nixos/virtualisation: allow configuring openssh root login on GCE

This commit makes the OpenSSH option `PermitRootLogin` available to be configured by other NixOS modules when using the Google Cloud Engine (GCE) NixOS image builder. Other options like `PasswordAuthentication` were already configurable, so I think it makes sense to make `PermitRootLogin` configurable as well is order to disable it completely, for example.
2023-09-16 14:52:02 -04:00 · 2023-09-16 14:52:02 -04:00 · 66100e22f6
commit 66100e22f6
parent 982a9bcc79
1 changed files with 1 additions and 1 deletions
--- a/nixos/modules/virtualisation/google-compute-config.nix
+++ b/nixos/modules/virtualisation/google-compute-config.nix
@ -39,7 +39,7 @@ in
  # Allow root logins only using SSH keys
  # and disable password authentication in general
  services.openssh.enable = true;
-  services.openssh.settings.PermitRootLogin = "prohibit-password";
+  services.openssh.settings.PermitRootLogin = mkDefault "prohibit-password";
  services.openssh.settings.PasswordAuthentication = mkDefault false;

  # enable OS Login. This also requires setting enable-oslogin=TRUE metadata on