all: add breakglass ssh key

2023-05-30 11:16:56 -06:00 · 2023-05-30 11:16:56 -06:00 · 1ceaf24133
commit 1ceaf24133
parent 8fbe1f2ab7
1 changed files with 3 additions and 1 deletions
--- a/default.nix
+++ b/default.nix
@ -8,6 +8,8 @@ let
    name = "ssh-ca-pubkeys";
    text = caPubKeys;
  };
+  breakGlassKey =
+    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA6CO4aa8ymIgPgHRMwVLPnkUXwFQRKJa66R3wGXrAS0 BreakGlass";
  managementKey =
    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDM2k2C6Ufx5RNf4qWA9BdQHJfAkskOaqEWf8yjpySwH Nix Manager";
  statusKey = ''
@ -36,7 +38,7 @@ in {
  options.myconf = {
    managementPubKeys = lib.mkOption rec {
      type = lib.types.listOf lib.types.str;
-      default = [ managementKey statusKey ];
+      default = [ managementKey statusKey breakGlassKey ];
      example = default;
      description = "List of management public keys to use";
    };