58 lines
1.3 KiB
Nix
58 lines
1.3 KiB
Nix
{ config, lib, pkgs, ... }:
|
|
|
|
with config.deviceSpecific; {
|
|
users.groups.smbuser.gid = 2001;
|
|
# TODO: add nologin shell to this user
|
|
users.users.smbuser =
|
|
lib.mkIf isHost {
|
|
# isNormalUser = false;
|
|
isSystemUser = true;
|
|
group = "smbuser";
|
|
# extraGroups = [
|
|
# "smbuser"
|
|
# ];
|
|
description = "User for samba sharing";
|
|
};
|
|
services.samba =
|
|
lib.mkIf isHost {
|
|
enable = true;
|
|
enableNmbd = false;
|
|
enableWinbindd = false;
|
|
invalidUsers = [ "root" ];
|
|
nsswins = false;
|
|
securityType = "user";
|
|
# syncPasswordsByPam = false;
|
|
configText = ''
|
|
[global]
|
|
client min protocol = SMB3_11
|
|
server min protocol = SMB3_11
|
|
smb encrypt = required
|
|
server string = samba home server
|
|
server role = standalone server
|
|
disable netbios = yes
|
|
smb ports = 445
|
|
|
|
[data]
|
|
path = /media/data
|
|
browsable = yes
|
|
read only = no
|
|
force create mode = 0660
|
|
force directory mode = 2770
|
|
valid users = @smbuser
|
|
|
|
[files]
|
|
path = /media/files
|
|
browsable = yes
|
|
read only = no
|
|
force create mode = 0660
|
|
force directory mode = 2770
|
|
valid users = @smbuser
|
|
'';
|
|
};
|
|
environment.systemPackages = [
|
|
pkgs.cifs-utils
|
|
] ++ lib.optionals isHost [
|
|
config.services.samba.package
|
|
];
|
|
}
|