Official NixOS Wiki

Doas: Difference between revisions

← Older edit
VisualWikitext
Unabomberlive (talk | contribs)
trusted
1,173 edits
Marked this version for translation
Fio (talk | contribs)
6 edits
m Rewording - defines what "it" is
 
(4 intermediate revisions by 2 users not shown)
Line 1: Line 1:
<languages/>
<translate>
<translate>
<!--T:1-->
<!--T:1-->
Line 20: Line 21:
<translate>
<translate>
<!--T:6-->
<!--T:6-->
<syntaxhighlight lang="nix">
<syntaxhighlight lang="nix">{ pkgs, ... }: {
security.doas.enable = true;
  security.sudo.enable = false;
security.sudo.enable = false;
 
security.doas.extraRules = [{
  security.doas.enable = true;
  users = ["foo"];
  security.doas.extraRules = [{
  # Optional, retains environment variables while running commands  
    users = ["foo"];
  # e.g. retains your NIX_PATH when applying your config
    # Optional, retains environment variables while running commands  
  keepEnv = true;  
    # e.g. retains your NIX_PATH when applying your config
  persist = true;  # Optional, don't ask for the password for some time, after a successfully authentication
    keepEnv = true;  
}];
    persist = true;  # Optional, don't ask for the password for some time, after a successfully authentication
</syntaxhighlight>
  }];
 
  # If using a flakes-based configuration, you'll need `git` in your system packages for system rebuilds
  environment.systemPackages = [ pkgs.git ];
}</syntaxhighlight>
</translate>
<translate>
== Rebuilding without Git in system packages ==
</translate>
<translate>
If you've forgotten to add Git to your system packages, and you need to rebuild your system, you can either:
 
# Reboot to select the last generation without doas
# Enter a Nix shell as root, with the git package. Then, run your <code>nixos-rebuild</code> command with git being in your <code>environment.systemPackages</code>.
</translate>
<translate>
  $ doas su
  $ nix shell nixpkgs#git  # Or you can use the legacy syntax `nix-shell -p git`
  $ nixos-rebuild --flake /path/to/your/flake#your-hostname test
</translate>
<translate>
If everything looks good, you can now add your rebuild to your boot options.
</translate>
<translate>
  $ exit
  $ doas nixos-rebuild --flake /path/to/your/flake#your-hostname switch
</translate>
</translate>
[[Category:Applications]]
[[Category:Applications]]
[[Category:Security]]
[[Category:Security]]
Retrieved from "https://wiki.nixos.org/wiki/Doas"