diff options
| author | Robert Hensing <robert@roberthensing.nl> | 2021-06-15 12:23:09 +0200 |
|---|---|---|
| committer | github-actions[bot] <github-actions[bot]@users.noreply.github.com> | 2021-06-15 19:42:28 +0000 |
| commit | 91d03cd360571711227ba40d582a4a788d3af1fc (patch) | |
| tree | 4a5786e3909200f9b794240ad677ad42761d4289 | |
| parent | nixos/ssh: Add an example of verbatim keys (diff) | |
| download | nixpkgs-91d03cd360571711227ba40d582a4a788d3af1fc.tar.gz | |
nixos/ssh: Document authorizedKeysFiles properly
(cherry picked from commit dab747106e20268e6d3a7c1a758185bc75507bef)
| -rw-r--r-- | nixos/modules/services/networking/ssh/sshd.nix | 12 |
1 files changed, 11 insertions, 1 deletions
diff --git a/nixos/modules/services/networking/ssh/sshd.nix b/nixos/modules/services/networking/ssh/sshd.nix index fd5da97cd100..7ac0952defe6 100644 --- a/nixos/modules/services/networking/ssh/sshd.nix +++ b/nixos/modules/services/networking/ssh/sshd.nix @@ -247,7 +247,17 @@ in authorizedKeysFiles = mkOption { type = types.listOf types.str; default = []; - description = "Files from which authorized keys are read."; + description = '' + Specify the rules for which files to read on the host. + + This is an advanced option. If you're looking to configure user + keys, you can generally use <xref linkend="opt-users.users._name_.openssh.authorizedKeys.keys"/> + or <xref linkend="opt-users.users._name_.openssh.authorizedKeys.keyFiles"/>. + + These are paths relative to the host root file system or home + directories and they are subject to certain token expansion rules. + See AuthorizedKeysFile in man sshd_config for details. + ''; }; authorizedKeysCommand = mkOption { |