Browse code
chore: enable gpg signing for github
Edward Langley authored on 21/06/2023 09:04:16
Showing 1 changed files
Showing 1 changed files
... | ... |
@@ -29,6 +29,8 @@ |
29 | 29 |
}; |
30 | 30 |
}; |
31 | 31 |
in { |
32 |
+ home.file.".ssh/allowed_signers".text = "* ${builtins.readFile "${homeDirectory}/.ssh/id_ed25519.pub"}"; |
|
33 |
+ |
|
32 | 34 |
nixpkgs.overlays = common_home.overlays; |
33 | 35 |
|
34 | 36 |
## Doesn't work??? |
... | ... |
@@ -66,11 +68,17 @@ in { |
66 | 68 |
userEmail = "el-github@elangley.org"; |
67 | 69 |
userName = "Edward Langley"; |
68 | 70 |
extraConfig = { |
71 |
+ commit = {gpgsign = true;}; |
|
69 | 72 |
github = {user = "fiddlerwoaroof";}; |
73 |
+ gpg = { |
|
74 |
+ format = "ssh"; |
|
75 |
+ allowedSignersFile = "${homeDirectory}/.ssh/allowed_signers"; |
|
76 |
+ }; |
|
70 | 77 |
init = {defaultBranch = "main";}; |
71 | 78 |
merge = {autoStash = true;}; |
72 | 79 |
pull = {rebase = false;}; |
73 | 80 |
rebase = {autoStash = true;}; |
81 |
+ user = {signingkey = "${homeDirectory}/.ssh/id_ed25519.pub";}; |
|
74 | 82 |
}; |
75 | 83 |
}; |
76 | 84 |
tmux = { |