modules/nixos/users/system.nix


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17

{ config, lib, ... }:

let
  cfg = config.borealis.users.system;
in

{
  options.borealis.users.system = {
    enable = lib.mkEnableOption "an untrusted system user";
  };

  config = lib.mkIf cfg.enable {
    users.users.${config.networking.hostName} = {
      isNormalUser = true;
    };
  };
}