2024-02-08 23:21:10 +03:00
|
|
|
{ config, lib, ... }: {
|
2024-11-18 03:11:53 +03:00
|
|
|
security.sudo.enable = lib.mkForce false;
|
2022-12-07 22:13:34 +03:00
|
|
|
security.doas = {
|
|
|
|
|
enable = true;
|
|
|
|
|
extraRules = [{
|
2022-12-10 22:34:39 +03:00
|
|
|
users = [ config.mainuser ];
|
2022-12-07 22:13:34 +03:00
|
|
|
keepEnv = true;
|
|
|
|
|
persist = true;
|
2024-11-18 03:11:53 +03:00
|
|
|
} {
|
|
|
|
|
users = [ "deploy" ];
|
|
|
|
|
noPass = true;
|
|
|
|
|
keepEnv = true;
|
2023-03-27 15:48:23 +03:00
|
|
|
}] ++ lib.optionals config.deviceSpecific.isLaptop [{
|
2022-12-10 22:34:39 +03:00
|
|
|
users = [ config.mainuser ];
|
2022-12-07 22:13:34 +03:00
|
|
|
noPass = true;
|
|
|
|
|
keepEnv = true;
|
|
|
|
|
cmd = "/run/current-system/sw/bin/tlp";
|
|
|
|
|
} {
|
2022-12-10 22:34:39 +03:00
|
|
|
users = [ config.mainuser ];
|
2022-12-07 22:13:34 +03:00
|
|
|
noPass = true;
|
|
|
|
|
keepEnv = true;
|
|
|
|
|
cmd = "/run/current-system/sw/bin/tlp-stat";
|
2024-02-13 01:03:52 +03:00
|
|
|
} {
|
|
|
|
|
users = [ config.mainuser ];
|
|
|
|
|
noPass = true;
|
|
|
|
|
keepEnv = true;
|
|
|
|
|
cmd = "/run/current-system/sw/bin/nixos-rebuild";
|
2022-12-07 22:13:34 +03:00
|
|
|
}];
|
2021-09-16 01:03:52 +03:00
|
|
|
};
|
2023-03-27 15:48:23 +03:00
|
|
|
}
|
