mail2-nixos-config/checkmk-agent.nix

{ lib, pkgs, ... }:

let
  agentcmd = "${ (pkgs.callPackage ./checkmk-agent/default.nix { }) }/bin/check_mk_agent.sshwrapper";
in
{
  users.users.mon = {
    isNormalUser = true;
    extraGroups = [ "wheel" ];
    openssh.authorizedKeys.keys = [
      ''restrict,command="${ agentcmd }" ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGHkivi9Ye/Uj4ZQxrEfarSaz0iLF/XXhY/crNsLoDMu checkmk''
    ];
  };
  security.sudo.extraConfig = ''
    ## Allow the monitor user to run commands as root
    mon       ALL=(ALL)       NOPASSWD: ALL
    '';
}
add the checkmk agent and config 2024-08-21 01:16:00 +02:00			`{ lib, pkgs, ... }:`

			`let`
remove old monitoring user and try to fix sudo for the new user 2024-08-21 01:21:45 +02:00			`agentcmd = "${ (pkgs.callPackage ./checkmk-agent/default.nix { }) }/bin/check_mk_agent.sshwrapper";`
add the checkmk agent and config 2024-08-21 01:16:00 +02:00			`in`
			`{`
			`users.users.mon = {`
remove old monitoring user and try to fix sudo for the new user 2024-08-21 01:21:45 +02:00			`isNormalUser = true;`
			`extraGroups = [ "wheel" ];`
			`openssh.authorizedKeys.keys = [`
			`''restrict,command="${ agentcmd }" ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGHkivi9Ye/Uj4ZQxrEfarSaz0iLF/XXhY/crNsLoDMu checkmk''`
add the checkmk agent and config 2024-08-21 01:16:00 +02:00			`];`
remove old monitoring user and try to fix sudo for the new user 2024-08-21 01:21:45 +02:00			`};`
			`security.sudo.extraConfig = ''`
			`## Allow the monitor user to run commands as root`
			`mon ALL=(ALL) NOPASSWD: ALL`
			`'';`
add the checkmk agent and config 2024-08-21 01:16:00 +02:00			`}`