openssh: disabled ntfy-sh notification

ntfy-sh significantly slows down the login process.
2024-11-03 11:32:15 +07:00 · 2024-11-03 11:32:15 +07:00 · cae1ccb443
parent 0c372348bf
commit cae1ccb443
1 changed files with 27 additions and 27 deletions
--- a/system/modules/openssh.nix
+++ b/system/modules/openssh.nix
@ -44,33 +44,33 @@ lib.mkMerge [
      };
    };
-    sops.secrets."ntfy/tokens/homeserver" = {
+    # sops.secrets."ntfy/tokens/homeserver" = {
-      sopsFile = ../../secrets/ntfy.yaml;
+    #   sopsFile = ../../secrets/ntfy.yaml;
-    };
+    # };
-    sops.templates."ntfy-ssh-login.sh" = {
+    # sops.templates."ntfy-ssh-login.sh" = {
-      content = builtins.readFile (
+    #   content = builtins.readFile (
-        lib.meta.getExe (
+    #     lib.meta.getExe (
-          pkgs.writeShellScriptBin "ntfy-ssh-login.sh" # sh
+    #       pkgs.writeShellScriptBin "ntfy-ssh-login.sh" # sh
-            ''
+    #         ''
-              if [ "$PAM_TYPE" == "open_session" ]; then
+    #           if [ "$PAM_TYPE" == "open_session" ]; then
-                  ${getExe pkgs.curl} -X POST \
+    #               ${getExe pkgs.curl} -X POST \
-                      -H "X-Priority: 4" \
+    #                   -H "X-Priority: 4" \
-                      -H "X-Tags: warning" \
+    #                   -H "X-Tags: warning" \
-                      -H "Authorization: Bearer ${config.sops.placeholder."ntfy/tokens/homeserver"}" \
+    #                   -H "Authorization: Bearer ${config.sops.placeholder."ntfy/tokens/homeserver"}" \
-                      -H "X-Title: SSH login" \
+    #                   -H "X-Title: SSH login" \
-                      -d "$PAM_USER from $PAM_RHOST" \
+    #                   -d "$PAM_USER from $PAM_RHOST" \
-                      https://ntfy.tigor.web.id/ssh
+    #                   https://ntfy.tigor.web.id/ssh
-              fi
+    #           fi
-            ''
+    #         ''
-        )
+    #     )
-      );
+    #   );
-    };
+    # };
-
+    #
-    security.pam.services.sshd.text = lib.mkDefault (
+    # security.pam.services.sshd.text = lib.mkDefault (
-      lib.mkAfter ''
+    #   lib.mkAfter ''
-        session optional pam_exec.so ${getExe pkgs.bash} ${config.sops.templates."ntfy-ssh-login.sh".path}
+    #     session optional pam_exec.so ${getExe pkgs.bash} ${config.sops.templates."ntfy-ssh-login.sh".path}
-      ''
+    #   ''
-    );
+    # );
  })
  {
    profile.services.ntfy-sh.client.settings.subscribe = [