mirror of
https://github.com/Moe1369/nix-fleet.git
synced 2026-04-24 23:59:07 +02:00
17 lines
363 B
Nix
17 lines
363 B
Nix
{ inputs, ... }: {
|
|
flake.nixosModules.security-sys-secureboot = { pkgs, lib, ... }: {
|
|
imports = [
|
|
inputs.lanzaboote.nixosModules.lanzaboote
|
|
];
|
|
|
|
environment.systemPackages = [ pkgs.sbctl ];
|
|
|
|
boot.loader.systemd-boot.enable = lib.mkForce false;
|
|
|
|
boot.lanzaboote = {
|
|
enable = true;
|
|
pkiBundle = "/var/lib/sbctl";
|
|
};
|
|
};
|
|
}
|