# This file is inspired by the `nixos/modules/misc/ids.nix`
# file in nixpkgs.
{
  lib,
  config,
  ...
}: {
  options.vhack.constants = {
    ids.uids = lib.mkOption {
      internal = true;
      description = ''
        The user IDs used in the vhack.eu nixos config.
      '';
      type = lib.types.attrsOf (lib.types.ints.between 0 400);
    };
    ids.gids = lib.mkOption {
      internal = true;
      description = ''
        The group IDs used in the vhack.eu nixos config.
      '';
      type = lib.types.attrsOf (lib.types.ints.between 0 400);
    };
  };

  config.vhack.constants = {
    ids.uids = {
      # Keep this sorted with `!sort --numeric-sort --key=2 --field-separator="="`
      opendkim = 221;
      mautrix-whatsapp = 222;
      etebase-server = 223;
      matrix-synapse = 224;
      rspamd = 225;
      knot-resolver = 226;
      peertube = 231;
      redis-mastodon = 232;
      redis-peertube = 233;
      redis-rspamd = 234;
      mastodon = 236;
      virtualMail = 240;
      acme = 328;
      dhcpcd = 329;
      nscd = 330;
      sshd = 331;
      systemd-oom = 332;
      nix-sync = 334;

      # As per the NixOS file, the uids should not be greater or equal to 400;
    };
    ids.gids = let
      inherit (config.vhack.constants.ids) uids;
    in {
      inherit
        (uids)
        acme
        dhcpcd
        etebase-server
        knot-resolver
        mastodon
        matrix-synapse
        mautrix-whatsapp
        nix-sync
        nscd
        opendkim
        peertube
        redis-mastodon
        redis-peertube
        redis-rspamd
        redis-stalwart-mail
        rspamd
        sshd
        stalwart-mail
        systemd-oom
        virtualMail
        ;

      # Keep this sorted with `!sort --numeric-sort --key=2 --field-separator="="`
      systemd-coredump = 151; # matches systemd-coredump user
      resolvconf = 333; # This group is not matched to an user?

      # The gid should match the uid. Thus should not be >= 400;
    };
  };
}