From 0beb1139b0206eeeac2f4088c30df5ecaf640138 Mon Sep 17 00:00:00 2001
From: Luis Guilherme Coelho <lgcoelho@disroot.org>
Date: Tue, 28 Nov 2023 09:17:41 -0300
Subject: [PATCH] operating-systems: buer: Disallow some services to being
 managed without password by users in the wheel group

---
 buer.scm | 10 ++++------
 1 file changed, 4 insertions(+), 6 deletions(-)

diff --git a/buer.scm b/buer.scm
index 1ec884e..17b03e3 100644
--- a/buer.scm
+++ b/buer.scm
@@ -279,12 +279,10 @@
                                    (permit (identity ":wheel")
                                            (nopass? #t)
                                            (command "herd")
-                                           (args (list action service))))
-                                 `("tlp" "tor" "ipfs" "thermald" "thinkfan"
-                                   "networking" "wpa-supplicant")
-                                 `("doc" "stop" "start" "enable"
-                                   "status" "restart" "disable")))
-
+                                           (args (map symbol->string
+                                                      (list action service)))))
+                                 '(tor ipfs networking wpa-supplicant)
+                                 '(doc stop start enable status restart disable)))
         #|Special file services|#
         (service special-files-service-type
                  `(("/bin/sh"      ,(file-append dash-next "/bin/dash"))