re-add builder users shell

formatting
2025-12-10 00:43:56 -05:00 · 2024-06-29 21:11:21 -04:00 · 2024-06-29 21:11:21 -04:00 · 71d799541f
commit 71d799541f
parent 65638ecb1c
3 changed files with 6 additions and 11 deletions
--- a/hosts/gerg-desktop/services/forgejo.nix
+++ b/hosts/gerg-desktop/services/forgejo.nix
@ -1,11 +1,11 @@
-{ lib, config }:
+{ config }:
 {
  users = {
    groups.${config.services.forgejo.group} = { };
    users = {
      ${config.services.forgejo.user} = {
        isSystemUser = true;
-        group = config.services.forgejo.group;
+        inherit (config.services.forgejo) group;
        extraGroups = [ "postgres" ];
        openssh.authorizedKeys.keys = [ config.local.keys.gerg_gerg-desktop ];
      };
--- a/hosts/gerg-desktop/services/nix-serve.nix
+++ b/hosts/gerg-desktop/services/nix-serve.nix
@ -8,12 +8,12 @@
      nix-serve = { };
    };
    users = {
      ${config.services.nginx.user}.extraGroups = [ "nix-serve" ];
      builder = {
        isSystemUser = true;
        openssh.authorizedKeys.keys = [ config.local.keys.root_media-laptop ];
        group = "builder";
        shell = pkgs.bashInteractive;
      };
      nix-serve = {
        isSystemUser = true;
@ -33,10 +33,7 @@
  '';
  nix.settings = {
-    trusted-users = [
+    trusted-users = [ "builder" ];
      "builder"
      "nix-ssh"
    ];
    allowed-users = [ "nix-serve" ];
    keep-outputs = true;
    keep-derivations = true;
--- a/hosts/gerg-desktop/services/postgresql.nix
+++ b/hosts/gerg-desktop/services/postgresql.nix
@ -1,13 +1,11 @@
-{ config, pkgs }:
+{ pkgs }:
 {
  services.postgresql = {
    enable = true;
    package = pkgs.postgresql_13;
    dataDir = "/persist/services/postgresql";
-    ensureDatabases = [
+    ensureDatabases = [ "miniflux" ];
      "miniflux"
    ];
    ensureUsers = [
      {
        name = "miniflux";