summary refs log tree commit diff
path: root/nixos/modules/services/monitoring/prometheus/alertmanager.nix
diff options
context:
space:
mode:
authorBas van Dijk <v.dijk.bas@gmail.com>2019-04-10 17:12:36 +0200
committerBas van Dijk <v.dijk.bas@gmail.com>2019-04-10 20:38:40 +0200
commitcd4486ecc3a4ce0e4c8ec3ce87945f581f0a6037 (patch)
treef2636228214d1f280ff557c7f37571075ac38b47 /nixos/modules/services/monitoring/prometheus/alertmanager.nix
parent08d9cf7ad46dde32cc1dbe9b95d7ed43ef3a2faf (diff)
downloadnixpkgs-cd4486ecc3a4ce0e4c8ec3ce87945f581f0a6037.tar
nixpkgs-cd4486ecc3a4ce0e4c8ec3ce87945f581f0a6037.tar.gz
nixpkgs-cd4486ecc3a4ce0e4c8ec3ce87945f581f0a6037.tar.bz2
nixpkgs-cd4486ecc3a4ce0e4c8ec3ce87945f581f0a6037.tar.lz
nixpkgs-cd4486ecc3a4ce0e4c8ec3ce87945f581f0a6037.tar.xz
nixpkgs-cd4486ecc3a4ce0e4c8ec3ce87945f581f0a6037.tar.zst
nixpkgs-cd4486ecc3a4ce0e4c8ec3ce87945f581f0a6037.zip
nixos/prometheus/alertmanager: use DynamicUser instead of nobody
See issue #55370
Diffstat (limited to 'nixos/modules/services/monitoring/prometheus/alertmanager.nix')
-rw-r--r--nixos/modules/services/monitoring/prometheus/alertmanager.nix20
1 files changed, 1 insertions, 19 deletions
diff --git a/nixos/modules/services/monitoring/prometheus/alertmanager.nix b/nixos/modules/services/monitoring/prometheus/alertmanager.nix
index 31beee3d39d..11d85e9c4fc 100644
--- a/nixos/modules/services/monitoring/prometheus/alertmanager.nix
+++ b/nixos/modules/services/monitoring/prometheus/alertmanager.nix
@@ -40,22 +40,6 @@ in {
         '';
       };
 
-      user = mkOption {
-        type = types.str;
-        default = "nobody";
-        description = ''
-          User name under which Alertmanager shall be run.
-        '';
-      };
-
-      group = mkOption {
-        type = types.str;
-        default = "nogroup";
-        description = ''
-          Group under which Alertmanager shall be run.
-        '';
-      };
-
       configuration = mkOption {
         type = types.nullOr types.attrs;
         default = null;
@@ -152,10 +136,8 @@ in {
         wantedBy = [ "multi-user.target" ];
         after    = [ "network.target" ];
         serviceConfig = {
-          User = cfg.user;
-          Group = cfg.group;
           Restart  = "always";
-          PrivateTmp = true;
+          DynamicUser = true;
           WorkingDirectory = "/tmp";
           ExecStart = "${cfg.package}/bin/alertmanager" +
             optionalString (length cmdlineArgs != 0) (" \\\n  " +
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-05-18 05:20:34 +0000