remove remote builder config

2026-02-24 17:53:46 +01:00 · 2026-02-24 17:53:46 +01:00 · bbff7f0ce1
commit bbff7f0ce1
parent b600a48377
4 changed files with 0 additions and 81 deletions
--- a/machines/genepi/builder.nix
+++ b/machines/genepi/builder.nix
@ -1,13 +0,0 @@
 { self, ... }:
 {
  imports = [
    self.nixosModules.remote-builder
  ];
  roles.remote-builder = {
    enable = true;
    authorizedKeys = [
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGa8R8obgptefcp27Cdp9bc2fiyc9x0oTfMsTPFp2ktE rpqt@haze"
    ];
  };
 }
--- a/machines/genepi/configuration.nix
+++ b/machines/genepi/configuration.nix
@ -6,7 +6,6 @@
  imports = [
    ./actual.nix
    ./boot.nix
    ./builder.nix
    ./freshrss.nix
    ./glance.nix
    ./homeassistant.nix
--- a/machines/haze/configuration.nix
+++ b/machines/haze/configuration.nix
@ -56,22 +56,6 @@
  programs.kdeconnect.enable = true;
  # Remote builds
  nix = {
    distributedBuilds = true;
    buildMachines = [
      {
        sshUser = "nixremote";
        sshKey = "/etc/ssh/ssh_host_ed25519_key";
        systems = [ "aarch64-linux" ];
        hostName = "genepi";
      }
    ];
    extraOptions = ''
      builders-use-substitutes = true
    '';
  };
  nixpkgs.config.allowUnfree = true;
  i18n.supportedLocales = [
--- a/nixosModules/remote-builder.nix
+++ b/nixosModules/remote-builder.nix
@ -1,51 +0,0 @@
 { config, lib, ... }:
 let
  cfg = config.roles.remote-builder;
 in
 {
  options = {
    roles.remote-builder = {
      enable = lib.mkEnableOption {
        description = "Whether to allow remote building on this machine";
      };
      user = lib.mkOption {
        type = lib.types.str;
        default = "nixremote";
        example = "remote-builder";
        description = "The name of the user used to run the builds";
      };
      group = lib.mkOption {
        type = lib.types.str;
        default = "${cfg.user}";
        example = "remote-builder";
        description = "The group of the user used to run the builds";
      };
      authorizedKeys = lib.mkOption {
        type = lib.types.listOf lib.types.str;
        default = [ ];
        example = [ "ssh-ed25519 AAAA... user@host" ];
        description = "List of SSH keys authorized to run builds on this machine";
      };
    };
  };
  config = lib.mkIf cfg.enable {
    users.users."${cfg.user}" = {
      createHome = true;
      home = "/home/${cfg.user}";
      isSystemUser = true;
      group = cfg.group;
      useDefaultShell = true;
      openssh.authorizedKeys.keys = map (
        key: ''restrict,command="nix-daemon --stdio" ${key}''
      ) cfg.authorizedKeys;
    };
    users.groups.${cfg.user} = { };
    nix.settings.trusted-users = [ cfg.user ];
  };
 }