1 files changed, 9 insertions, 28 deletions

diff --git a/machines/nixos/x86_64-linux/rivendell.nix b/machines/nixos/x86_64-linux/rivendell.nix
index f106f83..0bd799c 100644
--- a/machines/nixos/x86_64-linux/rivendell.nix
+++ b/machines/nixos/x86_64-linux/rivendell.nix
@@ -1,9 +1,4 @@
-{
-  lib,
-  config,
-  adminUser,
-  ...
-}:
+{ lib, config, ... }:
 {
   imports = [
     ../../../profiles/authelia.nix
@@ -18,6 +13,8 @@
     ../../../profiles/remote-unlock.nix
     ../../../profiles/restic-backup.nix
     ../../../profiles/server.nix
+    ../../../profiles/users/builder.nix
+    ../../../profiles/users/fcuny.nix
     ../../../profiles/wireguard.nix
   ];
 
@@ -26,19 +23,6 @@
   networking.useDHCP = lib.mkDefault true;
   systemd.network.wait-online.anyInterface = lib.mkDefault config.networking.useDHCP;
 
-  users.users.builder = {
-    openssh.authorizedKeys.keys = [
-      # my personal key
-      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINBkozy+X96u5ciX766bJ/AyQ3xm1tXZTIr5+4PVFZFi"
-      # remote builder ssh key
-      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGFGxdplt9WwGjdhoYkmPe2opZMJShtpqnGCI+swrgvw"
-    ];
-    isNormalUser = true;
-    group = "nogroup";
-  };
-
-  nix.settings.trusted-users = [ "builder" ];
-
   services.website = {
     enable = true;
     openFirewall = true;
@@ -84,14 +68,11 @@
     openFirewall = true;
   };
 
-  home-manager = {
-    users.${adminUser.name} = {
-      imports = [
-        ../../../home/profiles/minimal.nix
-      ];
-      inherit (adminUser) userinfo;
-    };
-  };
-
   system.stateVersion = "23.11"; # Did you read the comment?
+
+  home-manager.users.fcuny = {
+    imports = [
+      ../../../home/profiles/minimal.nix
+    ];
+  };
 }