---
# Which meta-groups imply membership in other groups
# (since UNIX groups can't be nested).
#
# e.g. 'hackers' are also in the 'repo' and 'git' groups
groupgroups:
  # mutually-exclusive general groups
  bots:
  - keyring-trusted
  fellows:
  - community
  hackers:
  - administrators
  - committers
  - community
  - designers
  - packagers
  trustedusers:
  - keyring-secondary

  # fine-grained capability groups
  administrators:
  - log
  - ssh
  - systemd-journal
  - wheel
  designers:
  - design
  committers:
  - git
  community:
  - email
  packagers:
  - keyring-trusted
  - repo

# Groups that are have associated system users that can be SSH'ed into.
#
# e.g. those with 'repo' in their group tree, can SSH as the repo user.
ssh_pseudo_users:
- design
- git
- repo

# Where to look for "${uid}.yml" files
yamldir: "/var/lib/hackers-git/users"

# Where to keep files that can be cached between versions when making
# the pacman keyring.
keyring_cachedir: "/var/cache/parabola-hackers"

# The message, if any, that is presented to the user when password
# modification through PAM is prohibited.
pam_password_prohibit_message: ''