{ pkgs, inputs, config, lib, ... }:
let
  pubKeys = lib.filesystem.listFilesRecursive (../keys);
  hostname = config.networking.hostName;
  sopsHashedPasswordFile = lib.optionalString (lib.hasAttr "sops-nix" inputs) config.sops.secrets."passwords/media".path;
in 
{
  users.users.media = {
    isNormalUser = true;
    shell = pkgs.zsh; # default shell
    #hashedPasswordFile = sopsHashedPasswordFile;
    password = "nixos";
    openssh.authorizedKeys.keys = lib.lists.forEach pubKeys (key: builtins.readFile key);

    extraGroups =
       [ "qemu-libvirtd" "libvirtd" 
         "wheel" "video" "audio" "disk" "networkmanager" 
       ]; 

  };

  programs.zsh.enable = true;
  programs.fuse.userAllowOther = true;

  home-manager = {
    extraSpecialArgs = { inherit inputs; };
    users = {
      media = import ../../../../home/${hostname}.nix;
    };
  };

  environment.systemPackages = [
  ]; 
}