chore: refactor system modules

system/users/default.nix

@@ -0,0 +1,5 @@
+{
+  imports = [
+    ./phundrak.nix
+  ];
+}

system/users/keys/id_alys.pub

@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHTv1lb6d99O84jeh6GdjPm8Gnt/HncSRhGhmoTq7BMK lucien@phundrak.com

system/users/keys/id_gampo.pub

@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBPhP4p9KGk6jSOxJzBu+RzJPHI6baT0o+xrgPeNRwfq lucien@phundrak.com

system/users/keys/id_marpa.pub

@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILw9oiK8tZ5Vpz82RaRLpITU8qeJrT2hjvudGEDQu2QW lucien@phundrak.com

system/users/keys/id_opn4.pub

@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFVzXgt8Md+PgOMM3qcBIR/a8uf5s6dnxGbFlG9yD+Gx lucien@phundrak.com

system/users/keys/id_tilo.pub

@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ7GXp4OfK2j1+7TMjVBL29Ol/6nsEMbfE2wRGkjk3Ya lucien@phundrak.com

system/users/phundrak.nix

@@ -0,0 +1,31 @@
+{
+  lib,
+  config,
+  pkgs,
+  ...
+}:
+with lib; let
+  cfg = config.system.users;
+in {
+  options.system.users = {
+    root.disablePassword = mkEnableOption "Disables root password";
+    phundrak.enable = mkEnableOption "Enables users phundrak";
+  };
+
+  config = {
+    users.users = {
+      root = {
+        hashedPassword = mkIf cfg.root.disablePassword "*";
+        shell = pkgs.zsh;
+      };
+      phundrak = mkIf cfg.phundrak.enable {
+        isNormalUser = true;
+        description = "Lucien Cartier-Tilet";
+        extraGroups = ["networkmanager" "wheel" "docker" "dialout" "podman"];
+        shell = pkgs.zsh;
+        openssh.authorizedKeys.keyFiles = lib.filesystem.listFilesRecursive ./keys;
+      };
+    };
+    programs.zsh.enable = true;
+  };
+}