diff options
| author | Phillip Cloud <cloud@standard.ai> | 2021-01-23 18:20:17 -0500 |
|---|---|---|
| committer | Phillip Cloud <cloud@standard.ai> | 2021-01-23 19:44:37 -0500 |
| commit | 2a3cb407b04d322fd72bedc74b2751c40c36b4f1 (patch) | |
| tree | 8881538dbb9fe92d319ea5544f4e325acf1464cb /nixos/modules/services/networking/nomad.nix | |
| parent | de71f5b50670908026842672aebe2565d239cda0 (diff) | |
| download | nixpkgs-2a3cb407b04d322fd72bedc74b2751c40c36b4f1.tar nixpkgs-2a3cb407b04d322fd72bedc74b2751c40c36b4f1.tar.gz nixpkgs-2a3cb407b04d322fd72bedc74b2751c40c36b4f1.tar.bz2 nixpkgs-2a3cb407b04d322fd72bedc74b2751c40c36b4f1.tar.lz nixpkgs-2a3cb407b04d322fd72bedc74b2751c40c36b4f1.tar.xz nixpkgs-2a3cb407b04d322fd72bedc74b2751c40c36b4f1.tar.zst nixpkgs-2a3cb407b04d322fd72bedc74b2751c40c36b4f1.zip | |
nixos/nomad: only set User if privileges are dropped
Diffstat (limited to 'nixos/modules/services/networking/nomad.nix')
| -rw-r--r-- | nixos/modules/services/networking/nomad.nix | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/nixos/modules/services/networking/nomad.nix b/nixos/modules/services/networking/nomad.nix index 87b4ff18818..60fefa2a1da 100644 --- a/nixos/modules/services/networking/nomad.nix +++ b/nixos/modules/services/networking/nomad.nix @@ -137,7 +137,7 @@ in Restart = "on-failure"; RestartSec = 2; TasksMax = "infinity"; - User = "nomad"; + User = optionalString cfg.dropPrivileges "nomad"; } (mkIf cfg.enableDocker { SupplementaryGroups = "docker"; # space-separated string |