host nomic: init

author: tv <tv@krebsco.de> 2015-07-07 06:20:50 +0200
committer: tv <tv@krebsco.de> 2015-07-07 06:20:50 +0200
commit: cd8370ea4a66a03aeee3daf1ae7b979e4e4e2b97 (patch)
tree: e17e97481f49f2beac80b922ba45318e66b09299 /modules/nomic/users.nix
parent: d55f1c09c96f0cceaa84217f5dadb57bec7077ef (diff)
1 files changed, 42 insertions, 0 deletions
diff --git a/modules/nomic/users.nix b/modules/nomic/users.nix
new file mode 100644
index 0000000..70e1d8d
--- /dev/null
+++ b/modules/nomic/users.nix
@@ -0,0 +1,42 @@
+{ pkgs, ... }:
+
+{
+  imports = [
+    { users = import <secrets/users.nix>; }
+    {
+      users.extraUsers = {
+        root = {
+          openssh.authorizedKeys.keys = [
+            (pkgs.lib.readFile <pubkeys/tv_wu.ssh.pub>)
+          ];
+        };
+        tv = {
+          uid = 1337;
+          group = "users";
+          home = "/home/tv";
+          createHome = true;
+          useDefaultShell = true;
+          extraGroups = [
+            "audio"
+            "video"
+            "wheel"
+          ];
+          openssh.authorizedKeys.keys = [
+            (pkgs.lib.readFile <pubkeys/tv_wu.ssh.pub>)
+          ];
+        };
+      };
+    }
+  ];
+
+  users.defaultUserShell = "/run/current-system/sw/bin/bash";
+  users.mutableUsers = false;
+
+  security.setuidPrograms = [
+    "sendmail"  # for sudo
+  ];
+
+  security.sudo.extraConfig = ''
+    Defaults mailto="tv@wu.retiolum"
+  '';
+}
author	tv <tv@krebsco.de>	2015-07-07 06:20:50 +0200
committer	tv <tv@krebsco.de>	2015-07-07 06:20:50 +0200
commit	cd8370ea4a66a03aeee3daf1ae7b979e4e4e2b97 (patch)
tree	e17e97481f49f2beac80b922ba45318e66b09299 /modules/nomic/users.nix
parent	d55f1c09c96f0cceaa84217f5dadb57bec7077ef (diff)