aires/nix-configuration
aires/nix-configuration
1
0
Fork 0
Code Actions Activity

Limit users who can run Nix

Browse source
This commit is contained in:
Aires 2024-05-09 12:19:33 -04:00
parent 5c10ed17eb
commit b816d82163
1 changed files with 7 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
modules/base/nix.nix
View file

@ -19,8 +19,14 @@
extra-substituters = [ "https://cache.lix.systems" ]; extra-substituters = [ "https://cache.lix.systems" ];
trusted-public-keys = [ "cache.lix.systems:aBnZUw8zA7H35Cz2RyKFVs3H4PlGTLawyY5KRbvJR8o=" ]; trusted-public-keys = [ "cache.lix.systems:aBnZUw8zA7H35Cz2RyKFVs3H4PlGTLawyY5KRbvJR8o=" ];
# Only allow these users to use Nix
allowed-users = [
"root"
config.users.users.aires.name
];
# Avoid signature verification messages when doing remote builds # Avoid signature verification messages when doing remote builds
trusted-users = [ "${config.users.users.aires.name}" ]; trusted-users = [ config.users.users.aires.name ];
}; };
# Enable periodic nix store optimization # Enable periodic nix store optimization