };
}
refactor nixos 2024-01-21 21:03:57 +08:00			`{ pkgs, ... }:`

			`{`
			`environment.systemPackages = with pkgs; [`
			`# Configure your YubiKey via the command line`
			`yubikey-manager`
			`# Enables files to be encrypted to age identities stored on YubiKeys`
			`age-plugin-yubikey`
			`];`

			`# GPG and SSH support`
remove gpg agent 2024-01-22 08:32:44 +08:00			`# services.udev.packages = [ pkgs.yubikey-personalization ];`
refactor nixos 2024-01-21 21:03:57 +08:00
remove gpg agent 2024-01-22 08:32:44 +08:00			`# programs.gnupg.agent = {`
			`# enable = true;`
			`# enableSSHSupport = true;`
			`# };`
refactor nixos 2024-01-21 21:03:57 +08:00
			`# Use our yubikey as a user login or for sudo access`
			`security.pam.services = {`
			`login.u2fAuth = true;`
			`sudo.u2fAuth = true;`
			`};`
			`}`