nix-community/home-manager
1
0
Fork 0
mirror of https://github.com/nix-community/home-manager.git synced 2025-12-08 10:01:05 +01:00
Code Activity

home-environment: add home.uid option

Browse source 
Add a home.uid option similar to home.username. When set, the
activation script verifies the current UID matches the expected
value using the new checkUid function.

When using the NixOS or nix-darwin modules, home.uid is
auto-discovered from users.users.<name>.uid when that value
is set.

This is useful for constructing paths that depend on the user's
UID, such as /run/user/<uid> paths for gpg-agent sockets or
other user-specific runtime directories.
This commit is contained in:
Bernardo Meurer 2025-12-03 22:52:03 +00:00 committed by Matthieu Coudron
parent d441981b20
commit a521eab881
6 changed files with 38 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

10
modules/home-environment.nix
View file

@ -193,6 +193,13 @@ in
description = "The user's username."; description = "The user's username.";
}; };
home.uid = mkOption {
type = types.nullOr types.ints.unsigned;
default = null;
example = 1000;
description = "The user's uid.";
};
home.homeDirectory = mkOption { home.homeDirectory = mkOption {
type = types.path; type = types.path;
defaultText = literalExpression '' defaultText = literalExpression ''
@ -842,6 +849,9 @@ in
if [[ ! -v SKIP_SANITY_CHECKS ]]; then if [[ ! -v SKIP_SANITY_CHECKS ]]; then
checkUsername ${lib.escapeShellArg config.home.username} checkUsername ${lib.escapeShellArg config.home.username}
checkHomeDirectory ${lib.escapeShellArg config.home.homeDirectory} checkHomeDirectory ${lib.escapeShellArg config.home.homeDirectory}
${lib.optionalString (config.home.uid != null) ''
checkUid ${toString config.home.uid}
''}
fi fi
${lib.optionalString config.home.activationGenerateGcRoot '' ${lib.optionalString config.home.activationGenerateGcRoot ''

11
modules/lib-bash/activation-init.sh
View file

@ -117,6 +117,17 @@ function checkHomeDirectory() {
fi fi
} }
function checkUid() {
local expectedUid="$1"
local actualUid
actualUid="$(id -u)"
if [[ "$actualUid" != "$expectedUid" ]]; then
_iError 'Error: UID is "%s" but we expect "%s"' "$actualUid" "$expectedUid"
exit 1
fi
}
# Note, the VERBOSE_ECHO variable is deprecated and should not be used inside # Note, the VERBOSE_ECHO variable is deprecated and should not be used inside
# the Home Manager project. It is provided here for backwards compatibility. # the Home Manager project. It is provided here for backwards compatibility.
if [[ -v VERBOSE ]]; then if [[ -v VERBOSE ]]; then

1
nixos/common.nix
View file

@ -53,6 +53,7 @@ let
home.username = config.users.users.${name}.name; home.username = config.users.users.${name}.name;
home.homeDirectory = config.users.users.${name}.home; home.homeDirectory = config.users.users.${name}.home;
home.uid = mkIf (config.users.users.${name}.uid != null) config.users.users.${name}.uid;
# Forward `nix.enable` from the OS configuration. The # Forward `nix.enable` from the OS configuration. The
# conditional is to check whether nix-darwin is new enough # conditional is to check whether nix-darwin is new enough

2
tests/modules/home-environment/default.nix
View file

@ -3,4 +3,6 @@
home-session-search-variables = ./session-search-variables.nix; home-session-search-variables = ./session-search-variables.nix;
home-session-variables = ./session-variables.nix; home-session-variables = ./session-variables.nix;
home-nixpkgs-release-check-pkgs = ./nixpkgs-release-check-pkgs.nix; home-nixpkgs-release-check-pkgs = ./nixpkgs-release-check-pkgs.nix;
home-uid = ./uid.nix;
home-uid-null = ./uid-null.nix;
} }

7
tests/modules/home-environment/uid-null.nix Normal file
View file

@ -0,0 +1,7 @@
{
# home.uid defaults to null, so checkUid should not be called in the activation script
nmt.script = ''
assertFileNotRegex activate "checkUid [0-9]+"
'';
}

7
tests/modules/home-environment/uid.nix Normal file
View file

@ -0,0 +1,7 @@
{
home.uid = 1000;
nmt.script = ''
assertFileContains activate "checkUid 1000"
'';
}