mirror of
https://github.com/ilyakooo0/nixpkgs.git
synced 2024-12-26 04:43:09 +03:00
Let services.openssh.forwardX11 imply programs.ssh.setXAuthLocation
This commit is contained in:
parent
e8315cb1ca
commit
f3c32cb2c1
@ -56,7 +56,6 @@ in
|
||||
|
||||
setXAuthLocation = mkOption {
|
||||
type = types.bool;
|
||||
default = config.services.xserver.enable;
|
||||
description = ''
|
||||
Whether to set the path to <command>xauth</command> for X11-forwarded connections.
|
||||
This causes a dependency on X11 packages.
|
||||
@ -165,6 +164,9 @@ in
|
||||
|
||||
config = {
|
||||
|
||||
programs.ssh.setXAuthLocation =
|
||||
mkDefault (config.services.xserver.enable || config.programs.ssh.forwardX11);
|
||||
|
||||
assertions =
|
||||
[ { assertion = cfg.forwardX11 -> cfg.setXAuthLocation;
|
||||
message = "cannot enable X11 forwarding without setting XAuth location";
|
||||
|
@ -227,6 +227,8 @@ in
|
||||
|
||||
config = mkIf cfg.enable {
|
||||
|
||||
programs.ssh.setXAuthLocation = mkForce cfg.forwardX11;
|
||||
|
||||
users.extraUsers.sshd =
|
||||
{ isSystemUser = true;
|
||||
description = "SSH privilege separation user";
|
||||
|
Loading…
Reference in New Issue
Block a user