sourcehut: explicitly disallow openssh to socket-active

This breaks the (already fragile) gitsrht-dispatch -> gitsrht-keys command chain. Signed-off-by: Christoph Heiss <christoph@c8h4.io>
author: Christoph Heiss <christoph@c8h4.io> 2023-05-02 22:44:35 +0200
committer: Christoph Heiss <christoph@c8h4.io> 2023-11-11 13:01:47 +0100
commit: 5841d27497905b0411cba48f0f4cc8c1a1c1edd4 (patch)
tree: 43a5ce7b99a21f6a1dfb83f83a71d4f405fafa2b /nixos/modules/services/misc/sourcehut
parent: c39ba7f5b17747f34a7806c49cf91ccbaf9c81be (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/nixos/modules/services/misc/sourcehut/default.nix b/nixos/modules/services/misc/sourcehut/default.nix
index 7d8f07ac3926d..5b16aa21d7818 100644
--- a/nixos/modules/services/misc/sourcehut/default.nix
+++ b/nixos/modules/services/misc/sourcehut/default.nix
@@ -786,6 +786,7 @@ in
         extraConfig = ''
           PermitUserEnvironment SRHT_*
         '';
+        startWhenNeeded = false;
       };
       environment.etc."ssh/sourcehut/config.ini".source =
         settingsFormat.generate "sourcehut-dispatch-config.ini"
author	Christoph Heiss <christoph@c8h4.io>	2023-05-02 22:44:35 +0200
committer	Christoph Heiss <christoph@c8h4.io>	2023-11-11 13:01:47 +0100
commit	5841d27497905b0411cba48f0f4cc8c1a1c1edd4 (patch)
tree	43a5ce7b99a21f6a1dfb83f83a71d4f405fafa2b /nixos/modules/services/misc/sourcehut
parent	c39ba7f5b17747f34a7806c49cf91ccbaf9c81be (diff)