From d2b9dd528e86d44cec5c16db563411659a4e94ce Mon Sep 17 00:00:00 2001
From: Peder Bergebakken Sundt <pbsds@hotmail.com>
Date: Thu, 10 Oct 2024 19:20:20 +0200
Subject: [PATCH] make darwin key root only

---
 profiles/remote-builders.nix      | 6 +-----
 users/pbsds/default.nix           | 2 +-
 users/pbsds/home/profiles/ssh.nix | 2 +-
 3 files changed, 3 insertions(+), 7 deletions(-)

diff --git a/profiles/remote-builders.nix b/profiles/remote-builders.nix
index e36089b..6fc7a43 100644
--- a/profiles/remote-builders.nix
+++ b/profiles/remote-builders.nix
@@ -57,12 +57,8 @@ let
       '';
 
       sops.secrets = lib.mkIf (lib.hasPrefix "/run/secrets/" (thatHost.ssh.userPrivateKey or "")) {
-        "${lib.removePrefix "/run/secrets/" thatHost.ssh.userPrivateKey}" = {
-          mode = "0440";
-          group = "nix-community-builder";
-        };
+        "${lib.removePrefix "/run/secrets/" thatHost.ssh.userPrivateKey}" = { };
       };
-      users.groups.nix-community-builder = {};
 
     })
     # in
diff --git a/users/pbsds/default.nix b/users/pbsds/default.nix
index 9dfd2e3..122c07a 100644
--- a/users/pbsds/default.nix
+++ b/users/pbsds/default.nix
@@ -42,7 +42,7 @@
     extraGroups = [
       "pbsds"
       "users" # backward compat
-      "nix-community-builder"
+      #"nix-community-builder"
       "networkmanager"
       "audio"
       "sound"
diff --git a/users/pbsds/home/profiles/ssh.nix b/users/pbsds/home/profiles/ssh.nix
index d5773cc..9a96387 100644
--- a/users/pbsds/home/profiles/ssh.nix
+++ b/users/pbsds/home/profiles/ssh.nix
@@ -41,7 +41,7 @@
     "rocm.pbsds.net".proxyJump = "isvegg.pvv.ntnu.no";
 
     # nix-community
-    "darwin-build-box.nix-community.org" = {};
+    #"darwin-build-box.nix-community.org" = {};
 
     # ntnu
     "garmr.idi.ntnu.no".forwardX11 = true;