pyrox.dev / nixpkgs
lol
fork atom

nixos/gitolite: use group 'gitolite' instead of 'nogroup'

Having files (git repositories) owned by 'nogroup' is a bad idea.

Bjørn Forsman 3a58e41e fc2c9949

options
unified split
Changed files
+11 -1
nixos
modules
misc
ids.nix
services
misc
gitolite.nix
+1 -1
nixos/modules/misc/ids.nix 
···

       
426

       
 

       
      teamspeak = 124;


     

       
427

       
 

       
      influxdb = 125;


     

       
428

       
 

       
      nsd = 126;


     

       
429

       
-

       
      #gitolite = 127; # unused


     

       
430

       
 

       
      znc = 128;


     

       
431

       
 

       
      polipo = 129;


     

       
432

       
 

       
      mopidy = 130;


     
···

       
426

       
 

       
      teamspeak = 124;


     

       
427

       
 

       
      influxdb = 125;


     

       
428

       
 

       
      nsd = 126;


     

       
429

       
+

       
      gitolite = 127;


     

       
430

       
 

       
      znc = 128;


     

       
431

       
 

       
      polipo = 129;


     

       
432

       
 

       
      mopidy = 130;
+10
nixos/modules/services/misc/gitolite.nix 
···

       
85

       
 

       
          Gitolite user account. This is the username of the gitolite endpoint.


     

       
86

       
 

       
        '';


     

       
87

       
 

       
      };


     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       
88

       
 

       
    };


     

       
89

       
 

       
  };


     

       
90

       
 

       



     
···

       
121

       
 

       
      home            = cfg.dataDir;


     

       
122

       
 

       
      createHome      = true;


     

       
123

       
 

       
      uid             = config.ids.uids.gitolite;


     

       

       

       
     

       
124

       
 

       
      useDefaultShell = true;


     

       
125

       
 

       
    };


     

       

       

       
     

       
126

       
 

       



     

       
127

       
 

       
    systemd.services."gitolite-init" = {


     

       
128

       
 

       
      description = "Gitolite initialization";


     
···

       
85

       
 

       
          Gitolite user account. This is the username of the gitolite endpoint.


     

       
86

       
 

       
        '';


     

       
87

       
 

       
      };


     

       
88

       
+

       



     

       
89

       
+

       
      group = mkOption {


     

       
90

       
+

       
        type = types.str;


     

       
91

       
+

       
        default = "gitolite";


     

       
92

       
+

       
        description = ''


     

       
93

       
+

       
          Primary group of the Gitolite user account.


     

       
94

       
+

       
        '';


     

       
95

       
+

       
      };


     

       
96

       
 

       
    };


     

       
97

       
 

       
  };


     

       
98

       
 

       



     
···

       
129

       
 

       
      home            = cfg.dataDir;


     

       
130

       
 

       
      createHome      = true;


     

       
131

       
 

       
      uid             = config.ids.uids.gitolite;


     

       
132

       
+

       
      group           = cfg.group;


     

       
133

       
 

       
      useDefaultShell = true;


     

       
134

       
 

       
    };


     

       
135

       
+

       
    users.extraGroups."${cfg.group}".gid = config.ids.gids.gitolite;


     

       
136

       
 

       



     

       
137

       
 

       
    systemd.services."gitolite-init" = {


     

       
138

       
 

       
      description = "Gitolite initialization";