commit dd0a47e7ae2f6f33298c61f75aff2652e0a2f6d6 · pyrox.dev/nixpkgs

+1

nixos/modules/programs/x2goserver.nix

···

       69
        
           users.users.x2go = {

     

       70
        
             home = "/var/lib/x2go/db";

     

       71
        
             group = "x2go";

     

       0
        
       
     

       72
        
           };

     

       73
        
       

     

       74
        
           security.wrappers.x2gosqliteWrapper = {

···

       69
        
           users.users.x2go = {

     

       70
        
             home = "/var/lib/x2go/db";

     

       71
        
             group = "x2go";

     

       72
       +
             isSystemUser = true;

     

       73
        
           };

     

       74
        
       

     

       75
        
           security.wrappers.x2gosqliteWrapper = {

+1

nixos/modules/services/admin/oxidized.nix

···

       89
        
             group = cfg.group;

     

       90
        
             home = cfg.dataDir;

     

       91
        
             createHome = true;

     

       0
        
       
     

       92
        
           };

     

       93
        
       

     

       94
        
           systemd.services.oxidized = {

···

       89
        
             group = cfg.group;

     

       90
        
             home = cfg.dataDir;

     

       91
        
             createHome = true;

     

       92
       +
             isSystemUser = true;

     

       93
        
           };

     

       94
        
       

     

       95
        
           systemd.services.oxidized = {

+1

nixos/modules/services/audio/jack.nix

···

       223
        
               group = "jackaudio";

     

       224
        
               extraGroups = [ "audio" ];

     

       225
        
               description = "JACK Audio system service user";

     

       0
        
       
     

       226
        
             };

     

       227
        
             # http://jackaudio.org/faq/linux_rt_config.html

     

       228
        
             security.pam.loginLimits = [

···

       223
        
               group = "jackaudio";

     

       224
        
               extraGroups = [ "audio" ];

     

       225
        
               description = "JACK Audio system service user";

     

       226
       +
               isSystemUser = true;

     

       227
        
             };

     

       228
        
             # http://jackaudio.org/faq/linux_rt_config.html

     

       229
        
             security.pam.loginLimits = [

+4 -1

nixos/modules/services/backup/automysqlbackup.nix

···

       99
        
       

     

       100
        
           environment.systemPackages = [ pkg ];

     

       101
        
       

     

       102
       -
           users.users.${user}.group = group;

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       103
        
           users.groups.${group} = { };

     

       104
        
       

     

       105
        
           systemd.tmpfiles.rules = [

···

       99
        
       

     

       100
        
           environment.systemPackages = [ pkg ];

     

       101
        
       

     

       102
       +
           users.users.${user} = {

     

       103
       +
             group = group;

     

       104
       +
             isSystemUser = true;

     

       105
       +
           };

     

       106
        
           users.groups.${group} = { };

     

       107
        
       

     

       108
        
           systemd.tmpfiles.rules = [

+1

nixos/modules/services/continuous-integration/buildkite-agent.nix

···

       191
        
               createHome = true;

     

       192
        
               description = "Buildkite agent user";

     

       193
        
               extraGroups = [ "keys" ];

     

       0
        
       
     

       194
        
             };

     

       195
        
       

     

       196
        
           environment.systemPackages = [ cfg.package ];

···

       191
        
               createHome = true;

     

       192
        
               description = "Buildkite agent user";

     

       193
        
               extraGroups = [ "keys" ];

     

       194
       +
               isSystemUser = true;

     

       195
        
             };

     

       196
        
       

     

       197
        
           environment.systemPackages = [ cfg.package ];

+4 -1

nixos/modules/services/databases/redis.nix

···

       194
        
             allowedTCPPorts = [ cfg.port ];

     

       195
        
           };

     

       196
        
       

     

       197
       -
           users.users.redis.description = "Redis database user";

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       198
        
       

     

       199
        
           environment.systemPackages = [ cfg.package ];

     

       200

···

       194
        
             allowedTCPPorts = [ cfg.port ];

