From 208eca0062934bc65ff9927be6cab9a1af911797 Mon Sep 17 00:00:00 2001 From: Christoph Cullmann Date: Tue, 1 Apr 2025 22:18:20 +0200 Subject: [PATCH] use flatpak slicers with limited file access --- share/flatpak.nix | 2 ++ share/users.nix | 33 --------------------------------- 2 files changed, 2 insertions(+), 33 deletions(-) diff --git a/share/flatpak.nix b/share/flatpak.nix index 83cfccf..e190964 100644 --- a/share/flatpak.nix +++ b/share/flatpak.nix @@ -6,6 +6,8 @@ let # all wanted flatpak packages desiredFlatpaks = { + "com.bambulab.BambuStudio" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures"; + "com.prusa3d.PrusaSlicer" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures"; "com.usebottles.bottles" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures"; "com.valvesoftware.Steam" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures"; "com.vivaldi.Vivaldi" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures"; diff --git a/share/users.nix b/share/users.nix index 2b25809..234bf15 100644 --- a/share/users.nix +++ b/share/users.nix @@ -74,27 +74,6 @@ in # use fixed auth keys openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys; }; - - # - # sandbox for 3d printing - # - users.sandbox-3d-printing = { - # home on persistent volume - home = "/data/home/sandbox-3d-printing"; - - # hard code UID for stability over machines - # out of range of normal login users - uid = 32002; - - # normal user - isNormalUser = true; - - # sandbox user - description = "Sandbox 3D Printing"; - - # use fixed auth keys - openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys; - }; }; # home manager settings @@ -152,17 +131,5 @@ in }; }; }; - - # 3d printing user with extra settings - users.sandbox-3d-printing = { - # shared config - imports = [ ./home.nix ]; - - # install 3d printing stuff - home.packages = with pkgs; [ - bambu-studio - prusa-slicer - ]; - }; }; }