Gitiles
Code Review Sign In
git.clicks.codes / Minion / NixFiles / 68791c87ed661e3a527e1ed30e588589c2e48208 / . / modules / users.nix
blob: bd3f46f12e7d47616f54015362c8866a2c887861 [file] [log] [blame]
Skyler Greybcb2cb72022-08-21 07:24:35 +0100[diff] [blame]1{
2 pkgs,
3 config,
4 username,
5 ...
6}: {
7 config = {
8 users.mutableUsers = false;
Skyler Grey6aa7c262022-08-20 22:22:03 +0100[diff] [blame]9
Skyler Greybcb2cb72022-08-21 07:24:35 +0100[diff] [blame]10 users.users.${username} = {
11 isNormalUser = true;
Skyler Grey7bd7cb22022-09-01 23:41:57 +0100[diff] [blame]12 extraGroups = ["wheel" "kvm" "docker" "containerd" "dialout" "libvirtd" "video" "tty" config.users.groups.keys.name];
Skyler Greybcb2cb72022-08-21 07:24:35 +0100[diff] [blame]13 shell = pkgs.zsh;
Skyler Grey7bd7cb22022-09-01 23:41:57 +0100[diff] [blame]14 passwordFile = config.sops.secrets.password.path;
Skyler Greybcb2cb72022-08-21 07:24:35 +0100[diff] [blame]15 };
Skyler Greydbc5ac72022-09-09 08:17:02 +0100[diff] [blame]16 users.users.root = {
17 passwordFile = config.sops.secrets.password.path;
18 # Important for physlock + sleep
19 };
Skyler Greybcb2cb72022-08-21 07:24:35 +0100[diff] [blame]20
Skyler Grey7bd7cb22022-09-01 23:41:57 +0100[diff] [blame]21 environment.persistence."/nix/persist".users.${username}.directories = ["Code" "Documents" "Pictures"];
22 sops.secrets.password = {
23 mode = "0400";
24 neededForUsers = true;
25 };
Skyler Greybcb2cb72022-08-21 07:24:35 +0100[diff] [blame]26 };
Skyler Grey6aa7c262022-08-20 22:22:03 +0100[diff] [blame]27}