     

       195
        
           };

     

       196
        
       

     

       197
       +
           users.users.redis = {

     

       198
       +
             description = "Redis database user";

     

       199
       +
             isSystemUser = true;

     

       200
       +
           };

     

       201
        
       

     

       202
        
           environment.systemPackages = [ cfg.package ];

     

       203

+1

nixos/modules/services/databases/rethinkdb.nix

···

       99
        
           users.users.rethinkdb = mkIf (cfg.user == "rethinkdb")

     

       100
        
             { name = "rethinkdb";

     

       101
        
               description = "RethinkDB server user";

     

       0
        
       
     

       102
        
             };

     

       103
        
       

     

       104
        
           users.groups = optionalAttrs (cfg.group == "rethinkdb") (singleton

···

       99
        
           users.users.rethinkdb = mkIf (cfg.user == "rethinkdb")

     

       100
        
             { name = "rethinkdb";

     

       101
        
               description = "RethinkDB server user";

     

       102
       +
               isSystemUser = true;

     

       103
        
             };

     

       104
        
       

     

       105
        
           users.groups = optionalAttrs (cfg.group == "rethinkdb") (singleton

+1

nixos/modules/services/editors/infinoted.nix

···

       115
        
             { name = "infinoted";

     

       116
        
               description = "Infinoted user";

     

       117
        
               group = cfg.group;

     

       0
        
       
     

       118
        
             };

     

       119
        
           users.groups = optional (cfg.group == "infinoted")

     

       120
        
             { name = "infinoted";

···

       115
        
             { name = "infinoted";

     

       116
        
               description = "Infinoted user";

     

       117
        
               group = cfg.group;

     

       118
       +
               isSystemUser = true;

     

       119
        
             };

     

       120
        
           users.groups = optional (cfg.group == "infinoted")

     

       121
        
             { name = "infinoted";

+1

nixos/modules/services/hardware/trezord.nix

···

       61
        
           users.users.trezord = {

     

       62
        
             group = "trezord";

     

       63
        
             description = "Trezor bridge daemon user";

     

       0
        
       
     

       64
        
           };

     

       65
        
       

     

       66
        
           users.groups.trezord = {};

···

       61
        
           users.users.trezord = {

     

       62
        
             group = "trezord";

     

       63
        
             description = "Trezor bridge daemon user";

     

       64
       +
             isSystemUser = true;

     

       65
        
           };

     

       66
        
       

     

       67
        
           users.groups.trezord = {};

+1

nixos/modules/services/hardware/usbmuxd.nix

···

       47
        
             name = cfg.user;

     

       48
        
             description = "usbmuxd user";

     

       49
        
             group = cfg.group;

     

       0
        
       
     

       50
        
           };

     

       51
        
       

     

       52
        
           users.groups = optional (cfg.group == defaultUserGroup) {

···

       47
        
             name = cfg.user;

     

       48
        
             description = "usbmuxd user";

     

       49
        
             group = cfg.group;

     

       50
       +
             isSystemUser = true;

     

       51
        
           };

     

       52
        
       

     

       53
        
           users.groups = optional (cfg.group == defaultUserGroup) {

+1

nixos/modules/services/hardware/vdr.nix

···

       66
        
           users.users.vdr = {

     

       67
        
             group = "vdr";

     

       68
        
             home = libDir;

     

       0
        
       
     

       69
        
           };

     

       70
        
       

     

       71
        
           users.groups.vdr = {};

···

       66
        
           users.users.vdr = {

     

       67
        
             group = "vdr";

     

       68
        
             home = libDir;

     

       69
       +
             isSystemUser = true;

     

       70
        
           };

     

       71
        
       

     

       72
        
           users.groups.vdr = {};

+1

nixos/modules/services/mail/mailhog.nix

···

       27
        
           users.users.mailhog = {

     

       28
        
             name = cfg.user;

     

       29
        
             description = "MailHog service user";

     

       0
        
       
     

       30
        
           };

     

       31
        
       

     

