nixos/google-compute-config: Add sudo-rs rules
This commit is contained in:
parent
a8e6f0a81a
commit
326904b128
|
@ -84,6 +84,10 @@ in
|
||||||
{ groups = [ "google-sudoers" ]; commands = [ { command = "ALL"; options = [ "NOPASSWD" ]; } ]; }
|
{ groups = [ "google-sudoers" ]; commands = [ { command = "ALL"; options = [ "NOPASSWD" ]; } ]; }
|
||||||
];
|
];
|
||||||
|
|
||||||
|
security.sudo-rs.extraRules = mkIf config.users.mutableUsers [
|
||||||
|
{ groups = [ "google-sudoers" ]; commands = [ { command = "ALL"; options = [ "NOPASSWD" ]; } ]; }
|
||||||
|
];
|
||||||
|
|
||||||
users.groups.google-sudoers = mkIf config.users.mutableUsers { };
|
users.groups.google-sudoers = mkIf config.users.mutableUsers { };
|
||||||
|
|
||||||
boot.extraModprobeConfig = readFile "${pkgs.google-guest-configs}/etc/modprobe.d/gce-blacklist.conf";
|
boot.extraModprobeConfig = readFile "${pkgs.google-guest-configs}/etc/modprobe.d/gce-blacklist.conf";
|
||||||
|
|
Loading…
Reference in New Issue
Block a user