kenji/nixos
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
33d80a34bbeb835bab382f3b5caa2912d33e937b
nixos/modules/system/user.nix
T
kenji 33d80a34bb fix(user): enforce declarative password management 
Set mutableUsers = false to ensure password is managed declaratively
via hashedPasswordFile. Updated password hash in SOPS secrets.

Also adds nixos-config-researcher agent for Claude Code.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-30 19:06:07 -06:00

19 lines
377 B
Nix
Raw Blame History

{
pkgs,
myConfig,
config,
...
}: {
users = {
mutableUsers = false;
users = {
${myConfig.nixos.username} = {
isNormalUser = true;
extraGroups = ["wheel" "networkmanager" "input" "video"];
hashedPasswordFile = config.sops.secrets.default_password.path; # FIXME: may not work!
useDefaultShell = true;
};
};
};
}
Reference in New Issue View Git Blame Copy Permalink