| 24 Nov 2022 |
 Zhaofeng Li | Currently it only supports passwordless sudo, so you can either add a rule to security.sudo.extraRules or allow everyone in wheel to escalate without a password with security.sudo.wheelNeedsPassword. | 21:00:25 |
| Zhaofeng Li | Admittedly deploying as non-root isn't the best experience right now 😐️ | 21:01:05 |
 @ask-yourself:matrix.org | That's ok, it'll be cool once it's working. | 21:01:45 |
| @ask-yourself:matrix.org | I'll try adding that, but I do wanna know.. Would this all be easier if I used some kind of secrets management thing like SOPS? | 21:02:06 |
| Zhaofeng Li | Using sops doesn't alleviate the problems with running the deployment process as non-root. It's a replacement for deployment.keys with a different workflow. | 21:04:35 |
| @ask-yourself:matrix.org | Ok, it's working, this is very cool. | 21:06:52 |
| @ask-yourself:matrix.org | Thank you very much for the help. | 21:06:56 |
