TheWanderingCrow/CrOS
1
0
Fork 0
mirror of https://github.com/TheWanderingCrow/CrOS.git synced 2026-01-11 09:44:08 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

do password stuff for virtual machines

Browse source
This commit is contained in:
TheWanderingCrow 2025-08-25 14:58:02 -04:00
parent b7f0fed007
commit f7e969fdf3
3 changed files with 66 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

6
hosts/common/users/primary/nixos.nix
View file

@ -11,6 +11,7 @@
# Decrypt password to /run/secrets-for-users/ so it can be used to create the user
sopsHashedPasswordFile = lib.optionalString (!config.hostSpec.isMinimal) config.sops.secrets."passwords/${hostSpec.username}".path;
virtPass = pkgs.writeText "password" "$y$j9T$ZbQbNHUSFsePoP0X.TdwR/$.EKJWDSY7ZO/nqf4FxgUYA3a47CYAKLzaV7ZAy745R/";
in {
users = {
mutableUsers = false; # Only allow declarative credentials; Required for password to be set via sops during system activation!
@ -19,7 +20,10 @@ in {
${hostSpec.username} = {
home = "/home/${hostSpec.username}";
isNormalUser = true;
hashedPasswordFile = sopsHashedPasswordFile; # Blank if sops is not working.
hashedPasswordFile =
if config.hostSpec.isVirtual
then virtPass
else sopsHashedPasswordFile;
linger = true;
extraGroups = lib.flatten [