       32
        
           systemd.services.mailhog = {

···

       27
        
           users.users.mailhog = {

     

       28
        
             name = cfg.user;

     

       29
        
             description = "MailHog service user";

     

       30
       +
             isSystemUser = true;

     

       31
        
           };

     

       32
        
       

     

       33
        
           systemd.services.mailhog = {

+1

nixos/modules/services/misc/airsonic.nix

···

       148
        
             name = cfg.user;

     

       149
        
             home = cfg.home;

     

       150
        
             createHome = true;

     

       0
        
       
     

       151
        
           };

     

       152
        
         };

     

       153
        
       }

···

       148
        
             name = cfg.user;

     

       149
        
             home = cfg.home;

     

       150
        
             createHome = true;

     

       151
       +
             isSystemUser = true;

     

       152
        
           };

     

       153
        
         };

     

       154
        
       }

+4 -2

nixos/modules/services/misc/docker-registry.nix

···

       145
        
           };

     

       146
        
       

     

       147
        
           users.users.docker-registry =

     

       148
       -
             if cfg.storagePath != null

     

       149
        
             then {

     

       150
        
               createHome = true;

     

       151
        
               home = cfg.storagePath;

     

       152
        
             }

     

       153
       -
             else {};

     

       0
        
       
     

       0
        
       
     

       154
        
         };

     

       155
        
       }

···

       145
        
           };

     

       146
        
       

     

       147
        
           users.users.docker-registry =

     

       148
       +
             (if cfg.storagePath != null

     

       149
        
             then {

     

       150
        
               createHome = true;

     

       151
        
               home = cfg.storagePath;

     

       152
        
             }

     

       153
       +
             else {}) // {

     

       154
       +
               isSystemUser = true;

     

       155
       +
             };

     

       156
        
         };

     

       157
        
       }

+4 -1

nixos/modules/services/misc/errbot.nix

···

       76
        
         };

     

       77
        
       

     

       78
        
         config = mkIf (cfg.instances != {}) {

     

       79
       -
           users.users.errbot.group = "errbot";

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       80
        
           users.groups.errbot = {};

     

       81
        
       

     

       82
        
           systemd.services = mapAttrs' (name: instanceCfg: nameValuePair "errbot-${name}" (

···

       76
        
         };

     

       77
        
       

     

       78
        
         config = mkIf (cfg.instances != {}) {

     

       79
       +
           users.users.errbot = {

     

       80
       +
             group = "errbot";

     

       81
       +
             isSystemUser = true;

     

       82
       +
           };

     

       83
        
           users.groups.errbot = {};

     

       84
        
       

     

       85
        
           systemd.services = mapAttrs' (name: instanceCfg: nameValuePair "errbot-${name}" (

+1

nixos/modules/services/misc/gitea.nix

···

       409
        
               home = cfg.stateDir;

     

       410
        
               useDefaultShell = true;

     

       411
        
               group = "gitea";

     

       0
        
       
     

       412
        
             };

     

       413
        
           };

     

       414

···

       409
        
               home = cfg.stateDir;

     

       410
        
               useDefaultShell = true;

     

       411
        
               group = "gitea";

     

       412
       +
               isSystemUser = true;

     

       413
        
             };

     

       414
        
           };

     

       415

+1

nixos/modules/services/misc/gollum.nix

···

       71
        
             group = config.users.users.gollum.name;

     

       72
        
             description = "Gollum user";

     

       73
        
             createHome = false;

     

       0
        
       
     

       74
        
           };

     

       75
        
       

     

       76
        
           users.groups.gollum = { };

···

       71
        
             group = config.users.users.gollum.name;

     

       72
        
             description = "Gollum user";

     

       73
        
             createHome = false;

     

       74
       +
             isSystemUser = true;

     

       75
        
           };

     

       76
        
       

     

       77
        
           users.groups.gollum = { };

+4 -1

nixos/modules/services/misc/jellyfin.nix

···

       41
        
           };

     

       42
        
       

     

       43
        
           users.users = mkIf (cfg.user == "jellyfin") {

     

       44
       -
             jellyfin.group = cfg.group;

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       45
        
           };

     

       46
        
       

     

       47
        
           users.groups = mkIf (cfg.group == "jellyfin") {

···

       41
        
           };

     

       42
        
       

     

       43
        
           users.users = mkIf (cfg.user == "jellyfin") {

     

       44
       +
             jellyfin = {

     

       45
       +
               group = cfg.group;

     

       46
       +
               isSystemUser = true;

     

       47
       +
             };

     

       48
        
           };

     

       49
        
       

     

       50
        
           users.groups = mkIf (cfg.group == "jellyfin") {

+1

nixos/modules/services/misc/osrm.nix

···

       59
        
             group = config.users.users.osrm.name;

     

       60
        
             description = "OSRM user";

     

       61
        
             createHome = false;

     

       0
        
       
     

       62
        
           };

     

       63
        
       

     

       64
        
           users.groups.osrm = { };

···

       59
        
             group = config.users.users.osrm.name;

     

       60
        
             description = "OSRM user";

     

       61
        
             createHome = false;

     

       62
       +
             isSystemUser = true;

     

       63
        
           };

     

       64
        
       

     

       65
        
           users.groups.osrm = { };

+1

nixos/modules/services/monitoring/collectd.nix

···

       131
        
       

     

       132
        
           users.users = optional (cfg.user == "collectd") {

     

       133
        
             name = "collectd";

     

       0
        
       
     

       134
        
           };

     

       135
        
         };

     

       136
        
       }

···

       131
        
       

     

       132
        
           users.users = optional (cfg.user == "collectd") {

     

       133
        
             name = "collectd";

     

       134
       +
             isSystemUser = true;

     

       135
        
           };

     

       136
        
         };

     

       137
        
       }

+1

nixos/modules/services/monitoring/fusion-inventory.nix

···

       49
        
           users.users = singleton {

     

       50
        
             name = "fusion-inventory";

     

       51
        
             description = "FusionInventory user";

     

       0
        
       
     

       52
        
           };

     

       53
        
       

     

       54
        
           systemd.services.fusion-inventory = {

···

       49
        
           users.users = singleton {

     

       50
        
             name = "fusion-inventory";

     

       51
        
             description = "FusionInventory user";

     

       52
       +
             isSystemUser = true;

     

       53
        
           };

     

       54
        
       

     

       55
        
           systemd.services.fusion-inventory = {

+1

nixos/modules/services/monitoring/netdata.nix

···

       181
        
       

     

       182
        
           users.users = optional (cfg.user == defaultUser) {

     

       183
        
             name = defaultUser;

     

       0
        
       
     

       184
        
           };

     

       185
        
       

     

       186
        
           users.groups = optional (cfg.group == defaultUser) {

···

       181
        
       

     

       182
        
           users.users = optional (cfg.user == defaultUser) {

     

       183
        
             name = defaultUser;

     

       184
       +
             isSystemUser = true;

     

       185
        
           };

     

       186
        
       

     

       187
        
           users.groups = optional (cfg.group == defaultUser) {

+1

nixos/modules/services/monitoring/zabbix-agent.nix

···

       131
        
           users.users.${user} = {

     

       132
        
             description = "Zabbix Agent daemon user";

     

       133
        
             inherit group;

     

       0
        
       
     

       134
        
           };

     

       135
        
       

     

       136
        
           users.groups.${group} = { };

···

       131
        
           users.users.${user} = {

     

       132
        
             description = "Zabbix Agent daemon user";

     

       133
        
             inherit group;

     

       134
       +
             isSystemUser = true;

     

       135
        
           };

     

       136
        
       

     

       137
        
           users.groups.${group} = { };

+1

nixos/modules/services/networking/bitcoind.nix

···

       187
        
             group = cfg.group;

     

       188
        
             description = "Bitcoin daemon user";

     

       189
        
             home = cfg.dataDir;

     

       0
        
       
     

       190
        
           };

     

