summary refs log tree commit diff
path: root/nixos
diff options
context:
space:
mode:
authorWilliam A. Kennington III <william@wkennington.com>2015-05-21 19:06:03 -0700
committerWilliam A. Kennington III <william@wkennington.com>2015-05-21 20:10:52 -0700
commit4f943ef23720157d80084aff9646c25f4bf05a0f (patch)
treed19575dcf0d12c61c083c8bab958a1812965f658 /nixos
parent688e9ea04c19654e6702aba7cafb572c127f1fca (diff)
downloadnixpkgs-4f943ef23720157d80084aff9646c25f4bf05a0f.tar
nixpkgs-4f943ef23720157d80084aff9646c25f4bf05a0f.tar.gz
nixpkgs-4f943ef23720157d80084aff9646c25f4bf05a0f.tar.bz2
nixpkgs-4f943ef23720157d80084aff9646c25f4bf05a0f.tar.lz
nixpkgs-4f943ef23720157d80084aff9646c25f4bf05a0f.tar.xz
nixpkgs-4f943ef23720157d80084aff9646c25f4bf05a0f.tar.zst
nixpkgs-4f943ef23720157d80084aff9646c25f4bf05a0f.zip
nixos/lightdm: More changes
Diffstat (limited to 'nixos')
-rw-r--r--nixos/modules/services/x11/display-managers/lightdm.nix27
1 files changed, 20 insertions, 7 deletions
diff --git a/nixos/modules/services/x11/display-managers/lightdm.nix b/nixos/modules/services/x11/display-managers/lightdm.nix
index dedd0e63b5f..f6de8c02b18 100644
--- a/nixos/modules/services/x11/display-managers/lightdm.nix
+++ b/nixos/modules/services/x11/display-managers/lightdm.nix
@@ -124,11 +124,6 @@ in
 
   config = mkIf cfg.enable {
 
-    assertions = [ {
-      assertion = !config.services.accounts-daemon.enable;
-      message = "Lightdm does not properly support gnome accountservice";
-    } ];
-
     services.xserver.displayManager.slim.enable = false;
 
     services.xserver.displayManager.job = {
@@ -148,8 +143,26 @@ in
     services.dbus.enable = true;
     services.dbus.packages = [ lightdm ];
 
-    security.pam.services.lightdm = { allowNullPassword = true; startSession = true; };
-    security.pam.services.lightdm-greeter = { allowNullPassword = true; startSession = true; };
+    security.pam.services.lightdm = {
+      allowNullPassword = true;
+      startSession = true;
+    };
+    security.pam.services.lightdm-greeter = {
+      allowNullPassword = true;
+      startSession = true;
+      text = ''
+        auth     required pam_env.so
+        auth     required pam_permit.so
+
+        account  required pam_permit.so
+
+        password required pam_deny.so
+
+        session  required pam_env.so envfile=${config.system.build.pamEnvironment}
+        session  required pam_unix.so
+        session  optional ${pkgs.systemd}/lib/security/pam_systemd.so
+      '';
+    };
 
     users.extraUsers.lightdm = {
       createHome = true;