From cf312afd2405181d642be1ebf5a2ddf40b35d9e9 Mon Sep 17 00:00:00 2001
From: Erwin Boskma <erwin@datarift.nl>
Date: Tue, 10 Jan 2023 08:19:13 +0100
Subject: [PATCH] Don't forward SSH agent globally

---
 home-manager/modules/ssh/default.nix | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/home-manager/modules/ssh/default.nix b/home-manager/modules/ssh/default.nix
index eb0f82e..0d89874 100644
--- a/home-manager/modules/ssh/default.nix
+++ b/home-manager/modules/ssh/default.nix
@@ -19,7 +19,6 @@ in
         "*" = {
           identityFile = if var.workSystem then horusKey else personalKey;
           identitiesOnly = true;
-          forwardAgent = true;
           extraOptions = {
             Ciphers = "chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes128-gcm@openssh.com,aes256-ctr,aes192-ctr,aes128-ctr";
             KexAlgorithms = "curve25519-sha256,curve25519-sha256@libssh.org,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group-exchange-sha256";
@@ -48,17 +47,14 @@ in
         };
 
         proxy = mkIf (!var.workSystem) {
-          forwardAgent = true;
           hostname = "10.0.0.251";
         };
 
         gitea = mkIf (!var.workSystem) {
-          forwardAgent = true;
           hostname = "10.0.0.201";
         };
 
         drone = mkIf (!var.workSystem) {
-          forwardAgent = true;
           hostname = "10.0.0.202";
         };