diff options
| author | Jonpez2 <jonpez63@gmail.com> | 2022-06-06 16:56:42 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-06-06 16:56:42 +0100 |
| commit | 0cd560c95dd981bde84c93379f6af677d31a2d0b (patch) | |
| tree | 4c932ac31f4d43c047c18e9d3e498791b484b54b | |
| parent | 1dd7253133c4dfd2e7a16ad6fe505442cef38a5b (diff) | |
Add security.csm to ignored-acls
The security.csm ACL is, as far as I know, never reasonable to remove, so let's add it to the ignore-list in the vanilla nix image. This makes this image usable on GKE.
| -rw-r--r-- | docker.nix | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/docker.nix b/docker.nix index 0cd64856f..a236d61d3 100644 --- a/docker.nix +++ b/docker.nix @@ -125,6 +125,7 @@ let sandbox = "false"; build-users-group = "nixbld"; trusted-public-keys = "cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY="; + ignored-acls = security.csm; }; nixConfContents = (lib.concatStringsSep "\n" (lib.mapAttrsFlatten (n: v: "${n} = ${v}") nixConf)) + "\n"; |