Cloonar/nixos
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix cids

Browse Source
This commit is contained in:
Dominik Polakovics Polakovics
2023-12-05 12:11:46 +01:00
parent 855bd4d3ec
commit cb8e2526e3
2 changed files with 9 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
hosts/fw.cloonar.com/modules/staticids.nix
View File

@@ -3,25 +3,7 @@ let
inherit (lib) types; inherit (lib) types;
in in
{ {
options.cids = { ids = {
uids = lib.mkOption {
readOnly = true;
description = lib.mdDoc ''
The user IDs used for containers.
'';
type = types.attrsOf types.int;
};
gids = lib.mkOption {
readOnly = true;
description = lib.mdDoc ''
The group IDs used for containers.
'';
type = types.attrsOf types.int;
};
};
config = {
cids = {
uids = { uids = {
unbound = 10001; unbound = 10001;
}; };
@@ -29,5 +11,4 @@ in
unbound = 10001; unbound = 10001;
}; };
}; };
};
} }

7
hosts/fw.cloonar.com/modules/unbound.nix
View File

@@ -1,5 +1,6 @@
{ config, ... }: { config, ... }:
let let
cids = import ../modules/staticids.nix;
domain = "ns.cloonar.com"; domain = "ns.cloonar.com";
cfg = { cfg = {
server = { server = {
@@ -136,7 +137,7 @@ in {
uid = cids.uids.unbound; uid = cids.uids.unbound;
}; };
users.groups.unbound = { users.groups.unbound = {
gid = config.cids.gids.unbound; gid = cids.gids.unbound;
}; };
security.acme.certs."${domain}" = { security.acme.certs."${domain}" = {
@@ -175,10 +176,10 @@ in {
users.users.unbound = { users.users.unbound = {
group = "unbound"; group = "unbound";
isSystemUser = true; isSystemUser = true;
uid = config.cids.uids.unbound; uid = cids.uids.unbound;
}; };
users.groups.unbound = { users.groups.unbound = {
gid = config.cids.gids.unbound; gid = cids.gids.unbound;
}; };
services.unbound = { services.unbound = {
enable = true; enable = true;