feat(ssh): Using SSH over the HTTPS port for GitHub, refactor ssh config (#187)

modules/base.nix

@@ -82,7 +82,7 @@
     #      ```
     #    2. Never leave the device and never sent over the network.
     # 2. Or just use hardware security keys like Yubikey/CanoKey.
-    openssh.authorizedKeys.keys = myvars.sshAuthorizedKeys;
+    openssh.authorizedKeys.keys = myvars.mainSshAuthorizedKeys;
   };
 
   nix.settings = {

modules/darwin/ssh.nix

@@ -0,0 +1,5 @@
+{myvars, ...}: {
+  services.openssh.enable = false;
+
+  programs.ssh = myvars.networking.ssh;
+}

modules/nixos/base/user-group.nix

@@ -39,7 +39,7 @@
 
   # root's ssh key are mainly used for remote deployment
   users.users.root = {
-    initialHashedPassword = config.users.users."${myvars.username}".initialHashedPassword;
-    openssh.authorizedKeys.keys = config.users.users."${myvars.username}".openssh.authorizedKeys.keys;
+    inherit (myvars) initialHashedPassword;
+    openssh.authorizedKeys.keys = myvars.mainSshAuthorizedKeys ++ myvars.secondaryAuthorizedKeys;
   };
 }