fix

2026-04-28 18:21:31 +02:00 · 2026-04-28 18:21:31 +02:00 · 5f4752ed13
commit 5f4752ed13
parent 4c1f3c4de6
2 changed files with 15 additions and 46 deletions
--- a/modules/nixos/users/mediamanager/default.nix
+++ b/modules/nixos/users/mediamanager/default.nix
@ -1,43 +0,0 @@
-{
-  lib,
-  pkgs,
-  inputs,
-  namespace,
-  system,
-  target,
-  format,
-  virtual,
-  systems,
-  config,
-  ...
-}:
-with lib;
-with lib.${namespace}; let
-  username = "mediamanager";
-  admin = false;
-  extraGroups = ["mediamanager"];
-  trustedSshKeys = [
-  #KK
-    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF1gj+j+09T8n2HjpBod13WGroWn1cLmNUDmQfGVZllM kylekrein@fleetcarrier"
-    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPx+q1QnVnF/bG02Q8eBjwKEX9li2ZrsJmmN+N/7Sl5Z kylekrein@anaconda"
-  #A
-    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICTZaLuOuuoeaYOuXH0KTe91X5nFfUvve3305ADajnvj alidrisel@localhost.localdomain"
-  ];
-
-  cfg = config.${namespace}.users.${username};
-in {
-  options.${namespace}.users.${username} = with types; {
-    enable = mkBoolOpt false "Enable ${username} user";
-    config = mkOpt types.attrs {} "Additional home manager config for ${username}";
-  };
-
-  config = mkUser {
-    inherit config;
-    inherit (cfg) enable;
-    homeConfig = cfg.config;
-    inherit username;
-    inherit admin;
-    inherit extraGroups;
-    inherit trustedSshKeys;
-  };
-}
--- a/systems/x86_64-linux/stargate/default.nix
+++ b/systems/x86_64-linux/stargate/default.nix
@ -140,10 +140,22 @@ in {
    config = {};
  };
  users.groups.mediamanager = {};
-  custom.users.mediamanager = {
-    enable = true;
-    config = {};
+  snowfallorg.users.mediamanager = {
+    create = true;
+    admin = false;
+    home = {
+    	 enable = false;
+    };
  };
+  users.users.mediamanager = {
+    extraGroups = ["mediamanager"];
+    hashedPassword = "!";
+    openssh.authorizedKeys.keys = config.users.users.kylekrein.openssh.authorizedKeys.keys ++
+    [
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICTZaLuOuuoeaYOuXH0KTe91X5nFfUvve3305ADajnvj alidrisel@localhost.localdomain"
+    ];
+  };
+  systemd.tmpfiles.rules = ["d ${persist}/home/${username} 0700 mediamanager users -"]; # /persist/home/<user> created, owned by that user
  networking.firewall.allowedTCPPorts = [80 443 22];
  # ======================== DO NOT CHANGE THIS ========================
  system.stateVersion = "25.05";