derped/nixos
1
0
Fork 0
Code Releases Activity

services/fprintd: update config+persist

Browse source
This commit is contained in:
Kevin Baensch 2025-03-24 11:17:27 +01:00 committed by Kevin Baensch
parent 4a41b5c0fc
commit f5c1e67fc6
Signed by: derped
SSH key fingerprint: SHA256:8/FSu/lmp3c1Z17Gml06JRIEHtDjhwdd7g6pBaHQWBc
2 changed files with 7 additions and 18 deletions
Download patch file Download diff file Expand all files Collapse all files

24
services/fprintd.nix
View file

@ -5,25 +5,13 @@
}: }:
with lib; with lib;
mkIf (elem "fprintd" config.machine.services) { mkIf (elem "fprintd" config.machine.services) {
security.pam.services =
let
unlock = [
"sudo"
"i3lock"
"login"
"lightdm"
];
in
listToAttrs (
forEach unlock (n: {
name = n;
value = {
fprintAuth = true;
};
})
);
services.fprintd = { services.fprintd = {
enable = true; enable = true;
}; };
# Do not allow login/unlock with fingerprint
security.pam.services = {
"login".fprintAuth = false;
"swaylock".fprintAuth = false;
};
} }

1
services/impermanence.nix
View file

@ -49,6 +49,7 @@ in
++ optional config.services.nginx.enable "/var/www" ++ optional config.services.nginx.enable "/var/www"
++ optional config.services.forgejo.enable "/var/lib/forgejo" ++ optional config.services.forgejo.enable "/var/lib/forgejo"
++ optional config.services.radicale.enable config.services.radicale.settings.storage.filesystem_folder ++ optional config.services.radicale.enable config.services.radicale.settings.storage.filesystem_folder
++ optional config.services.fprintd.enable "/var/lib/fprint"
++ optionals config.mailserver.enable [ ++ optionals config.mailserver.enable [
"/var/lib/dovecot" "/var/lib/dovecot"
"/var/vmail" "/var/vmail"