nix-config/modules/users.nix

{
  lib,
  config,
  pkgs,
  ...
}:
with lib; let
  cfg = config.modules.users;
in {
  options.modules.users = {
    root.disablePassword = mkEnableOption "Disables root password";
    phundrak = mkOption {
      type = types.bool;
      default = true;
    };
  };

  config = {
    users.users = {
      root = {
        hashedPassword = mkIf cfg.root.disablePassword "*";
        shell = pkgs.zsh;
      };
      phundrak = {
        isNormalUser = true;
        description = "Lucien Cartier-Tilet";
        extraGroups = ["networkmanager" "wheel" "docker" "dialout" "podman"];
        shell = pkgs.zsh;
        openssh.authorizedKeys.keyFiles = [
          ./keys/id_gampo.pub
          ./keys/id_marpa.pub
          ./keys/id_tilo.pub
          ./keys/id_opn4.pub
        ];
      };
    };
    programs.zsh.enable = true;
  };
}
initial commit 2025-05-04 02:47:36 +02:00			`{`
			`lib,`
			`config,`
			`pkgs,`
			`...`
			`}:`
			`with lib; let`
			`cfg = config.modules.users;`
			`in {`
			`options.modules.users = {`
			`root.disablePassword = mkEnableOption "Disables root password";`
			`phundrak = mkOption {`
			`type = types.bool;`
			`default = true;`
			`};`
			`};`

			`config = {`
			`users.users = {`
			`root = {`
			`hashedPassword = mkIf cfg.root.disablePassword "*";`
			`shell = pkgs.zsh;`
			`};`
			`phundrak = {`
			`isNormalUser = true;`
			`description = "Lucien Cartier-Tilet";`
			`extraGroups = ["networkmanager" "wheel" "docker" "dialout" "podman"];`
			`shell = pkgs.zsh;`
			`openssh.authorizedKeys.keyFiles = [`
			`./keys/id_gampo.pub`
			`./keys/id_marpa.pub`
			`./keys/id_tilo.pub`
			`./keys/id_opn4.pub`
			`];`
			`};`
			`};`
			`programs.zsh.enable = true;`
			`};`
			`}`