From 50e4939872a6ee0081a79d26dee44a42f7bd5254 Mon Sep 17 00:00:00 2001
From: sloane <git@sloanelybutsurely.com>
Date: Fri, 16 May 2025 09:13:10 -0400
Subject: [PATCH] get sudo touch id / watch working

didn't actually enable these things...
---
 nix-darwin/default.nix | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/nix-darwin/default.nix b/nix-darwin/default.nix
index 98c1736..5b40cbe 100644
--- a/nix-darwin/default.nix
+++ b/nix-darwin/default.nix
@@ -12,7 +12,12 @@
   # The platform the configuration will be used on.
   nixpkgs.hostPlatform = "aarch64-darwin";
 
-  security.pam.services.sudo_local.touchIdAuth = true;
+  security.pam.services.sudo_local = {
+    enable = true;
+    reattach = true;
+    touchIdAuth = true;
+    watchIdAuth = true;
+  };
 
   system.defaults = {
     dock = {