nixpkgs/modules/config/nsswitch.nix

66 lines
1.7 KiB
Nix
Raw Normal View History

# Configuration for the Name Service Switch (/etc/nsswitch.conf).
2012-10-07 02:58:46 +02:00
{ config, pkgs, ... }:
with pkgs.lib;
let
options = {
# NSS modules. Hacky!
2012-10-07 02:58:46 +02:00
system.nssModules = mkOption {
internal = true;
default = [];
description = "
Search path for NSS (Name Service Switch) modules. This allows
several DNS resolution methods to be specified via
<filename>/etc/nsswitch.conf</filename>.
";
2012-10-07 02:58:46 +02:00
merge = mergeListOption;
apply = list:
let
list2 =
list
# !!! this should be in the LDAP module
2012-10-07 02:58:46 +02:00
++ optional config.users.ldap.enable pkgs.nss_ldap;
in {
list = list2;
2012-10-07 02:58:46 +02:00
path = makeLibraryPath list2;
};
};
};
2012-10-07 02:58:46 +02:00
inherit (config.services.avahi) nssmdns;
in
{
2012-10-07 02:58:46 +02:00
require = [ options ];
environment.etc =
[ # Name Service Switch configuration file. Required by the C library.
# !!! Factor out the mdns stuff. The avahi module should define
# an option used by this module.
2012-10-07 02:58:46 +02:00
{ source = pkgs.writeText "nsswitch.conf"
''
passwd: files ldap
group: files ldap
shadow: files ldap
hosts: files ${optionalString nssmdns "mdns_minimal [NOTFOUND=return]"} dns ${optionalString nssmdns "mdns"} myhostname
2012-10-07 02:58:46 +02:00
networks: files dns
ethers: files
services: files
protocols: files
'';
target = "nsswitch.conf";
}
];
# Use nss-myhostname to ensure that our hostname always resolves to
# a valid IP address. It returns all locally configured IP
# addresses, or ::1 and 127.0.0.2 as fallbacks.
system.nssModules = [ pkgs.nss_myhostname ];
}