Cloonar/nixos
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat: add fingerprint reader setup and management instructions

Browse Source
This commit is contained in:
Dominik Polakovics Polakovics
2025-05-29 08:36:25 +02:00
parent cf340ca277
commit 51a3a10701
2 changed files with 75 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
hosts/nb/modules/fingerprint.nix
View File

@@ -5,5 +5,21 @@
security.pam.services.login.fprintAuth = true;
security.pam.services.sudo.fprintAuth = true;
security.pam.services.sddm.fprintAuth = true;
# If you use swaylock and want fingerprint auth for it:
security.pam.services.swaylock.fprintAuth = true;
# Add Polkit rule to allow locally active users to manage their own fingerprints
security.polkit.extraConfig = ''
polkit.addRule(function(action, subject) {
if (action.id == "net.reactivated.fprint.device.enroll" ||
action.id == "net.reactivated.fprint.device.verify" ||
action.id == "net.reactivated.fprint.device.delete" ||
action.id == "net.reactivated.fprint.device.list") {
// Allow active, local users to manage their own fingerprints
if (subject.active && subject.local) {
return polkit.Result.YES;
}
}
});
'';
}