-
-
Notifications
You must be signed in to change notification settings - Fork 12.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
On environment.systemVariables
#2953
Comments
Ah, cool. Then this issue is reduced to
|
What's the status of this problem? The Also the docs http://nixos.org/nixos/manual/#sec-upgrading and current ISOs still use HTTPS url, but then show adding an HTTP based URL. And furthermore the HTTPS url redirects to HTTP?
|
EDIT: sorry, I didn't notice you're using unstable. It does work for me on unstable/master. True, the manual is currently slightly inconsistent. IIRC, it was claimed that https isn't possible on the Amazon cloud hosting (at least not with our certificates). |
Status of this problem is the following: the key proposal has been implemented some time ago; there are also some other things to think about, but their priority is low, so the ticket is kept open—I'll think about all this stuff again when I get some spare time. |
Status of the https problem is that it has been fixed by #2692 and, I hope, not broken by the fix to this issue. |
Did #2692 get reverted? |
I don't think so. |
Oh he reverted it in release-14.04 but merged in master. |
(triage) @kirelagin What’s the status now? |
Well, the status is that I totally forgot about this issue and I’m not sure if it is still relevant at all. I’ll take a look ASAP (hopefully, today). |
ping @kirelagin |
FWIW, I need |
I suggest we close this (because no followup) and create new issues for related problems. @joachifm |
Seems that #2692 had an undesirable side-effect: previously it was enough to restart the shell after the environment was updated (e.g.
nixos-update switch
) but now a relogin is required.Also that's a good chance to reorganise that part of code. I think it might be better to prepare an attrset with all the variables intercalated with
:
inshell-environment.nix
without the actualexport
statements and then have functions that translate the attrset into shell's syntax for exporting variables (export foo=bar
for bash and co, zsh included;setenv foo bar
for csh; etc).sudo
, and preserving them insudoers
is not an option, as preserving variables as opposed to resetting them to system-defaults might have security implications.So I propose the following: append
systemVariables
tovariables
for the purpose of shell initialisation and havesystemVariables
set bypam_env
insudo
PAM module. As far as I can tell it's the only sane way to set some environment variables forsudo
.sudo
PAM session is reinitialised on every invocation, so that's acceptable.sudo
is the only case fixed by #2629 I'm aware of. If there are others, please, let me know and we'll try to come up with a more flexible solution.The text was updated successfully, but these errors were encountered: