fix: move pam configuration to sudo_local #1020
Open
+54
−37
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Addresses #985 and #787.
/etc/pam.d/sudo_local
environment.etc
pam_reattach
option to fix sudo TouchID in tmuxImplementation uses
environment.etc
to create the/etc/pam.d/sudo_local
file and adds thepkgs.pam-reattach
option provided in #662. Follows the comment by @emilazy to have nix-darwin manage the file entirely. If the file exists already, nix-darwin should handle it through the usual warning telling the user to rename the file tosudo_local.before-nix-darwin
. As identified by @lilyball in their comment, the symlink approach here shouldn't impact users since it doesn't touch the main/etc/pam.d/sudo
file. As long as/etc/pam.d/sudo
remains a regular file than this should work fine without disrupting sudo to applynix-darwin
configurations.I recognize this may be a duplicate PR given all the other open issues/PRs, but I haven't seen movement on them in a while. Feel free to close this if it's unnecessary.