       191
        
           users.groups.${cfg.group} = {

     

       192
        
             name = cfg.group;

···

       187
        
             group = cfg.group;

     

       188
        
             description = "Bitcoin daemon user";

     

       189
        
             home = cfg.dataDir;

     

       190
       +
             isSystemUser = true;

     

       191
        
           };

     

       192
        
           users.groups.${cfg.group} = {

     

       193
        
             name = cfg.group;

+1 -1

nixos/modules/services/networking/dnscache.nix

···

       84
        
       

     

       85
        
         config = mkIf config.services.dnscache.enable {

     

       86
        
           environment.systemPackages = [ pkgs.djbdns ];

     

       87
       -
           users.users.dnscache = {};

     

       88
        
       

     

       89
        
           systemd.services.dnscache = {

     

       90
        
             description = "djbdns dnscache server";

···

       84
        
       

     

       85
        
         config = mkIf config.services.dnscache.enable {

     

       86
        
           environment.systemPackages = [ pkgs.djbdns ];

     

       87
       +
           users.users.dnscache.isSystemUser = true;

     

       88
        
       

     

       89
        
           systemd.services.dnscache = {

     

       90
        
             description = "djbdns dnscache server";

+1

nixos/modules/services/networking/dnscrypt-wrapper.nix

···

       142
        
             description = "dnscrypt-wrapper daemon user";

     

       143
        
             home = "${dataDir}";

     

       144
        
             createHome = true;

     

       0
        
       
     

       145
        
           };

     

       146
        
           users.groups.dnscrypt-wrapper = { };

     

       147

···

       142
        
             description = "dnscrypt-wrapper daemon user";

     

       143
        
             home = "${dataDir}";

     

       144
        
             createHome = true;

     

       145
       +
             isSystemUser = true;

     

       146
        
           };

     

       147
        
           users.groups.dnscrypt-wrapper = { };

     

       148

+1

nixos/modules/services/networking/hans.nix

···

       138
        
           users.users = singleton {

     

       139
        
             name = hansUser;

     

       140
        
             description = "Hans daemon user";

     

       0
        
       
     

       141
        
           };

     

       142
        
         };

     

       143

···

       138
        
           users.users = singleton {

     

       139
        
             name = hansUser;

     

       140
        
             description = "Hans daemon user";

     

       141
       +
             isSystemUser = true;

     

       142
        
           };

     

       143
        
         };

     

       144

+1

nixos/modules/services/networking/matterbridge.nix

···

       95
        
           users.users = optional (cfg.user == "matterbridge")

     

       96
        
             { name = "matterbridge";

     

       97
        
               group = "matterbridge";

     

       0
        
       
     

       98
        
             };

     

       99
        
       

     

       100
        
           users.groups = optional (cfg.group == "matterbridge")

···

       95
        
           users.users = optional (cfg.user == "matterbridge")

     

       96
        
             { name = "matterbridge";

     

       97
        
               group = "matterbridge";

     

       98
       +
               isSystemUser = true;

     

       99
        
             };

     

       100
        
       

     

       101
        
           users.groups = optional (cfg.group == "matterbridge")

+1

nixos/modules/services/networking/morty.nix

···

       74
        
             { description = "Morty user";

     

       75
        
               createHome = true;

     

       76
        
               home = "/var/lib/morty";

     

       0
        
       
     

       77
        
             };

     

       78
        
       

     

       79
        
           systemd.services.morty =

···

       74
        
             { description = "Morty user";

     

       75
        
               createHome = true;

     

       76
        
               home = "/var/lib/morty";

     

       77
       +
               isSystemUser = true;

     

       78
        
             };

     

       79
        
       

     

       80
        
           systemd.services.morty =

+1

nixos/modules/services/networking/nghttpx/default.nix

···

       96
        
           users.groups.nghttpx = { };

     

       97
        
           users.users.nghttpx = {

     

       98
        
             group = config.users.groups.nghttpx.name;

     

       0
        
       
     

       99
        
           };

     

       100
        
             

