2024-04-21

author: Azat Bahawi <azat@bahawi.net> 2024-04-21 02:15:42 +0300
committer: Azat Bahawi <azat@bahawi.net> 2024-04-21 02:15:42 +0300
commit: e6ed60548397627bf10f561f9438201dbba0a36e (patch)
tree: f9a84c5957d2cc4fcd148065ee9365a0c851ae1c /modules/nixos/common/security.nix
parent: 2024-04-18 (diff)
1 files changed, 0 insertions, 31 deletions
diff --git a/modules/nixos/common/security.nix b/modules/nixos/common/security.nix
deleted file mode 100644
index c635cdc..0000000
--- a/modules/nixos/common/security.nix
+++ /dev/null
@@ -1,31 +0,0 @@
-_: {
-  security = {
-    sudo = {
-      enable = true;
-      execWheelOnly = true;
-      wheelNeedsPassword = false;
-      extraConfig = ''
-        Defaults lecture=never
-      '';
-    };
-
-    polkit = {
-      enable = true;
-      extraConfig = ''
-        /*
-         * Allow members of the wheel group to execute any actions
-         * without password authentication, similar to "sudo NOPASSWD:".
-         *
-         * https://wiki.archlinux.org/title/Polkit#Bypass_password_prompt
-         */
-        polkit.addRule(function(action, subject) {
-          if (subject.isInGroup('wheel'))
-            return polkit.Result.YES;
-        });
-      '';
-    };
-
-    # Pretty much used only for PipeWire.
-    rtkit.enable = true;
-  };
-}
author	Azat Bahawi <azat@bahawi.net>	2024-04-21 02:15:42 +0300
committer	Azat Bahawi <azat@bahawi.net>	2024-04-21 02:15:42 +0300
commit	e6ed60548397627bf10f561f9438201dbba0a36e (patch)
tree	f9a84c5957d2cc4fcd148065ee9365a0c851ae1c /modules/nixos/common/security.nix
parent	2024-04-18 (diff)