allencai/ccl-nixos-dotfiles
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(doas): add sudo wrapper

Browse Source
This commit is contained in:
imxyy_soope_
2025-07-04 21:32:35 +08:00
parent d0fcde133d
commit e79ed0f643
2 changed files with 4 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
modules/desktop/terminal/kitty/default.nix
View File

@@ -27,6 +27,7 @@ lib.my.makeHomeProgramConfig {
name = "monospace"; name = "monospace";
size = 14; size = 14;
}; };
shellIntegration.mode = "no-cursor no-sudo";
extraConfig = '' extraConfig = ''
include ${./tokyonight-storm.conf} include ${./tokyonight-storm.conf}
''; '';

4
modules/user.nix
View File

@@ -35,20 +35,22 @@ lib.my.makeSwitch {
}; };
users.users.root.hashedPasswordFile = lib.mkDefault config.sops.secrets.imxyy-nix-hashed-password.path; users.users.root.hashedPasswordFile = lib.mkDefault config.sops.secrets.imxyy-nix-hashed-password.path;
security.sudo.enable = false;
security.doas = { security.doas = {
enable = true; enable = true;
extraRules = [ extraRules = [
{ {
users = [ username ]; users = [ username ];
noPass = true; noPass = true;
keepEnv = true;
} }
]; ];
}; };
environment.shellAliases = { environment.shellAliases = {
sudo = "doas";
sudoedit = "doasedit"; sudoedit = "doasedit";
}; };
environment.systemPackages = [ environment.systemPackages = [
(pkgs.writeShellScriptBin "sudo" ''exec doas "$@"'')
(pkgs.writeShellScriptBin "doasedit" '' (pkgs.writeShellScriptBin "doasedit" ''
if [ -n "''${2}" ]; then if [ -n "''${2}" ]; then
printf 'Expected only one argument\n' printf 'Expected only one argument\n'