cullmann/nixos
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

use sandboxed bottles instead of lutris

Browse source
This commit is contained in:
Christoph Cullmann 2025-04-01 21:56:13 +02:00
parent 57b4572989
commit 9344fcb656
No known key found for this signature in database
4 changed files with 3 additions and 41 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
README.md
View file

@ -36,6 +36,5 @@ doas dd if=result/iso/nixos-*-x86_64-linux.iso of=/dev/sda bs=4M conv=fsync
```zsh ```zsh
rm /data/home/cullmann/.local/state/nix/profiles/home-manager* /date/home/cullmann/.local/state/home-manager/gcroots/current-home rm /data/home/cullmann/.local/state/nix/profiles/home-manager* /date/home/cullmann/.local/state/home-manager/gcroots/current-home
rm /data/home/sandbox-games/.local/state/nix/profiles/home-manager* /date/home/sandbox-games/.local/state/home-manager/gcroots/current-home
rm /data/home/sandbox-kde/.local/state/nix/profiles/home-manager* /date/home/sandbox-kde/.local/state/home-manager/gcroots/current-home rm /data/home/sandbox-kde/.local/state/nix/profiles/home-manager* /date/home/sandbox-kde/.local/state/home-manager/gcroots/current-home
``` ```

8
share/common.nix
View file

@ -536,11 +536,8 @@ in
}; };
}; };
# OpenGL, 32-bit for steam # OpenGL
hardware.graphics = { hardware.graphics.enable = true;
enable = true;
enable32Bit = true;
};
# try to ensure we can use our network LaserJet # try to ensure we can use our network LaserJet
services.printing.enable = true; services.printing.enable = true;
@ -596,7 +593,6 @@ in
{ groups = [ "wheel" ]; noPass = false; keepEnv = true; persist = true; } { groups = [ "wheel" ]; noPass = false; keepEnv = true; persist = true; }
# wheel users can use sandbox stuff without password # wheel users can use sandbox stuff without password
{ groups = [ "wheel" ]; runAs = "sandbox-games"; noPass = true; }
{ groups = [ "wheel" ]; runAs = "sandbox-kde"; noPass = true; } { groups = [ "wheel" ]; runAs = "sandbox-kde"; noPass = true; }
]; ];
} }

1
share/flatpak.nix
View file

@ -6,6 +6,7 @@ let
# all wanted flatpak packages # all wanted flatpak packages
desiredFlatpaks = { desiredFlatpaks = {
"com.usebottles.bottles" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures";
"com.valvesoftware.Steam" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures"; "com.valvesoftware.Steam" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures";
"com.vivaldi.Vivaldi" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures"; "com.vivaldi.Vivaldi" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures";
"io.github.ungoogled_software.ungoogled_chromium" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures"; "io.github.ungoogled_software.ungoogled_chromium" = "--nofilesystem=xdg-music --nofilesystem=xdg-pictures";

34
share/users.nix
View file

@ -54,27 +54,6 @@ in
openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys; openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys;
}; };
#
# sandbox for lutris games and Co.
#
users.sandbox-games = {
# home on persistent volume
home = "/data/home/sandbox-games";
# hard code UID for stability over machines
# out of range of normal login users
uid = 32000;
# normal user
isNormalUser = true;
# sandbox user
description = "Sandbox Games";
# use fixed auth keys
openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys;
};
# #
# sandbox for kde development # sandbox for kde development
# #
@ -151,19 +130,6 @@ in
}; };
}; };
# games user with extra settings
users.sandbox-games = {
# shared config
imports = [ ./home.nix ];
# install gaming stuff
home.packages = with pkgs; [
lutris
wineWowPackages.stable
winetricks
];
};
# kde user with extra settings # kde user with extra settings
users.sandbox-kde = { users.sandbox-kde = {
# shared config # shared config