clightning: allow group access to RPC socket

2020-05-18 14:32:49 +00:00 · 2020-05-18 14:32:49 +00:00 · 0ba55757f8
commit 0ba55757f8
parent 304dd297ba
2 changed files with 4 additions and 8 deletions
--- a/modules/presets/secure-node.nix
+++ b/modules/presets/secure-node.nix
@ -132,12 +132,7 @@ in {
    services.onion-chef.enable = true;
    services.onion-chef.access.operator = [ "bitcoind" "clightning" "nginx" "liquidd" "spark-wallet" "electrs" "sshd" ];

-    # Unfortunately c-lightning doesn't allow setting the permissions of the rpc socket
-    # https://github.com/ElementsProject/lightning/issues/1366
    security.sudo.configFile =
-     (optionalString cfg.clightning.enable ''
-       operator    ALL=(clightning) NOPASSWD: ALL
-     '') +
     (optionalString cfg.lnd.enable ''
       operator    ALL=(lnd) NOPASSWD: ALL
     '');