jsw/NiksOS
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Updated secrets

Browse source
This commit is contained in:
Jurn Wubben 2025-09-23 08:10:26 +00:00
parent 3e07bd2b22
commit 05948d31c2
2 changed files with 26 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

27
system/server/derek-bot.nix
View file

@ -76,7 +76,32 @@ in {
users.groups.${userGroup} = {};
users.users.${userGroup} = {
group = userGroup;
isSystemUser = true;
isNormalUser = true;
home = "/home/${userGroup}";
};
security.polkit.extraConfig = ''
polkit.addRule(function(action, subject) {
if (action.id == "org.freedesktop.systemd1.manage-units" &&
action.lookup("unit") == "${userGroup}.service" &&
subject.user == "${userGroup}") {
return polkit.Result.YES;
}
});
polkit.addRule(function(action, subject) {
if (
subject.user == "${userGroup}" &&
(
action.id == "org.freedesktop.login1.power-off" ||
action.id == "org.freedesktop.login1.power-off-ignore-inhibit" ||
action.id == "org.freedesktop.login1.power-off-multiple-sessions" ||
action.id == "org.freedesktop.login1.reboot" ||
action.id == "org.freedesktop.login1.reboot-ignore-inhibit" ||
action.id == "org.freedesktop.login1.reboot-multiple-sessions"
)
) {
return polkit.Result.NO;
}
});
'';
};
}