flakes/modules/nixos/hardware/yubico/default.nix

{
  config,
  lib,
  pkgs,
  ...
}:
{
  options.snowflake.hardware.yubico.enable = lib.mkEnableOption "Enable yubico hardware support";

  config = lib.mkIf config.snowflake.hardware.yubico.enable {
    # Enable FIDO authentication support.
    # ref: https://nixos.wiki/wiki/Yubikey
    security.pam = {
      u2f.enable = true;
      services = {
        login.u2fAuth = true;
        sudo.u2fAuth = true;
      };
    };
    services.udev.packages = [ pkgs.yubikey-personalization ];
  };
}
feat: add nixos configuration based on snowfall-lib Signed-off-by: Chinmay D. Pai <chinmaydpai@gmail.com> 2024-09-02 18:31:19 +05:30			`{`
			`config,`
			`lib,`
			`pkgs,`
			`...`
			`}:`
			`{`
			`options.snowflake.hardware.yubico.enable = lib.mkEnableOption "Enable yubico hardware support";`

			`config = lib.mkIf config.snowflake.hardware.yubico.enable {`
			`# Enable FIDO authentication support.`
			`# ref: https://nixos.wiki/wiki/Yubikey`
			`security.pam = {`
			`u2f.enable = true;`
			`services = {`
			`login.u2fAuth = true;`
			`sudo.u2fAuth = true;`
			`};`
			`};`
			`services.udev.packages = [ pkgs.yubikey-personalization ];`
			`};`
			`}`