modules/base+server: force trusted users & add default allowed-users

author: seth <[email protected]> 2023-08-19 19:46:18 -0400
committer: seth <[email protected]> 2023-08-19 19:46:18 -0400
commit: e1896c62b007e80e159884fc0b05b435cd93c106 (patch)
tree: 69c143c1787a135d03b4aac4b9814eb76ce96f37
parent: efe7ea8b5f30393dd351ac058b85b2f77d17dc59 (diff)
2 files changed, 2 insertions, 2 deletions
diff --git a/modules/nixos/base/security.nix b/modules/nixos/base/security.nix
index a8536a5..e13d1c7 100644
--- a/modules/nixos/base/security.nix
+++ b/modules/nixos/base/security.nix
@@ -22,6 +22,6 @@ in {
   };
 
   nix.settings = {
-    trusted-users = mkDefault ["root" "@wheel"];
+    trusted-users = ["root" "@wheel"];
   };
 }
diff --git a/modules/nixos/server/default.nix b/modules/nixos/server/default.nix
index 0e2cd98..dd8e40b 100644
--- a/modules/nixos/server/default.nix
+++ b/modules/nixos/server/default.nix
@@ -30,7 +30,7 @@ in {
       };
 
       settings = {
-        allowed-users = [];
+        allowed-users = [config.networking.hostName];
         trusted-substituters = [
           "https://getchoo.cachix.org"
           "https://nix-community.cachix.org"
author	seth <[email protected]>	2023-08-19 19:46:18 -0400
committer	seth <[email protected]>	2023-08-19 19:46:18 -0400
commit	e1896c62b007e80e159884fc0b05b435cd93c106 (patch)
tree	69c143c1787a135d03b4aac4b9814eb76ce96f37
parent	efe7ea8b5f30393dd351ac058b85b2f77d17dc59 (diff)