From 42627235d19e7cc74d062313668c072c825d2e61 Mon Sep 17 00:00:00 2001
From: Max <max@privatevoid.net>
Date: Sun, 10 Nov 2024 13:07:33 +0100
Subject: [PATCH] cluster/services/idm: fix rssh

---
 cluster/services/idm/client.nix | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/cluster/services/idm/client.nix b/cluster/services/idm/client.nix
index d51bb14..d745acd 100644
--- a/cluster/services/idm/client.nix
+++ b/cluster/services/idm/client.nix
@@ -1,4 +1,4 @@
-{ cluster, config, pkgs, utils, ... }:
+{ cluster, config, lib, pkgs, utils, ... }:
 
 let
   frontendLink = cluster.config.links.idm;
@@ -39,9 +39,8 @@ in
   security = {
     pam.services.sudo = { config, ... }: {
       rules.auth.rssh = {
+        enable = lib.mkForce true;
         order = config.rules.auth.unix.order - 10;
-        control = "sufficient";
-        modulePath = "${pkgs.pam_rssh}/lib/libpam_rssh.so";
         settings = {
           authorized_keys_command = "/etc/ssh/authorized_keys_command_kanidm";
           authorized_keys_command_user = "nobody";