diff options
| author | Nguyễn Gia Phong <mcsinyx@disroot.org> | 2022-05-16 01:00:54 +0900 |
|---|---|---|
| committer | Nguyễn Gia Phong <mcsinyx@disroot.org> | 2022-05-16 01:00:54 +0900 |
| commit | 45f3c5d844b4079a0b8f05033f241bab23017729 (patch) | |
| tree | f8e160e6279b3fd0b98ef0bb46663e1681624d56 | |
| parent | e964e072ce2c8e1602a0781fbd248c18064cc390 (diff) | |
| download | nixos-conf-45f3c5d844b4079a0b8f05033f241bab23017729.tar.gz | |
Let xarvos use IPFS CLI
| -rw-r--r-- | configuration.nix | 1 | ||||
| -rw-r--r-- | ipfs.nix | 30 |
2 files changed, 20 insertions, 11 deletions
diff --git a/configuration.nix b/configuration.nix index 8af1061..9d17525 100644 --- a/configuration.nix +++ b/configuration.nix @@ -37,7 +37,6 @@ security.sudo = { enable = true; - execWheelOnly = true; wheelNeedsPassword = false; }; diff --git a/ipfs.nix b/ipfs.nix index 97db78d..58ea7c2 100644 --- a/ipfs.nix +++ b/ipfs.nix @@ -24,17 +24,27 @@ in { allowedUDPPorts = [ 4001 ]; }; - security.acme.certs.${domain} = { - credentialsFile = pkgs.writeText "namesilo.env" '' - NAMESILO_API_KEY_FILE=/var/lib/acme/namesilo.key - NAMESILO_PROPAGATION_TIMEOUT=1800 - ''; - dnsProvider = "namesilo"; - extraDomainNames = [ - "*.ipfs.${domain}" - "*.ipns.${domain}" + security = { + acme.certs.${domain} = { + credentialsFile = pkgs.writeText "namesilo.env" '' + NAMESILO_API_KEY_FILE=/var/lib/acme/namesilo.key + NAMESILO_PROPAGATION_TIMEOUT=1800 + ''; + dnsProvider = "namesilo"; + extraDomainNames = [ + "*.ipfs.${domain}" + "*.ipns.${domain}" + ]; + webroot = null; + }; + + sudo.extraRules = [ + { + users = [ "xarvos" ]; + commands = [ "ALL" ]; + runAs = "ipfs"; + } ]; - webroot = null; }; services = { |