From 822469012d614d783efe0654bea85a5451799adb Mon Sep 17 00:00:00 2001
From: Gregor Kleen <gkleen@yggdrasil.li>
Date: Wed, 18 May 2016 14:59:56 +0200
Subject: no wpa_supplicant, network perms

---
 hel.nix | 17 +++++++++--------
 1 file changed, 9 insertions(+), 8 deletions(-)

diff --git a/hel.nix b/hel.nix
index 190b1bde..8f10868b 100644
--- a/hel.nix
+++ b/hel.nix
@@ -19,14 +19,7 @@
 
   networking = {
     hostName = "hel";
-    wireless = {
-      enable = lib.mkForce true;
-      userControlled = {
-        enable = true;
-        group = "network";
-      };
-    };
-
+    
     firewall = {
       enable = true;
       allowedTCPPorts = [ 22 # ssh
@@ -210,6 +203,14 @@
     '';
 
     setuidPrograms = ["slock" "mount" "mount.nfs" "umount" "newgrp" "thinklight"];
+
+    polkit.extraConfig = ''
+      polkit.addRule(function(action, subject) {
+        if (action.id.indexOf("org.freedesktop.NetworkManager.") == 0 && subject.isInGroup("network")) {
+          return polkit.Result.YES;
+        }
+      });
+    '';
   };
 
   time.timeZone = "Europe/Berlin";
-- 
cgit v1.2.3