|
|
|
@ -6,8 +6,7 @@
|
|
|
|
|
(metznet machines ldap)
|
|
|
|
|
(metznet system base-system)
|
|
|
|
|
(gnu packages vim)
|
|
|
|
|
(gnu packages ssh)
|
|
|
|
|
(gnu packages python-web)
|
|
|
|
|
(gnu packages version-control)
|
|
|
|
|
(gnu packages shells))
|
|
|
|
|
|
|
|
|
|
(operating-system
|
|
|
|
@ -19,18 +18,22 @@
|
|
|
|
|
(device (file-system-label "ldap-guix-data"))
|
|
|
|
|
(mount-point "/")
|
|
|
|
|
(type "ext4")) %base-file-systems))
|
|
|
|
|
(groups (cons (user-group
|
|
|
|
|
(system? #t)
|
|
|
|
|
(name "aws")) %metznet-base-groups))
|
|
|
|
|
(users (cons (user-account
|
|
|
|
|
(name "aws")
|
|
|
|
|
(group "root")
|
|
|
|
|
(shell (file-append zsh "/bin/zsh"))) %metznet-base-user-accounts))
|
|
|
|
|
(group "aws")
|
|
|
|
|
(shell (file-append zsh "/bin/zsh")))
|
|
|
|
|
%metznet-base-user-accounts))
|
|
|
|
|
|
|
|
|
|
(sudoers-file (plain-file "sudoers"
|
|
|
|
|
(string-join (list "Defaults mail_badpass"
|
|
|
|
|
(string-join (list
|
|
|
|
|
"root ALL=(ALL:ALL) NOPASSWD:ALL"
|
|
|
|
|
"%root ALL=(ALL:ALL) NOPASSWD:ALL" "")
|
|
|
|
|
"\n")))
|
|
|
|
|
"%aws ALL=(ALL:ALL) ALL"
|
|
|
|
|
"%aws ALL=(root) NOPASSWD:/run/setuid-programs/passwd" "") "\n")))
|
|
|
|
|
|
|
|
|
|
(packages (cons* openssh awscli neovim %metznet-base-packages))
|
|
|
|
|
(packages (cons* git neovim %metznet-base-packages))
|
|
|
|
|
|
|
|
|
|
(services
|
|
|
|
|
(cons* (service aws-service-type) ldap-services)))
|
|
|
|
|