From fba46e0d0de0152bf987549380afd8c0268c26a1 Mon Sep 17 00:00:00 2001
From: Mohammad Rafiq <rafiq@rrv.sh>
Date: Mon, 14 Jul 2025 18:57:24 +0800
Subject: [PATCH] feat(darwin): enable sudo auth with touchid

---
 nix/modules/system/sudo.nix | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/nix/modules/system/sudo.nix b/nix/modules/system/sudo.nix
index 1c9b560..55b32ee 100644
--- a/nix/modules/system/sudo.nix
+++ b/nix/modules/system/sudo.nix
@@ -8,4 +8,9 @@ in
     nix.settings.trusted-users = [ "@wheel" ];
     users.users.${cfg.admin.username}.extraGroups = [ "wheel" ];
   };
+  flake.modules.darwin.default.security.pam.services.sudo_local = {
+    enable = true;
+    reattach = true;
+    touchIdAuth = true;
+  };
 }