alex/infrastructure
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

environment

Browse Source
This commit is contained in:
Alex Mickelson
2026-02-07 13:37:39 -07:00
parent 1f92a821fb
commit 5b50211103
1 changed files with 3 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
nix/home-server.nix
View File

@@ -338,21 +338,16 @@
PrivateMounts = false; PrivateMounts = false;
PrivateUsers = false; PrivateUsers = false;
ProtectHome = false; ProtectHome = false;
NoNewPrivileges = false; # Add this NoNewPrivileges = false;
# Ensure access to Nix store and system paths # Make sure the service can see /nix/store
BindReadOnlyPaths = [ BindReadOnlyPaths = [
"/nix/store" "/nix/store"
"/run/current-system"
];
# Set proper PATH
Environment = [
"PATH=/run/current-system/sw/bin:/nix/var/nix/profiles/default/bin:/usr/bin:/bin"
]; ];
Restart = lib.mkForce "always"; Restart = lib.mkForce "always";
}; };
users.users.gitea-runner = { users.users.gitea-runner = {
isNormalUser = true; isNormalUser = true;
description = "Gitea Actions Runner"; description = "Gitea Actions Runner";