Merge remote-tracking branch 'upstream/master' into staging

Use newer vagrant from master
author: John Ericson <John.Ericson@Obsidian.Systems> 2018-05-23 09:40:37 -0400
committer: John Ericson <John.Ericson@Obsidian.Systems> 2018-05-23 09:40:37 -0400
commit: 18742471aff29270453a540f84d543137ee9d44e (patch)
tree: d21863fd81db3722e8cac52b52be3dd1c429cf21 /nixos/modules/misc/ids.nix
parent: 2e831da76da0a51557975a55dc8a18ebf3401bfb (diff)
parent: bbcaf78350d87c4657b1a2451132535467a454eb (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/nixos/modules/misc/ids.nix b/nixos/modules/misc/ids.nix
index cc7d868498241..bb97c707bf65c 100644
--- a/nixos/modules/misc/ids.nix
+++ b/nixos/modules/misc/ids.nix
@@ -1,6 +1,14 @@
 # This module defines the global list of uids and gids.  We keep a
 # central list to prevent id collisions.
 
+# IMPORTANT!
+# We only add static uids and gids for services where it is not feasible
+# to change uids/gids on service start, in example a service with a lot of
+# files. Please also check if the service is applicable for systemd's
+# DynamicUser option and does not need a uid/gid allocation at all.
+# Systemd can also change ownership of service directories using the
+# RuntimeDirectory/StateDirectory options.
+
 { config, pkgs, lib, ... }:
 
 {
author	John Ericson <John.Ericson@Obsidian.Systems>	2018-05-23 09:40:37 -0400
committer	John Ericson <John.Ericson@Obsidian.Systems>	2018-05-23 09:40:37 -0400
commit	18742471aff29270453a540f84d543137ee9d44e (patch)
tree	d21863fd81db3722e8cac52b52be3dd1c429cf21 /nixos/modules/misc/ids.nix
parent	2e831da76da0a51557975a55dc8a18ebf3401bfb (diff)
parent	bbcaf78350d87c4657b1a2451132535467a454eb (diff)