Revert "Merge #2692: Use pam_env to properly setup system-wide env"

This reverts commit 18a0cdd86416a8cbc263cfa8cb96c460a53f7b5c.
author: Eelco Dolstra <eelco.dolstra@logicblox.com> 2014-06-10 13:03:44 +0200
committer: Eelco Dolstra <eelco.dolstra@logicblox.com> 2014-06-10 13:03:44 +0200
commit: 491c088731022463978e595956427e72db6306a9 (patch)
tree: 7b72dcd17ad081d12fbf24d39b0cd4c12a0651f2 /nixos/modules/security
parent: 9265a61453f0df3a8bbaf3dc53e32c239e3bdcf9 (diff)
download: nixlib-491c088731022463978e595956427e72db6306a9.tar
nixlib-491c088731022463978e595956427e72db6306a9.tar.gz
nixlib-491c088731022463978e595956427e72db6306a9.tar.bz2
nixlib-491c088731022463978e595956427e72db6306a9.tar.lz
nixlib-491c088731022463978e595956427e72db6306a9.tar.xz
nixlib-491c088731022463978e595956427e72db6306a9.tar.zst
nixlib-491c088731022463978e595956427e72db6306a9.zip
3 files changed, 6 insertions, 6 deletions
diff --git a/nixos/modules/security/ca.nix b/nixos/modules/security/ca.nix
index 57764dc870f3..f159e359f968 100644
--- a/nixos/modules/security/ca.nix
+++ b/nixos/modules/security/ca.nix
@@ -12,11 +12,9 @@ with lib;
         }
       ];
 
-    environment.systemVariables =
-      { OPENSSL_X509_CERT_FILE = "/etc/ssl/certs/ca-bundle.crt";
-        CURL_CA_BUNDLE         = "/etc/ssl/certs/ca-bundle.crt";
-        GIT_SSL_CAINFO         = "/etc/ssl/certs/ca-bundle.crt";
-      };
+    environment.variables.OPENSSL_X509_CERT_FILE = "/etc/ssl/certs/ca-bundle.crt";
+    environment.variables.CURL_CA_BUNDLE = "/etc/ssl/certs/ca-bundle.crt";
+    environment.variables.GIT_SSL_CAINFO = "/etc/ssl/certs/ca-bundle.crt";
 
   };
 
diff --git a/nixos/modules/security/pam.nix b/nixos/modules/security/pam.nix
index 02340fd78e8c..6a5eb4c720f8 100644
--- a/nixos/modules/security/pam.nix
+++ b/nixos/modules/security/pam.nix
@@ -186,7 +186,6 @@ let
               "password optional ${pkgs.samba}/lib/security/pam_smbpass.so nullok use_authtok try_first_pass"}
 
           # Session management.
-          session required pam_env.so envfile=${config.system.build.pamEnvironment}
           session required pam_unix.so
           ${optionalString cfg.setLoginUid
               "session required pam_loginuid.so"}
diff --git a/nixos/modules/security/sudo.nix b/nixos/modules/security/sudo.nix
index e8ed545c8cc7..cce1e785563b 100644
--- a/nixos/modules/security/sudo.nix
+++ b/nixos/modules/security/sudo.nix
@@ -58,6 +58,9 @@ in
         # Don't edit this file. Set the NixOS option ‘security.sudo.configFile’ instead.
 
         # Environment variables to keep for root and %wheel.
+        Defaults:root,%wheel env_keep+=LOCALE_ARCHIVE
+        Defaults:root,%wheel env_keep+=NIX_CONF_DIR
+        Defaults:root,%wheel env_keep+=NIX_PATH
         Defaults:root,%wheel env_keep+=TERMINFO_DIRS
         Defaults:root,%wheel env_keep+=TERMINFO
author	Eelco Dolstra <eelco.dolstra@logicblox.com>	2014-06-10 13:03:44 +0200
committer	Eelco Dolstra <eelco.dolstra@logicblox.com>	2014-06-10 13:03:44 +0200
commit	491c088731022463978e595956427e72db6306a9 (patch)
tree	7b72dcd17ad081d12fbf24d39b0cd4c12a0651f2 /nixos/modules/security
parent	9265a61453f0df3a8bbaf3dc53e32c239e3bdcf9 (diff)
download	nixlib-491c088731022463978e595956427e72db6306a9.tar nixlib-491c088731022463978e595956427e72db6306a9.tar.gz nixlib-491c088731022463978e595956427e72db6306a9.tar.bz2 nixlib-491c088731022463978e595956427e72db6306a9.tar.lz nixlib-491c088731022463978e595956427e72db6306a9.tar.xz nixlib-491c088731022463978e595956427e72db6306a9.tar.zst nixlib-491c088731022463978e595956427e72db6306a9.zip