foodogsquared/nixos-config
1
0
Fork 0
mirror of https://github.com/foo-dogsquared/nixos-config.git synced 2025-02-07 18:19:09 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

services/wezterm-mux-server: revert to system user for service

Browse Source 
I don't know how to completely make it isolated AND working.
This commit is contained in:
Gabriel Arazas 2023-10-14 11:05:17 +08:00
parent 9527896251
commit 6012556a3d
No known key found for this signature in database
GPG Key ID: ADE0C41DAB221FCC
1 changed files with 12 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
modules/nixos/services/wezterm-mux-server.nix
View File

@ -39,9 +39,8 @@ in
# Give it some tough love. # Give it some tough love.
serviceConfig = { serviceConfig = {
User = "wezterm"; User = config.users.users.wezterm.name;
Group = "wezterm"; Group = config.users.groups.wezterm.name;
DynamicUser = true;
LockPersonality = true; LockPersonality = true;
NoNewPrivileges = true; NoNewPrivileges = true;
@ -80,5 +79,15 @@ in
RestrictNamespaces = true; RestrictNamespaces = true;
}; };
}; };
users.users.wezterm = {
description = "Wezterm system user";
home = "/var/lib/wezterm";
createHome = true;
group = config.users.groups.wezterm.name;
isSystemUser = true;
};
users.groups.wezterm = { };
}; };
} }