ultima/modules/nixos/hardware/security/default.nix

{ x, pkgs, lib, config, ... }:

with lib;
with x;
let cfg = config.module.hardware.security;
in {
  options = { module.hardware.security = { enable = mkBool; }; };

  config = mkIf cfg.enable {
    security.sudo-rs = {
      execWheelOnly = true;
      wheelNeedsPassword = true;
      extraRules = [{
        users = [ userName ];
        commands = with pkgs; [
          {
            command = "${light}/bin/light";
            options = [ "NOPASSWD" ];
          }
          {
            command = "${uutils-coreutils-noprefix}/bin/tee";
            options = [ "NOPASSWD" ];
          }
        ];
      }];
    };
  };
}
IDK MAYBE LAST COMMIT BEFORE ARCHIVE, IM GOING TO SNOWFALL LIB 2024-12-16 12:55:24 +00:00			`{ x, pkgs, lib, config, ... }:`
update 2024-11-21 09:24:15 +00:00
			`with lib;`
update 2024-12-09 01:15:55 +00:00			`with x;`
update 2024-11-21 09:24:15 +00:00			`let cfg = config.module.hardware.security;`
			`in {`
update 2024-12-09 01:15:55 +00:00			`options = { module.hardware.security = { enable = mkBool; }; };`
update 2024-11-21 09:24:15 +00:00
			`config = mkIf cfg.enable {`
update 2024-12-06 12:57:22 +00:00			`security.sudo-rs = {`
			`execWheelOnly = true;`
			`wheelNeedsPassword = true;`
			`extraRules = [{`
			`users = [ userName ];`
			`commands = with pkgs; [`
			`{`
			`command = "${light}/bin/light";`
			`options = [ "NOPASSWD" ];`
			`}`
			`{`
			`command = "${uutils-coreutils-noprefix}/bin/tee";`
			`options = [ "NOPASSWD" ];`
			`}`
			`];`
			`}];`
update 2024-11-21 09:24:15 +00:00			`};`
			`};`
			`}`