From b4d88c9ac42ae1a745283f6547701da43b6e9f9b Mon Sep 17 00:00:00 2001
From: Matthieu Coudron <886074+teto@users.noreply.github.com>
Date: Thu, 15 Jan 2026 00:56:00 +0100
Subject: [PATCH] pimsync: use 'users' as group and dont make calendar
 world-readable (#8564)

Using username as unix group doesnt work by default (at least on nixos):
janv. 14 14:54:14 jedha hm-activate-teto[100922]: removed '/home/teto/.local/state/home-manager/gcroots/new-home'
janv. 14 14:54:14 jedha systemd-tmpfiles[100921]: /home/teto/home/config/user-tmpfiles.d/home-manager.conf:4: Failed to resolve group 'teto': No such process

use "users" instead
---
 modules/programs/pimsync/default.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/programs/pimsync/default.nix b/modules/programs/pimsync/default.nix
index 40092c47..e90695cb 100644
--- a/modules/programs/pimsync/default.nix
+++ b/modules/programs/pimsync/default.nix
@@ -119,7 +119,7 @@
       contactLocalStorageDirs = lib.mapAttrsToList localStorageDir contactAccounts;
       localStorageDirs = calendarLocalStorageDirs ++ contactLocalStorageDirs;
 
-      mkTmpFileRule = (dir: "d ${dir} 0755 ${config.home.username} ${config.home.username} - -");
+      mkTmpFileRule = (dir: "d ${dir} 0750 ${config.home.username} users - -");
       tmpFileRules = map mkTmpFileRule localStorageDirs;
     in
     lib.mkIf cfg.enable {