panotaka/nix-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Enabled mutableUsers to fix password resetting on rebuild.

Browse Source
This commit is contained in:
Thomas Syms
2025-05-15 11:28:31 -03:00
parent dc6f6894e6
commit 6f3da94945
1 changed files with 3 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
hosts/common/users/primary/nixos.nix
View File

@@ -4,13 +4,11 @@
lib, lib,
pkgs, pkgs,
... ...
}: }: let
let
hostSpec = config.hostSpec; hostSpec = config.hostSpec;
ifTheyExist = groups: builtins.filter (group: builtins.hasAttr group config.users.groups) groups; ifTheyExist = groups: builtins.filter (group: builtins.hasAttr group config.users.groups) groups;
in in {
{ users.mutableUsers = true; # Only allow declarative credentials; Required for password to be set via sops during system activation!
users.mutableUsers = false; # Only allow declarative credentials; Required for password to be set via sops during system activation!
users.users.${hostSpec.username} = { users.users.${hostSpec.username} = {
home = "/home/${hostSpec.username}"; home = "/home/${hostSpec.username}";
isNormalUser = true; isNormalUser = true;
@@ -41,4 +39,3 @@ in
openssh.authorizedKeys.keys = config.users.users.${hostSpec.username}.openssh.authorizedKeys.keys; # root's ssh keys are mainly used for remote deployment. openssh.authorizedKeys.keys = config.users.users.${hostSpec.username}.openssh.authorizedKeys.keys; # root's ssh keys are mainly used for remote deployment.
}; };
} }