43 lines
919 B
Nix
43 lines
919 B
Nix
{ config, lib, pkgs, ... }: with lib; let
|
|
directoryModule = { name, ... }: {
|
|
options = {
|
|
name = mkOption {
|
|
type = types.str;
|
|
default = last (splitString "/" name);
|
|
};
|
|
fetch = mkOption {
|
|
type = types.bool;
|
|
default = true;
|
|
};
|
|
upload = mkOption {
|
|
type = types.bool;
|
|
default = false;
|
|
};
|
|
};
|
|
};
|
|
endpointOption = mkOption {
|
|
type = types.str;
|
|
description = "API endpoint url";
|
|
default = "https://pki.shimun.net";
|
|
};
|
|
|
|
|
|
in
|
|
{
|
|
options = {
|
|
services.ssh-cert-dist = {
|
|
enable = mkEnableOption "ssh-cert-dist";
|
|
endpoint = endpointOption;
|
|
directories = mkOption {
|
|
type = with types; attrsOf (submodule directoryModule);
|
|
default = { };
|
|
};
|
|
};
|
|
programs.ssh-cert-dist = {
|
|
enable = mkEnableOption "ssh-cert-dist client";
|
|
endpoint = endpointOption;
|
|
};
|
|
};
|
|
|
|
}
|