3
0
Fork 0
forked from mirrors/nixpkgs
nixpkgs/nixos/modules/services/audio
Dominique Martinet d8fa2627f3 mpd: remove user/group from conf
the options should not be set as we already change user with service
file, man mpd.conf says "Do not use this option if you start MPD as an
unprivileged user"

The group option actually is not documented at all anymore and probably
no longer exists.

These options get in the way of setting up confinement for the service,
as it would otherwise be pretty straightforward to setup, but even if
mpd is not root it would check the user exists within the chroot which
is more work (need to get nss working):

  systemd.services.mpd = {
    serviceConfig.BindPaths = [
      # mpd state dir
      "/var/lib/mpd"
      # notify systemd service started up
      "/run/systemd/notify"
    ];
    serviceConfig.BindReadOnlyPaths = [
      "/path/to/music:/var/lib/mpd/music"
    ];
    # ProtectSystem is not compatible with confinement
    serviceConfig.ProtectSystem = lib.mkForce false;
    confinement = {
      enable = true;
      binSh = null;
      mode = "chroot-only";
    };
  };
2020-05-10 20:24:33 +02:00
..
alsa.nix nixos/alsa: replace list by attrset in environment.etc 2020-02-14 01:17:18 +01:00
icecast.nix
jack.nix treewide: Switch to system users 2019-10-12 22:25:28 +02:00
liquidsoap.nix
mopidy.nix mopidy: Create a mopidyPackages set 2020-04-17 12:39:03 +01:00
mpd.nix mpd: remove user/group from conf 2020-05-10 20:24:33 +02:00
roon-server.nix nixos/roon-server: fix broken user generation 2019-11-29 23:50:10 +01:00
slimserver.nix
snapserver.nix
spotifyd.nix nixos/spotifyd: update spotifyd flags 2019-09-21 17:10:00 -05:00
squeezelite.nix
ympd.nix nixos/modules: Remove all usages of types.string 2019-08-31 18:19:00 +02:00