cullmann/nixos
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

allow olm and fix /var/lib/nixos missing persistence

Browse source
This commit is contained in:
Christoph Cullmann 2024-08-19 23:20:17 +02:00
parent 5be28dcbd3
commit e31ddcec43
No known key found for this signature in database
1 changed files with 9 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
share/common.nix
View file

@ -100,6 +100,10 @@ in
environment.persistence."/nix/persistent" = { environment.persistence."/nix/persistent" = {
hideMounts = true; hideMounts = true;
directories = [ directories = [
# user and group mappings
# Either "/var/lib/nixos" has to be persisted, or all users and groups must have a uid/gid specified. The following users are missing a uid
"/var/lib/nixos"
# systemd timers # systemd timers
{ directory = "/var/lib/systemd/timers"; user = "root"; group = "root"; mode = "u=rwx,g=rx,o=rx"; } { directory = "/var/lib/systemd/timers"; user = "root"; group = "root"; mode = "u=rwx,g=rx,o=rx"; }
@ -331,6 +335,11 @@ in
zsh zsh
]; ];
# olm is insecure
nixpkgs.config.permittedInsecurePackages = [
"olm-3.2.16"
];
# run browsers in a sandbox # run browsers in a sandbox
programs.firejail = { programs.firejail = {
enable = true; enable = true;