From bdaa858bdfa6c2cd2c8522a8ea3a69f0478a8f12 Mon Sep 17 00:00:00 2001
From: Martin Berg Alstad <git@martials.no>
Date: Sun, 29 Dec 2024 15:53:21 +0100
Subject: [PATCH] =?UTF-8?q?=F0=9F=94=90=20Security?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Turned off login with Yubikey.

Show prompt in terminal when key is inserted
---
 security.nix | 15 ++++++++++++---
 1 file changed, 12 insertions(+), 3 deletions(-)

diff --git a/security.nix b/security.nix
index c2eaa45..84e8a34 100644
--- a/security.nix
+++ b/security.nix
@@ -5,9 +5,18 @@
     yubioath-flutter
   ];
 
-  security.pam.services = {
-    login.u2fAuth = true;
-    sudo.u2fAuth = true;
+  security.pam = {
+    services = {
+      login.u2fAuth = false; # U2F and password
+      sudo.u2fAuth = true; # U2F or password
+    };
+    u2f = {
+      enable = true;
+      settings = {
+        cue = true; # Prompt: Please touch the device
+        interactive = false; # Prompt: Insert your U2F device, then press ENTER.
+      };
+    };
   };
 
   services = {