     

       101

···

       96
        
           users.groups.nghttpx = { };

     

       97
        
           users.users.nghttpx = {

     

       98
        
             group = config.users.groups.nghttpx.name;

     

       99
       +
             isSystemUser = true;

     

       100
        
           };

     

       101
        
             

     

       102

+1

nixos/modules/services/networking/owamp.nix

···

       21
        
             name = "owamp";

     

       22
        
             group = "owamp";

     

       23
        
             description = "Owamp daemon";

     

       0
        
       
     

       24
        
           };

     

       25
        
       

     

       26
        
           users.groups = singleton {

···

       21
        
             name = "owamp";

     

       22
        
             group = "owamp";

     

       23
        
             description = "Owamp daemon";

     

       24
       +
             isSystemUser = true;

     

       25
        
           };

     

       26
        
       

     

       27
        
           users.groups = singleton {

+1

nixos/modules/services/networking/thelounge.nix

···

       56
        
           users.users.thelounge = {

     

       57
        
             description = "thelounge service user";

     

       58
        
             group = "thelounge";

     

       0
        
       
     

       59
        
           };

     

       60
        
           users.groups.thelounge = {};

     

       61
        
           systemd.services.thelounge = {

···

       56
        
           users.users.thelounge = {

     

       57
        
             description = "thelounge service user";

     

       58
        
             group = "thelounge";

     

       59
       +
             isSystemUser = true;

     

       60
        
           };

     

       61
        
           users.groups.thelounge = {};

     

       62
        
           systemd.services.thelounge = {

+1 -1

nixos/modules/services/networking/tinydns.nix

···

       32
        
         config = mkIf config.services.tinydns.enable {

     

       33
        
           environment.systemPackages = [ pkgs.djbdns ];

     

       34
        
       

     

       35
       -
           users.users.tinydns = {};

     

       36
        
       

     

       37
        
           systemd.services.tinydns = {

     

       38
        
             description = "djbdns tinydns server";

···

       32
        
         config = mkIf config.services.tinydns.enable {

     

       33
        
           environment.systemPackages = [ pkgs.djbdns ];

     

       34
        
       

     

       35
       +
           users.users.tinydns.isSystemUser = true;

     

       36
        
       

     

       37
        
           systemd.services.tinydns = {

     

       38
        
             description = "djbdns tinydns server";

+1 -1

nixos/modules/services/scheduling/marathon.nix

···

       93
        
             };

     

       94
        
           };

     

       95
        
       

     

       96
       -
           users.users.${cfg.user} = { };

     

       97
        
         };

     

       98
        
       }

···

       93
        
             };

     

       94
        
           };

     

       95
        
       

     

       96
       +
           users.users.${cfg.user}.isSystemUser = true;

     

       97
        
         };

     

       98
        
       }

+4 -1

nixos/modules/services/security/bitwarden_rs/default.nix

···

       74
        
             webVaultEnabled = mkDefault true;

     

       75
        
           };

     

       76
        
       

     

       77
       -
           users.users.bitwarden_rs = { inherit group; };

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       78
        
           users.groups.bitwarden_rs = { };

     

       79
        
       

     

       80
        
           systemd.services.bitwarden_rs = {

···

       74
        
             webVaultEnabled = mkDefault true;

     

       75
        
           };

     

       76
        
       

     

       77
       +
           users.users.bitwarden_rs = {

     

       78
       +
             inherit group;

     

       79
       +
             isSystemUser = true;

     

       80
       +
           };

     

       81
        
           users.groups.bitwarden_rs = { };

     

       82
        
       

     

       83
        
           systemd.services.bitwarden_rs = {

+1

nixos/modules/services/security/oauth2_proxy.nix

···

       546
        
       

     

       547
        
           users.users.oauth2_proxy = {

     

       548
        
             description = "OAuth2 Proxy";

     

       0
        
       
     

       549
        
           };

     

       550
        
       

     

       551
        
           systemd.services.oauth2_proxy = {

···

       546
        
       

     

