diff options
Diffstat (limited to 'sys/auth')
| -rw-r--r-- | sys/auth/openssh.nix | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/sys/auth/openssh.nix b/sys/auth/openssh.nix index eaa28c2..0569f17 100644 --- a/sys/auth/openssh.nix +++ b/sys/auth/openssh.nix @@ -2,6 +2,7 @@ with lib; let cfg = config.local.auth.openssh; withOath = config.local.auth.oath.enable; + withPassword = config.local.auth.openssh.passwordAuthentication; port = if cfg.shiftPortNumber then 2234 else 22; restrict = cfg.restrictListen; @@ -43,6 +44,11 @@ in }); }; + passwordAuthentication = mkOption { + type = types.bool; + default = false; + }; + shiftPortNumber = mkOption { type = types.bool; default = true; @@ -122,7 +128,7 @@ in settings = { X11Forwarding = config.local.seat.enable && config.local.seat.graphical; PermitRootLogin = "prohibit-password"; - PasswordAuthentication = withOath; # Necesario para oath, no reemplaza a oath + PasswordAuthentication = withOath || withPassword; # Necesario para oath, no reemplaza a oath }; listenAddresses = mkIf (restrict != null) |