diff options
| author | Michael Raskin <7c6f434c@mail.ru> | 2014-06-09 00:54:13 +0400 |
|---|---|---|
| committer | Michael Raskin <7c6f434c@mail.ru> | 2014-06-09 00:54:21 +0400 |
| commit | e68a5b265a96134243a1572f43dfc4ff75dd082b (patch) | |
| tree | 59f76e371310fd7764ffa451d11f320c4c3fd56a /nixos/modules/security/sudo.nix | |
| parent | 4b144de36774b4e740948ec2cbc61677b2fb7456 (diff) | |
| download | nixlib-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar nixlib-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar.gz nixlib-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar.bz2 nixlib-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar.lz nixlib-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar.xz nixlib-e68a5b265a96134243a1572f43dfc4ff75dd082b.tar.zst nixlib-e68a5b265a96134243a1572f43dfc4ff75dd082b.zip | |
Enable checking sudoers syntax. Fixes #2850, probably.
Diffstat (limited to 'nixos/modules/security/sudo.nix')
| -rw-r--r-- | nixos/modules/security/sudo.nix | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/nixos/modules/security/sudo.nix b/nixos/modules/security/sudo.nix index 6cfeac0d7dc8..cce1e785563b 100644 --- a/nixos/modules/security/sudo.nix +++ b/nixos/modules/security/sudo.nix @@ -81,10 +81,13 @@ in security.pam.services.sudo = { sshAgentAuth = true; }; environment.etc = singleton - { source = pkgs.writeText "sudoers-in" cfg.configFile; + { source = + pkgs.runCommand "sudoers" + {src = pkgs.writeText "sudoers-in" cfg.configFile; } # Make sure that the sudoers file is syntactically valid. # (currently disabled - NIXOS-66) - #"${pkgs.sudo}/sbin/visudo -f $src -c && cp $src $out"; + "${pkgs.sudo.override {keepVisudo = true;}}/sbin/visudo -f $src -c && + cp $src $out"; target = "sudoers"; mode = "0440"; }; |