about summary refs log tree commit diff
path: root/modules/services
diff options
context:
space:
mode:
Diffstat (limited to 'modules/services')
-rw-r--r--modules/services/atticd.nix7
1 files changed, 7 insertions, 0 deletions
diff --git a/modules/services/atticd.nix b/modules/services/atticd.nix
index fca181d..dcc9ea7 100644
--- a/modules/services/atticd.nix
+++ b/modules/services/atticd.nix
@@ -95,6 +95,9 @@ in
       wantedBy = [ "multi-user.target" ];
       wants = [ "network-online.target" ];
       serviceConfig = {
+        DynamicUser = true;
+        StateDirectory = "atticd-watch-store";
+        Environment = "XDG_CONFIG_HOME=/var/lib/atticd-watch-store";
         ExecStart = "${pkgs.attic}/bin/attic watch-store hydra";
         Restart = "on-failure";
         RestartSec = "5s";
@@ -108,5 +111,9 @@ in
         RestrictSUIDSGID = true;
       };
     };
+
+    modules.persistence.directories = [
+      "/var/lib/private/atticd-watch-store"
+    ];
   };
 }