Modular Services: Difference between revisions
Draft |
→Research Topics: Intra-service dependencies |
||
| Line 27: | Line 27: | ||
Best practices for privilege de-escalation? | Best practices for privilege de-escalation? | ||
=== Intra-service dependencies === | |||
How should dependencies within a collection of services be expressed? | |||
Revision as of 20:52, 5 August 2025
Modular services are an experimental feature added to NixOS between the 25.05 and 25.11 releases.
For official documentation see the NixOS Manual.
This page exists to used to collect experiences and recommendations for using this feature that would not fit well in the NixOS manual.
Do's
Do not Do's
Research Topics
"One-shot" services
Some services run to completion and should not be restarted.
Should these services we be wrapped in scripts that never return?
Secrets management
How to load secrets without depending on specific service managers?
User management
How to create new users?
Security hardening
Best practices for privilege de-escalation?
Intra-service dependencies
How should dependencies within a collection of services be expressed?