security: Move sudo configuration into module

hosts/dregil/configuration.nix

@@ -17,6 +17,7 @@ in {
     ./hardware-configuration.nix
     # <nixos-hardware/lenovo/legion/15ich>
     ../../modules/appimage.nix
+    ../../modules/sudo.nix
     ../../modules/wm/x.nix
     ../../modules/wm/xmonad/default.nix
   ];

hosts/thrall/default.nix

@@ -12,6 +12,7 @@ in {
     inputs.snm.nixosModule
     inputs.agenix.nixosModules.age
     ../../modules/security.nix
+    ../../modules/sudo.nix
     ../../modules/upgrade-pg-cluster.nix
     ../../modules/nix-config.nix
     ../../modules/iohk.nix
@@ -110,18 +111,6 @@ in {
     defaults.email = "alex@jakalx.net";
   };
 
-  security.sudo = {
-    enable = true;
-    execWheelOnly = true;
-    extraRules = [{
-      groups = [ "wheel" ];
-      commands = [{
-        command = "/run/current-system/sw/bin/nixos-rebuild";
-        options = [ "NOPASSWD" ];
-      }];
-    }];
-  };
-
   # Select internationalization properties.
   i18n.defaultLocale = "en_US.UTF-8";
   console = {

modules/sudo.nix

@@ -0,0 +1,15 @@
+{ config, lib, pkgs, ... }:
+
+{
+  config.security.sudo = {
+    enable = true;
+    execWheelOnly = true;
+    extraRules = [{
+      groups = [ "wheel" ];
+      commands = [{
+        command = "/run/current-system/sw/bin/nixos-rebuild";
+        options = [ "NOPASSWD" ];
+      }];
+    }];
+  };
+}