netns: add option 'allowedUser' for modules-only usage

The dependency on secure-node.nix prevented using nix-bitcoin by just importing modules.nix.
2020-08-21 22:36:01 +02:00
parent 9715134f06
commit 121301337b
2 changed files with 10 additions and 1 deletions
--- a/modules/presets/secure-node.nix
+++ b/modules/presets/secure-node.nix
@@ -238,6 +238,7 @@ in {
            [ cfg.hardware-wallets.group ]);
      openssh.authorizedKeys.keys = config.users.users.root.openssh.authorizedKeys.keys;
    };
+    nix-bitcoin.netns-isolation.allowedUser = operatorName;
    # Give operator access to onion hostnames
    services.onion-chef.enable = true;
    services.onion-chef.access.${operatorName} = [ "bitcoind" "clightning" "nginx" "liquidd" "spark-wallet" "electrs" "sshd" ];