       547
        
           users.users.oauth2_proxy = {

     

       548
        
             description = "OAuth2 Proxy";

     

       549
       +
             isSystemUser = true;

     

       550
        
           };

     

       551
        
       

     

       552
        
           systemd.services.oauth2_proxy = {

+1

nixos/modules/services/torrent/magnetico.nix

···

       171
        
       

     

       172
        
           users.users.magnetico = {

     

       173
        
             description = "Magnetico daemons user";

     

       0
        
       
     

       174
        
           };

     

       175
        
       

     

       176
        
           systemd.services.magneticod = {

···

       171
        
       

     

       172
        
           users.users.magnetico = {

     

       173
        
             description = "Magnetico daemons user";

     

       174
       +
             isSystemUser = true;

     

       175
        
           };

     

       176
        
       

     

       177
        
           systemd.services.magneticod = {

+1

nixos/modules/services/web-apps/codimd.nix

···

       893
        
             extraGroups = cfg.groups;

     

       894
        
             home = cfg.workDir;

     

       895
        
             createHome = true;

     

       0
        
       
     

       896
        
           };

     

       897
        
       

     

       898
        
           systemd.services.codimd = {

···

       893
        
             extraGroups = cfg.groups;

     

       894
        
             home = cfg.workDir;

     

       895
        
             createHome = true;

     

       896
       +
             isSystemUser = true;

     

       897
        
           };

     

       898
        
       

     

       899
        
           systemd.services.codimd = {

+1

nixos/modules/services/web-apps/frab.nix

···

       177
        
             { name = cfg.user;

     

       178
        
               group = cfg.group;

     

       179
        
               home = "${cfg.statePath}";

     

       0
        
       
     

       180
        
             }

     

       181
        
           ];

     

       182

···

       177
        
             { name = cfg.user;

     

       178
        
               group = cfg.group;

     

       179
        
               home = "${cfg.statePath}";

     

       180
       +
               isSystemUser = true;

     

       181
        
             }

     

       182
        
           ];

     

       183

+4 -1

nixos/modules/services/web-apps/limesurvey.nix

···

       277
        
       

     

       278
        
           systemd.services.httpd.after = optional mysqlLocal "mysql.service" ++ optional pgsqlLocal "postgresql.service";

     

       279
        
       

     

       280
       -
           users.users.${user}.group = group;

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       281
        
       

     

       282
        
         };

     

       283
        
       }

···

       277
        
       

     

       278
        
           systemd.services.httpd.after = optional mysqlLocal "mysql.service" ++ optional pgsqlLocal "postgresql.service";

     

       279
        
       

     

       280
       +
           users.users.${user} = {

     

       281
       +
             group = group;

     

       282
       +
             isSystemUser = true;

     

       283
       +
           };

     

       284
        
       

     

       285
        
         };

     

       286
        
       }

+4 -1

nixos/modules/services/web-apps/mediawiki.nix

···

       461
        
       

     

       462
        
           systemd.services.httpd.after = optional (cfg.database.createLocally && cfg.database.type == "mysql") "mysql.service";

     

       463
        
       

     

       464
       -
           users.users.${user}.group = group;

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       465
        
       

     

       466
        
           environment.systemPackages = [ mediawikiScripts ];

     

       467
        
         };

···

       461
        
       

     

       462
        
           systemd.services.httpd.after = optional (cfg.database.createLocally && cfg.database.type == "mysql") "mysql.service";

     

       463
        
       

     

       464
       +
           users.users.${user} = {

     

       465
       +
             group = group;

     

       466
       +
             isSystemUser = true;

     

       467
       +
           };

     

       468
        
       

     

       469
        
           environment.systemPackages = [ mediawikiScripts ];

     

       470
        
         };

+4 -2

nixos/modules/services/web-apps/moodle.nix

···

       309
        
       

     

       310
        
           systemd.services.httpd.after = optional mysqlLocal "mysql.service" ++ optional pgsqlLocal "postgresql.service";

     

       311
        
       

     

