machine: Automatically authorize the coordinator's signing key.

* guix/ssh.scm (remote-authorize-signing-key): New variable. * gnu/machine/ssh.scm (deploy-managed-host): Authorize coordinator's signing key before any invocations of 'remote-eval'. (deploy-managed-host): Display an error if a signing key does not exist. * doc/guix.texi (Invoking guix deploy): Remove section describing manual signing key authorization. (Invoking guix deploy): Add section describing the 'authorize?' field.
author: Jakob L. Kreuze <zerodaysfordays@sdf.lonestar.org> 2019-08-15 04:06:41 -0400
committer: Christopher Lemmer Webber <cwebber@dustycloud.org> 2019-08-15 07:43:13 -0400
commit: 3033d59ac9a747b42a1fa6ca6664d4fbc62ca117 (patch)
tree: fa3b36f249a02165640d3135984add08d25b391d /doc
parent: 9c70c460a05b2bc60f3f3602f0a2dba0f79ce86c (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/doc/guix.texi b/doc/guix.texi
index e5cec7ad25..d80f62970d 100644
--- a/doc/guix.texi
+++ b/doc/guix.texi
@@ -25586,6 +25586,9 @@ with an @code{environment} of @code{managed-host-environment-type}.
 @item @code{system}
 The Nix system type describing the architecture of the machine being deployed
 to. This should look something like ``x86_64-linux''.
+@item @code{authorize?} (default: @code{#t})
+If true, the coordinator's signing key will be added to the remote's ACL
+keyring.
 @item @code{port} (default: @code{22})
 @item @code{user} (default: @code{"root"})
 @item @code{identity} (default: @code{#f})
author	Jakob L. Kreuze <zerodaysfordays@sdf.lonestar.org>	2019-08-15 04:06:41 -0400
committer	Christopher Lemmer Webber <cwebber@dustycloud.org>	2019-08-15 07:43:13 -0400
commit	3033d59ac9a747b42a1fa6ca6664d4fbc62ca117 (patch)
tree	fa3b36f249a02165640d3135984add08d25b391d /doc
parent	9c70c460a05b2bc60f3f3602f0a2dba0f79ce86c (diff)