update bootstrap

services/remnawave/remnawave-nodes/boostrap.sh

@@ -69,13 +69,15 @@ log "Configuring passwordless sudo for ${ADMIN_USER}"
 echo "${ADMIN_USER} ALL=(ALL) NOPASSWD:ALL" >/etc/sudoers.d/90-${ADMIN_USER}
 chmod 440 /etc/sudoers.d/90-${ADMIN_USER}
 
-if [[ -f /root/.ssh/authorized_keys ]]; then
+log "Installing SSH key for ${ADMIN_USER}"
+
 mkdir -p "/home/${ADMIN_USER}/.ssh"
-  cp /root/.ssh/authorized_keys "/home/${ADMIN_USER}/.ssh/authorized_keys"
+
+echo "${SSH_PUBLIC_KEY}" > "/home/${ADMIN_USER}/.ssh/authorized_keys"
+
 chown -R "${ADMIN_USER}:${ADMIN_USER}" "/home/${ADMIN_USER}/.ssh"
 chmod 700 "/home/${ADMIN_USER}/.ssh"
 chmod 600 "/home/${ADMIN_USER}/.ssh/authorized_keys"
-fi
 
 log "Hardening SSH"
 

services/remnawave/remnawave-nodes/node.env.template

@@ -8,6 +8,12 @@ ADMIN_USER=pvlx
 # SSH port (default 22)
 SSH_PORT=22
 
+#####################################
+# SSH key for admin user
+#####################################
+
+SSH_PUBLIC_KEY="ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQDHL6Qz4rVmRwQyx6KY1LZJTw39oN6VKZubKqfx61TJrNcVV/YrnyAIJneJRJVXrXZYTIKs/0mp5orKhTPHeSiJXIPI6xYstz5NobPcNRA2mqamUWXsmJ5W0oiksrB9ZyV2kPjgLDe9/QQK+C5pf6NK3S4q9dfk4yDTqcn7iDbVLbbANxGSLGAzWA1S5yUepVVq7KRBpadKR7kG88ZNtb0uYuGFWxgbZ6DYFNI+Xr7Ackqzn2EKhJeQYB6jUDog6rB2F2gd/iHcCsaSHjkdISrrghMUOosGm6+mOSGba/0QKW2jr8hm581QA6gplOZHFwNNeL1X4cb4S+48PyjKwzmh8dzRaKv0j/4C7XpoxWj2sZm0h4C4l+TZ+tliphg+IC4v/XiVn9yMqg72jvZTon4EAIHLkh4i4oBAGKr2Vn+rHx2owz2Ye9wwI/NEpZ/jMhcm45IT1L+AcLb8I9TNdAfvKA0sRfZwO866ACIVxYfktISK7ZCATVYpNAhq57fNNskrQwqZo5CJOljWKZJJVk1Cqjvhe//S+Nqyi+93LPQZXwROQnT2hayxUZ0XxxUGspvHVAoDCABH9rTOsDDqBRjZtBiNnAek7ho/azNXK0wo1hIJS6/MQm6ER7ybJJDgKsA5qb8jZtJd1UyznbUjSGLvlWhWQZfGXYS0tfOlZfjsYQ== pavel123357@gmail.com"
+
 #####################################
 # Node identity
 #####################################