mirror of
https://github.com/Swarsel/.dotfiles.git
synced 2026-04-14 21:29:12 +02:00
39 lines
1.3 KiB
Nix
39 lines
1.3 KiB
Nix
{ pkgs, config, lib, globals, minimal, ... }:
|
|
{
|
|
options.swarselmodules.users = lib.mkEnableOption "user config";
|
|
config = lib.mkIf config.swarselmodules.users {
|
|
sops.secrets.main-user-hashed-pw = lib.mkIf (!config.swarselsystems.isPublic) { neededForUsers = true; };
|
|
|
|
users = {
|
|
mutableUsers = lib.mkIf (!minimal) false;
|
|
users = {
|
|
root = {
|
|
inherit (globals.root) hashedPassword;
|
|
# shell = pkgs.zsh;
|
|
};
|
|
"${config.swarselsystems.mainUser}" = {
|
|
isNormalUser = true;
|
|
uid = 1000;
|
|
autoSubUidGidRange = false;
|
|
subUidRanges = [
|
|
{
|
|
count = 65534;
|
|
startUid = 100001;
|
|
}
|
|
];
|
|
subGidRanges = [
|
|
{
|
|
count = 999;
|
|
startGid = 1001;
|
|
}
|
|
];
|
|
description = "Leon S";
|
|
password = lib.mkIf (minimal || config.swarselsystems.isPublic) "setup";
|
|
hashedPasswordFile = lib.mkIf (!minimal && !config.swarselsystems.isPublic) config.sops.secrets.main-user-hashed-pw.path;
|
|
extraGroups = [ "wheel" ] ++ lib.optionals (!minimal && !config.swarselsystems.isMicroVM) [ "networkmanager" "syncthing" "docker" "lp" "audio" "video" "vboxusers" "libvirtd" "scanner" ];
|
|
packages = with pkgs; [ ];
|
|
};
|
|
};
|
|
};
|
|
};
|
|
}
|