summaryrefslogtreecommitdiff
path: root/modules/root/doas.nix
diff options
context:
space:
mode:
Diffstat (limited to 'modules/root/doas.nix')
-rw-r--r--modules/root/doas.nix17
1 files changed, 10 insertions, 7 deletions
diff --git a/modules/root/doas.nix b/modules/root/doas.nix
index 54cf63a..c6707ce 100644
--- a/modules/root/doas.nix
+++ b/modules/root/doas.nix
@@ -5,12 +5,15 @@
};
config = {
- security.sudo.enable = config.sudo.enable;
- security.doas.enable = config.doas.enable;
- security.doas.extraRules = lib.mkIf config.doas.enable [{
- groups = ["wheel"];
- keepEnv = true;
- noPass = true;
- }];
+ security = {
+ #sudo.enable = config.sudo.enable;
+ sudo.enable = true; # TODO remove once can be built from flake w git
+ sudo.wheelNeedsPassword = false;
+ doas.enable = config.doas.enable;
+ doas.extraRules = lib.mkIf config.doas.enable [{
+ keepEnv = true;
+ }];
+ doas.wheelNeedsPassword = false;
+ };
};
}
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-23 09:34:36 +0000