lgmrszd/nix-cfg
1
0
Fork 0
mirror of https://git.lgmrszd.xyz/Lgmrszd/nix-cfg.git synced 2025-12-14 07:38:19 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

vps1: add another user, enable podman, nix settings allowed users change

Browse source
This commit is contained in:
Lgmrszd 2025-02-26 02:37:13 +04:00
parent 0a14bb4208
commit ce59cf311c
No known key found for this signature in database
GPG key ID: 9396B8BA6FBB14DE
2 changed files with 23 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

22
hosts/vps1/configuration.nix
View file

@ -35,6 +35,7 @@ in
programs.fish.enable = true; programs.fish.enable = true;
nix.settings.experimental-features = [ "nix-command" "flakes" ]; nix.settings.experimental-features = [ "nix-command" "flakes" ];
nix.settings.allowed-users = [ "@wheel" ];
boot.tmp.cleanOnBoot = true; boot.tmp.cleanOnBoot = true;
zramSwap.enable = true; zramSwap.enable = true;
@ -156,11 +157,32 @@ in
extraGroups = [ extraGroups = [
"wheel" "wheel"
"docker" "docker"
"podman"
config.services.openvscode-server.group config.services.openvscode-server.group
]; ];
shell = pkgs.fish; shell = pkgs.fish;
}; };
users.users.mikprin = {
isNormalUser = true;
extraGroups = [
"podman"
];
shell = pkgs.fish;
};
# TODO move to separate
virtualisation.docker.enable = true;
virtualisation.containers.enable = true;
virtualisation = {
podman = {
enable = true;
dockerCompat = false;
defaultNetwork.settings.dns_enabled = true;
};
};
nixpkgs.config.allowUnfree = true; nixpkgs.config.allowUnfree = true;
system.stateVersion = "23.11"; system.stateVersion = "23.11";

2
hosts/vps1/services/git.nix
View file

@ -137,8 +137,6 @@ in
]; ];
}; };
}; };
# TODO move to separate
virtualisation.docker.enable = true;
sops.secrets."forgejo/email_password" = sops_opts; sops.secrets."forgejo/email_password" = sops_opts;