kiosk: use sops kiosk secrets file for user

This commit is contained in:
makefu 2023-07-05 15:27:34 +02:00
parent 7808b7ff5b
commit eeef06869d

View file

@ -1,14 +1,17 @@
{ pkgs, lib, ... }: { pkgs, config, lib, ... }:
{ {
imports = [ imports = [
./base.nix ./base.nix
]; ];
sops.secrets."passwd/kiosk".neededForUsers = true;
users.users.kiosk = { users.users.kiosk = {
packages = with pkgs;[ chromium vscode spotify tartube-yt-dlp ]; packages = with pkgs;[ chromium vscode spotify tartube-yt-dlp ];
group = "kiosk"; group = "kiosk";
isNormalUser = true; isNormalUser = true;
uid = 1003; uid = 1003;
passwordFile = config.sops.secrets."passwd/kiosk".path;
extraGroups = [ "wheel" "audio" "pulse" "pipewire" ]; extraGroups = [ "wheel" "audio" "pulse" "pipewire" ];
}; };
users.groups.kiosk.gid = 989 ; users.groups.kiosk.gid = 989 ;