       312
       -
           users.users.${user}.group = group;

     

       313
       -
       

     

       0
        
       
     

       0
        
       
     

       314
        
         };

     

       315
        
       }

···

       309
        
       

     

       310
        
           systemd.services.httpd.after = optional mysqlLocal "mysql.service" ++ optional pgsqlLocal "postgresql.service";

     

       311
        
       

     

       312
       +
           users.users.${user} = {

     

       313
       +
             group = group;

     

       314
       +
             isSystemUser = true;

     

       315
       +
           };

     

       316
        
         };

     

       317
        
       }

+1

nixos/modules/services/web-apps/virtlyst.nix

···

       54
        
             home = stateDir;

     

       55
        
             createHome = true;

     

       56
        
             group = mkIf config.virtualisation.libvirtd.enable "libvirtd";

     

       0
        
       
     

       57
        
           };

     

       58
        
       

     

       59
        
           systemd.services.virtlyst = {

···

       54
        
             home = stateDir;

     

       55
        
             createHome = true;

     

       56
        
             group = mkIf config.virtualisation.libvirtd.enable "libvirtd";

     

       57
       +
             isSystemUser = true;

     

       58
        
           };

     

       59
        
       

     

       60
        
           systemd.services.virtlyst = {

+4 -1

nixos/modules/services/web-apps/wordpress.nix

···

       367
        
             })

     

       368
        
           ];

     

       369
        
       

     

       370
       -
           users.users.${user}.group = group;

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       371
        
       

     

       372
        
         };

     

       373
        
       }

···

       367
        
             })

     

       368
        
           ];

     

       369
        
       

     

       370
       +
           users.users.${user} = {

     

       371
       +
             group = group;

     

       372
       +
             isSystemUser = true;

     

       373
       +
           };

     

       374
        
       

     

       375
        
         };

     

       376
        
       }

+4 -1

nixos/modules/services/web-servers/hitch/default.nix

···

       102
        
       

     

       103
        
           environment.systemPackages = [ pkgs.hitch ];

     

       104
        
       

     

       105
       -
           users.users.hitch.group = "hitch";

     

       0
        
       
     

       0
        
       
     

       0
        
       
     

       106
        
           users.groups.hitch = {};

     

       107
        
         };

     

       108
        
       }

···

       102
        
       

     

       103
        
           environment.systemPackages = [ pkgs.hitch ];

     

       104
        
       

     

       105
       +
           users.users.hitch = {

     

       106
       +
             group = "hitch";

     

       107
       +
             isSystemUser = true;

     

       108
       +
           };

     

       109
        
           users.groups.hitch = {};

     

       110
        
         };

     

       111
        
       }

+1

nixos/modules/services/web-servers/traefik.nix

···

       117
        
             group = "traefik";

     

       118
        
             home = cfg.dataDir;

     

       119
        
             createHome = true;

     

       0
        
       
     

       120
        
           };

     

       121
        
       

     

       122
        
           users.groups.traefik = {};

···

       117
        
             group = "traefik";

     

       118
        
             home = cfg.dataDir;

     

       119
        
             createHome = true;

     

       120
       +
             isSystemUser = true;

     

       121
        
           };

     

       122
        
       

     

       123
        
           users.groups.traefik = {};

+1

nixos/modules/services/web-servers/unit/default.nix

···

       116
        
           users.users = optionalAttrs (cfg.user == "unit") (singleton {

     

       117
        
             name = "unit";

     

       118
        
             group = cfg.group;

     

       0
        
       
     

       119
        
           });

     

       120
        
       

     

       121
        
           users.groups = optionalAttrs (cfg.group == "unit") (singleton {

···

       116
        
           users.users = optionalAttrs (cfg.user == "unit") (singleton {

     

       117
        
             name = "unit";

     

       118
        
             group = cfg.group;

     

       119
       +
             isSystemUser = true;

     

       120
        
           });

     

       121
        
       

     

       122
        
           users.groups = optionalAttrs (cfg.group == "unit") (singleton {