use sandboxed bottles instead of lutris

This commit is contained in:
Christoph Cullmann 2025-04-01 21:56:13 +02:00
parent 57b4572989
commit 9344fcb656
No known key found for this signature in database
4 changed files with 3 additions and 41 deletions

View file

@ -36,6 +36,5 @@ doas dd if=result/iso/nixos-*-x86_64-linux.iso of=/dev/sda bs=4M conv=fsync
```zsh
rm /data/home/cullmann/.local/state/nix/profiles/home-manager* /date/home/cullmann/.local/state/home-manager/gcroots/current-home
rm /data/home/sandbox-games/.local/state/nix/profiles/home-manager* /date/home/sandbox-games/.local/state/home-manager/gcroots/current-home
rm /data/home/sandbox-kde/.local/state/nix/profiles/home-manager* /date/home/sandbox-kde/.local/state/home-manager/gcroots/current-home
```

View file

@ -536,11 +536,8 @@ in
};
};
# OpenGL, 32-bit for steam
hardware.graphics = {
enable = true;
enable32Bit = true;
};
# OpenGL
hardware.graphics.enable = true;
# try to ensure we can use our network LaserJet
services.printing.enable = true;
@ -596,7 +593,6 @@ in
{ groups = [ "wheel" ]; noPass = false; keepEnv = true; persist = true; }
# wheel users can use sandbox stuff without password
{ groups = [ "wheel" ]; runAs = "sandbox-games"; noPass = true; }
{ groups = [ "wheel" ]; runAs = "sandbox-kde"; noPass = true; }
];
}

View file

@ -6,6 +6,7 @@ let
# all wanted flatpak packages
desiredFlatpaks = {
"com.usebottles.bottles" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures";
"com.valvesoftware.Steam" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures";
"com.vivaldi.Vivaldi" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures";
"io.github.ungoogled_software.ungoogled_chromium" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures";

View file

@ -54,27 +54,6 @@ in
openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys;
};
#
# sandbox for lutris games and Co.
#
users.sandbox-games = {
# home on persistent volume
home = "/data/home/sandbox-games";
# hard code UID for stability over machines
# out of range of normal login users
uid = 32000;
# normal user
isNormalUser = true;
# sandbox user
description = "Sandbox Games";
# use fixed auth keys
openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys;
};
#
# sandbox for kde development
#
@ -151,19 +130,6 @@ in
};
};
# games user with extra settings
users.sandbox-games = {
# shared config
imports = [ ./home.nix ];
# install gaming stuff
home.packages = with pkgs; [
lutris
wineWowPackages.stable
winetricks
];
};
# kde user with extra settings
users.sandbox-kde = {
# shared config