nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-23 07:23:20 +00:00
Code Issues Packages Projects Releases Wiki Activity

nixos/sudo: Make the default rules' options configurable

Browse Source
This commit is contained in:
nicoo 2023-09-07 12:50:48 +00:00
parent 93011e31bd
commit 1852b67bc6
1 changed files with 11 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
nixos/modules/security/sudo.nix
View File

@ -32,6 +32,15 @@ in
options.security.sudo = { options.security.sudo = {
defaultOptions = mkOption {
type = with types; listOf str;
default = [ "SETENV" ];
description = mdDoc ''
Options used for the default rules, granting `root` and the
`wheel` group permission to run any command as any user.
'';
};
enable = mkEnableOption (mdDoc '' enable = mkEnableOption (mdDoc ''
the {command}`sudo` command, which allows non-root users to execute commands as root. the {command}`sudo` command, which allows non-root users to execute commands as root.
''); '');
@ -188,8 +197,8 @@ in
inherit users groups; inherit users groups;
commands = [ { commands = [ {
command = "ALL"; command = "ALL";
options = opts ++ [ "SETENV" ]; options = opts ++ cfg.defaultOptions;
} ]; } ];
} ]; } ];
in mkMerge [ in mkMerge [
# This is ordered before users' `mkBefore` rules, # This is ordered before users' `mkBefore` rules,