added sudoers file, imported to common users

modules/common/users.nix

@@ -5,6 +5,10 @@
   hostname,
   ...
 } @ args: {
+  imports = [
+    ../security/sudo.nix
+  ];
+
   networking.hostName = hostname;
 
   # Don't forget to set a password with ‘passwd’!

modules/security/README.md

@@ -0,0 +1,3 @@
+# Security modules
+
+These are modules relating to security and security-related programs

modules/security/sudo.nix

@@ -0,0 +1,25 @@
+{
+  config,
+  lib,
+  ...
+}:
+with lib; {
+  options = {
+    security.sudo = {
+      wheelNeedsPassword = mkOption {
+        type = types.bool;
+        default = true;
+        description = "Whether users in the wheel group need to provide a password for sudo.";
+      };
+    };
+  };
+
+  config = {
+    environment.etc."sudoers.d/wheel-no-password" = mkIf (!config.security.sudo.wheelNeedsPassword) {
+      text = ''
+        %wheel ALL=(ALL) NOPASSWD: ALL
+      '';
+      # mode = "0440";
+    };
+  };
+}