aboutsummaryrefslogtreecommitdiff
path: root/modules/apps/cli.nix
diff options
context:
space:
mode:
Diffstat (limited to 'modules/apps/cli.nix')
-rw-r--r--modules/apps/cli.nix10
1 files changed, 4 insertions, 6 deletions
diff --git a/modules/apps/cli.nix b/modules/apps/cli.nix
index af60710..6db92e3 100644
--- a/modules/apps/cli.nix
+++ b/modules/apps/cli.nix
@@ -5,9 +5,8 @@ let
inherit (builtins)
toString ;
inherit (lib)
- concatMapStrings filterAttrs mapAttrsToList mkOption
- types unique ;
- inherit (types)
+ concatMapStrings filterAttrs mapAttrs mapAttrsToList mkOption unique ;
+ inherit (lib.types)
attrsOf path str submodule ;
explicit = filterAttrs (n: v: n != "_module" && v != null);
@@ -126,14 +125,13 @@ in {
config = {
nixsap.system.users.daemons = unique (mapAttrsToList (_: a: a.user) apps);
- security.setuidOwners = mapAttrsToList (n: a:
- { program = n;
+ security.wrappers = mapAttrs (n: a:
+ { source = exec n a;
owner = "root";
group = a.user;
setuid = true;
setgid = false;
permissions = "u+rx,g+x,o=";
- source = exec n a;
}) apps;
};
}
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-19 20:50:53 +0000