+5 -5

systems/seber/services/ebil-club.nix

··· 24 24 groups."${name}" = { }; 25 25 users."${name}" = { 26 26 inherit home; 27 27 + createHome = false; 27 28 isNormalUser = true; 28 29 hashedPassword = "!"; 29 30 group = name; ··· 34 35 }; 35 36 36 37 systemd.tmpfiles.rules = [ 37 37 - "Z ${home} 0750 ${name} nginx" 38 38 - "d ${home}/${host} 0750 ${name} nginx -" 38 38 + "d ${home} 0750 ${name} nginx -" 39 39 + "d ${home}/${host} 2750 ${name} nginx -" 39 40 ]; 40 41 }; 41 42 in ··· 67 68 }; 68 69 69 70 systemd.tmpfiles.rules = [ 70 70 - "d /var/ebil.club 0755 - - -" 71 71 - "Z /var/ebil.club/ebil.club 0750 adam nginx" 72 72 - "d /var/ebil.club/ebil.club 0750 adam nginx -" 71 71 + "d /var/ebil.club 0755 root root -" 72 72 + "d /var/ebil.club/ebil.club 2750 adam nginx -" 73 73 ]; 74 74 }

+1 -1

systems/seber/services/lebel.nix

··· 40 40 sslCertificateKey = "/run/agenix/ssl-adamperkowski-key"; 41 41 }; 42 42 43 43 - systemd.tmpfiles.rules = [ "d /var/lebel 0750 adam users -" ]; 43 43 + systemd.tmpfiles.rules = [ "d /var/lebel 2750 adam users -" ]; 44 44 }

+1 -1

systems/seber/services/mimi.nix

··· 16 16 }; 17 17 }; 18 18 19 19 - systemd.tmpfiles.rules = [ "d /var/mimi 0750 adam users -" ]; 19 19 + systemd.tmpfiles.rules = [ "d /var/mimi 2750 adam users -" ]; 20 20 }

+1 -1

systems/seber/services/website.nix

··· 26 26 sslCertificateKey = "/run/agenix/ssl-adamperkowski-key"; 27 27 }; 28 28 29 29 - systemd.tmpfiles.rules = [ "d /var/website 0750 adam users -" ]; 29 29 + systemd.tmpfiles.rules = [ "d /var/website 2750 adam users -" ]; 30 30 }