commit b3af89dd388831ab13e769a62375a3bdb758ad3f · pyrox.dev/nixpkgs

+9

nixos/modules/services/system/kerberos/default.nix

···

       7
       7
        
       

     

       8
       8
        
       let

     

       9
       9
        
         inherit (lib) mkOption types;

     

       10
       10
       +
         inherit (lib.types) listOf str;

     

       10
       11
        
         cfg = config.services.kerberos_server;

     

       11
       12
        
         inherit (config.security.krb5) package;

     

       12
       13
        
       

     
···

       40
       41
        
                 - MIT Kerberos: <https://web.mit.edu/kerberos/krb5-1.21/doc/admin/conf_files/kdc_conf.html>

     

       41
       42
        
               '';

     

       42
       43
        
               default = { };

     

       44
       44
       +
             };

     

       45
       45
       +
       

     

       46
       46
       +
             extraKDCArgs = mkOption {

     

       47
       47
       +
               type = listOf str;

     

       48
       48
       +
               description = ''

     

       49
       49
       +
                 Extra arguments to pass to the KDC process. See {manpage}`kdc(8)`.

     

       50
       50
       +
               '';

     

       51
       51
       +
               default = [ ];

     

       43
       52
        
             };

     

       44
       53
        
           };

     

       45
       54
        
         };

+10 -1

nixos/modules/services/system/kerberos/heimdal.nix

···

       2
       2
        
         pkgs,

     

       3
       3
        
         config,

     

       4
       4
        
         lib,

     

       5
       5
       +
         utils,

     

       5
       6
        
         ...

     

       6
       7
        
       }:

     

       7
       8
        
       

     

       8
       9
        
       let

     

       9
       10
        
         inherit (lib) mapAttrs;

     

       11
       11
       +
         inherit (utils) escapeSystemdExecArgs;

     

       12
       12
       +
       

     

       10
       13
        
         cfg = config.services.kerberos_server;

     

       11
       14
        
         package = config.security.krb5.package;

     

       12
       15
        
       

     
···

       94
       97
        
               "info:heimdal"

     

       95
       98
        
             ];

     

       96
       99
        
             serviceConfig = {

     

       97
       97
       -
               ExecStart = "${package}/libexec/kdc --config-file=/etc/heimdal-kdc/kdc.conf";

     

       100
       100
       +
               ExecStart = escapeSystemdExecArgs (

     

       101
       101
       +
                 [

     

       102
       102
       +
                   "${package}/libexec/kdc"

     

       103
       103
       +
                   "--config-file=/etc/heimdal-kdc/kdc.conf"

     

       104
       104
       +
                 ]

     

       105
       105
       +
                 ++ cfg.extraKDCArgs

     

       106
       106
       +
               );

     

       98
       107
        
               Slice = "system-kerberos-server.slice";

     

       99
       108
        
               StateDirectory = "heimdal";

     

       100
       109
        
             };

+11 -1

nixos/modules/services/system/kerberos/mit.nix

···

       2
       2
        
         pkgs,

     

       3
       3
        
         config,

     

       4
       4
        
         lib,

     

       5
       5
       +
         utils,

     

       5
       6
        
         ...

     

       6
       7
        
       }:

     

       7
       8
        
       

     

       8
       9
        
       let

     

       9
       10
        
         inherit (lib) mapAttrs;

     

       11
       11
       +
         inherit (utils) escapeSystemdExecArgs;

     

       12
       12
       +
       

     

       10
       13
        
         cfg = config.services.kerberos_server;

     

       11
       14
        
         package = config.security.krb5.package;

     

       12
       15
        
         PIDFile = "/run/kdc.pid";

     
···

       91
       94
        
             serviceConfig = {

     

       92
       95
        
               Type = "forking";

     

       93
       96
        
               PIDFile = PIDFile;

     

       94
       94
       -
               ExecStart = "${package}/bin/krb5kdc -P ${PIDFile}";

     

       97
       97
       +
               ExecStart = escapeSystemdExecArgs (

     

       98
       98
       +
                 [

     

       99
       99
       +
                   "${package}/bin/krb5kdc"

     

       100
       100
       +
                   "-P"

     

       101
       101
       +
                   "${PIDFile}"

     

       102
       102
       +
                 ]

     

       103
       103
       +
                 ++ cfg.extraKDCArgs

     

       104
       104
       +
               );

     

       95
       105
        
               Slice = "system-kerberos-server.slice";

     

       96
       106
        
               StateDirectory = "krb5kdc";

     

       97
       107
        
             };