config/modules/base/users/default.nix

{
  config,
  lib,
  myData,
  ...
}:
let
  cfg = config.mj.base.users;
  props = with lib.types; {
    hashedPasswordFile = lib.mkOption {
      type = nullOr path;
      default = null;
    };
    initialPassword = lib.mkOption {
      type = nullOr str;
      default = null;
    };
    initialHashedPassword = lib.mkOption {
      type = nullOr str;
      default = null;
    };

    extraGroups = lib.mkOption {
      type = listOf str;
      default = [ ];
    };
  };
in
{
  options.mj.base.users = with lib.types; {
    enable = lib.mkEnableOption "enable motiejus and root";
    devTools = lib.mkOption {
      type = bool;
      default = false;
    };
    email = lib.mkOption {
      type = nullOr str;
      default = "motiejus@jakstys.lt";
    };
    user = props;
    root = props;
  };

  config = lib.mkIf cfg.enable {
    users = {
      mutableUsers = false;

      users = {
        ${config.mj.username} = {
          isNormalUser = true;
          extraGroups = [
            "wheel"
            "dialout"
            "video"
            "audio"
          ] ++ cfg.user.extraGroups;
          uid = myData.uidgid.motiejus;
          openssh.authorizedKeys.keys =
            let
              fqdn = "${config.networking.hostName}.${config.networking.domain}";
            in
            lib.mkMerge [
              [
                myData.people_pubkeys.motiejus
                myData.people_pubkeys.motiejus_work
              ]

              (lib.mkIf (builtins.hasAttr fqdn myData.hosts) [
                (''from="127.0.0.1,::1" '' + myData.hosts.${fqdn}.publicKey)
              ])
            ];
        } // lib.filterAttrs (n: v: n != "extraGroups" && v != null) cfg.user or { };

        root = lib.filterAttrs (_: v: v != null) cfg.root;
      };
    };

    home-manager = {
      useGlobalPkgs = true;
      backupFileExtension = "bk";
      users.${config.mj.username} =
        { pkgs, ... }:
        import ../../../shared/home {
          inherit lib;
          inherit pkgs;
          inherit (config.mj) stateVersion username;
          inherit (cfg) devTools email;
          hmOnly = false;
        };
    };
  };
}
users and passwords 2023-07-20 15:02:38 +03:00			`{`
			`config,`
			`lib,`
			`myData,`
			`...`
nix fmt 2024-07-29 15:39:54 +03:00			`}:`
			`let`
enable statx 2023-10-01 23:14:05 +03:00			`cfg = config.mj.base.users;`
vm: fix user propagation, refactor base.users 2024-03-06 10:33:48 +02:00			`props = with lib.types; {`
			`hashedPasswordFile = lib.mkOption {`
			`type = nullOr path;`
			`default = null;`
			`};`
			`initialPassword = lib.mkOption {`
			`type = nullOr str;`
			`default = null;`
			`};`
			`initialHashedPassword = lib.mkOption {`
			`type = nullOr str;`
			`default = null;`
			`};`

			`extraGroups = lib.mkOption {`
			`type = listOf str;`
nix fmt 2024-07-29 15:39:54 +03:00			`default = [ ];`
vm: fix user propagation, refactor base.users 2024-03-06 10:33:48 +02:00			`};`
			`};`
nix fmt 2024-07-29 15:39:54 +03:00			`in`
			`{`
users and passwords 2023-07-20 15:02:38 +03:00			`options.mj.base.users = with lib.types; {`
bring back "vm" 2024-02-04 16:18:47 +02:00			`enable = lib.mkEnableOption "enable motiejus and root";`
hm: fullDesktop -> devTools 2024-02-04 22:05:44 +02:00			`devTools = lib.mkOption {`
fwminex gets dev environment 2023-10-09 22:07:42 +03:00			`type = bool;`
			`default = false;`
			`};`
mtworx: set work email 2024-03-13 09:53:48 +02:00			`email = lib.mkOption {`
work email: default unset 2024-05-06 14:42:46 +03:00			`type = nullOr str;`
mtworx: set work email 2024-03-13 09:53:48 +02:00			`default = "motiejus@jakstys.lt";`
			`};`
vm: fix user propagation, refactor base.users 2024-03-06 10:33:48 +02:00			`user = props;`
			`root = props;`
users and passwords 2023-07-20 15:02:38 +03:00			`};`

bring back "vm" 2024-02-04 16:18:47 +02:00			`config = lib.mkIf cfg.enable {`
users and passwords 2023-07-20 15:02:38 +03:00			`users = {`
			`mutableUsers = false;`

enable statx 2023-10-01 23:14:05 +03:00			`users = {`
nix fmt 2024-07-29 15:39:54 +03:00			`${config.mj.username} = {`
			`isNormalUser = true;`
			`extraGroups = [`
			`"wheel"`
			`"dialout"`
			`"video"`
groups: +audio 2024-08-12 21:52:38 +03:00			`"audio"`
nix fmt 2024-07-29 15:39:54 +03:00			`] ++ cfg.user.extraGroups;`
			`uid = myData.uidgid.motiejus;`
			`openssh.authorizedKeys.keys =`
			`let`
ssh: allow motiejus from localhost/root 2024-06-06 00:43:37 +03:00			`fqdn = "${config.networking.hostName}.${config.networking.domain}";`
			`in`
nix fmt 2024-07-29 15:39:54 +03:00			`lib.mkMerge [`
			`[`
			`myData.people_pubkeys.motiejus`
			`myData.people_pubkeys.motiejus_work`
			`]`
ssh: allow motiejus from localhost/root 2024-06-06 00:43:37 +03:00
nix fmt 2024-07-29 15:39:54 +03:00			`(lib.mkIf (builtins.hasAttr fqdn myData.hosts) [`
			`(''from="127.0.0.1,::1" '' + myData.hosts.${fqdn}.publicKey)`
			`])`
			`];`
			`} // lib.filterAttrs (n: v: n != "extraGroups" && v != null) cfg.user or { };`
users and passwords 2023-07-20 15:02:38 +03:00
vm: fix user propagation, refactor base.users 2024-03-06 10:33:48 +02:00			`root = lib.filterAttrs (_: v: v != null) cfg.root;`
users and passwords 2023-07-20 15:02:38 +03:00			`};`
			`};`
home-manager/motiejus: add very basic test configs 2023-08-18 16:26:00 +03:00
home-manager.backupFileExtension 2024-08-22 13:17:39 +03:00			`home-manager = {`
			`useGlobalPkgs = true;`
			`backupFileExtension = "bk";`
			`users.${config.mj.username} =`
			`{ pkgs, ... }:`
			`import ../../../shared/home {`
			`inherit lib;`
			`inherit pkgs;`
			`inherit (config.mj) stateVersion username;`
			`inherit (cfg) devTools email;`
			`hmOnly = false;`
			`};`
			`};`
users and passwords 2023-07-20 15:02:38 +03:00			`};`
			`}`