jcollie.dev / nixos-runner
NixOS-based container for running GitHub actions
0
fork

Configure Feed

Select the types of activity you want to include in your feed.

more permission fixes

Jeffrey C. Ollie 09f54469 3c265f84

+6 -8
+6 -8
flake.nix
··· 201 201 defaultNixConf = { 202 202 sandbox = "true"; 203 203 build-users-group = "nixbld"; 204 - trusted-user = [ 204 + trusted-users = [ 205 205 "root" 206 206 "github" 207 207 ]; ··· 442 442 rm -f etc/group 443 443 cp "$tmp" etc/group 444 444 ''; 445 - enableFakechroot = true; 446 445 fakeRootCommands = '' 447 - chmod u=rwxt,u=rwx,o=rwx /tmp 448 - chmod u=rwxt,u=rwx,o=rwx /var/tmp 449 - chown -R 1001:1001 /github 450 - chmod u=rws,g=rw,o=rw ${lib.getExe pkgs.sudo} 451 - chmod u=rws,g=rw,o=rw ${lib.getExe pkgs.nix} 446 + chmod u=rwxt,u=rwx,o=rwx tmp 447 + chmod u=rwxt,u=rwx,o=rwx var/tmp 448 + chown -R 1001:1001 github 449 + chown -R 1001:1001 nix 452 450 ''; 453 451 config = { 454 452 Cmd = [ "${pkgs.bashInteractive}/bin/bash" ]; 455 - User = "github"; 453 + User = "1001:1001"; 456 454 WorkingDir = "/github/home"; 457 455 Env = [ 458 456 "USER=github"