40 lines
999 B
Nix
40 lines
999 B
Nix
{ ... }:
|
|
{
|
|
# Set up impernance configuration for things like bluetooth
|
|
# In this configuration with /etc and /var/log being persistent, only directories outside of that need to be done here. See hardware configuration for all mountpoints.
|
|
|
|
environment.persistence."/nix/persist/system" = {
|
|
hideMounts = true;
|
|
directories = [
|
|
"/var/lib/bluetooth"
|
|
"/var/lib/nixos"
|
|
"/var/lib/libvirt"
|
|
"/var/lib/waydroid"
|
|
"/var/lib/systemd/coredump"
|
|
"/etc/NetworkManager/system-connections"
|
|
"/etc/secureboot"
|
|
{
|
|
directory = "/var/lib/colord";
|
|
user = "colord";
|
|
group = "colord";
|
|
mode = "u=rwx,g=rx,o=";
|
|
}
|
|
{
|
|
directory = "/etc/nix";
|
|
user = "root";
|
|
group = "root";
|
|
mode = "u=rwx,g=rx,o=rx";
|
|
}
|
|
];
|
|
files = [
|
|
"/etc/machine-id"
|
|
];
|
|
};
|
|
|
|
security.sudo.extraConfig = ''
|
|
# rollback results in sudo lectures after each reboot
|
|
Defaults lecture = never
|
|
'';
|
|
|
|
}
|