diff options
author | Vladimír Čunát <v@cunat.cz> | 2020-10-10 10:18:58 +0200 |
---|---|---|
committer | Vladimír Čunát <v@cunat.cz> | 2020-10-10 11:32:10 +0200 |
commit | 338b25697c952b17ef9b012cbe068f2d0b8fc4b3 (patch) | |
tree | 31123d2ef6ddcddb682c67d3c85a6f6b1a894fd9 /nixos/modules | |
parent | ec28e32c9e1f5b4d6857e9c7f2e57cf946b75655 (diff) | |
parent | 8bc409e546590137cd43651ee6f2909c6c9f5c73 (diff) |
Merge branch 'master' into staging-next
Quite many rebuilds from master:
> Estimating rebuild amount by counting changed Hydra jobs.
> 3926 x86_64-darwin
> 4645 x86_64-linux
Diffstat (limited to 'nixos/modules')
-rw-r--r-- | nixos/modules/security/pam.nix | 2 | ||||
-rw-r--r-- | nixos/modules/services/misc/snapper.nix | 10 | ||||
-rw-r--r-- | nixos/modules/services/misc/ssm-agent.nix | 23 | ||||
-rw-r--r-- | nixos/modules/services/x11/display-managers/default.nix | 7 |
4 files changed, 39 insertions, 3 deletions
diff --git a/nixos/modules/security/pam.nix b/nixos/modules/security/pam.nix index 40bec8d07916..a20d0a243a8e 100644 --- a/nixos/modules/security/pam.nix +++ b/nixos/modules/security/pam.nix @@ -653,7 +653,7 @@ in xlink:href="https://developers.yubico.com/pam-u2f/">here</link>. ''; }; - + appId = mkOption { default = null; type = with types; nullOr str; diff --git a/nixos/modules/services/misc/snapper.nix b/nixos/modules/services/misc/snapper.nix index 6f3aaa973a04..3560d08520b7 100644 --- a/nixos/modules/services/misc/snapper.nix +++ b/nixos/modules/services/misc/snapper.nix @@ -121,6 +121,16 @@ in services.dbus.packages = [ pkgs.snapper ]; + systemd.services.snapperd = { + description = "DBus interface for snapper"; + inherit documentation; + serviceConfig = { + Type = "dbus"; + BusName = "org.opensuse.Snapper"; + ExecStart = "${pkgs.snapper}/bin/snapperd"; + }; + }; + systemd.services.snapper-timeline = { description = "Timeline of Snapper Snapshots"; inherit documentation; diff --git a/nixos/modules/services/misc/ssm-agent.nix b/nixos/modules/services/misc/ssm-agent.nix index 00e806695fd5..e50b07e0b862 100644 --- a/nixos/modules/services/misc/ssm-agent.nix +++ b/nixos/modules/services/misc/ssm-agent.nix @@ -29,8 +29,6 @@ in { config = mkIf cfg.enable { systemd.services.ssm-agent = { - users.extraUsers.ssm-user = {}; - inherit (cfg.package.meta) description; after = [ "network.target" ]; wantedBy = [ "multi-user.target" ]; @@ -43,5 +41,26 @@ in { RestartSec = "15min"; }; }; + + # Add user that Session Manager needs, and give it sudo. + # This is consistent with Amazon Linux 2 images. + security.sudo.extraRules = [ + { + users = [ "ssm-user" ]; + commands = [ + { + command = "ALL"; + options = [ "NOPASSWD" ]; + } + ]; + } + ]; + # On Amazon Linux 2 images, the ssm-user user is pretty much a + # normal user with its own group. We do the same. + users.groups.ssm-user = {}; + users.users.ssm-user = { + isNormalUser = true; + group = "ssm-user"; + }; }; } diff --git a/nixos/modules/services/x11/display-managers/default.nix b/nixos/modules/services/x11/display-managers/default.nix index 568aeaceef75..ed9c652fc4c9 100644 --- a/nixos/modules/services/x11/display-managers/default.nix +++ b/nixos/modules/services/x11/display-managers/default.nix @@ -474,6 +474,13 @@ in ) [dms wms] ); + + # Make xsessions and wayland sessions installed at + # /run/current-system/sw/share as some programs + # have behavior that depends on them being installed + environment.systemPackages = [ + cfg.displayManager.sessionData.desktops + ]; }; imports = [ |