nix: use vars some more

nix/hosts/loki/modules/coredns.nix

@@ -1,5 +1,4 @@
-{config, ...}:
+{config, ...}: let
-let
   svc = "coredns.service";
   usr = "${toString config.users.users.coredns.name}";
 in {

nix/hosts/nixpi/modules/coredns.nix

@@ -1,5 +1,4 @@
-{config, ...}:
+{config, ...}: let
-let
   svc = "coredns.service";
   usr = "${toString config.users.users.coredns.name}";
 in {

nix/modules/coredns.nix

@@ -235,7 +235,7 @@ in {
       ProtectSystem = "strict";
       LimitNOFILE = 1048576;
       LimitNPROC = 512;
-      User = "coredns";
+      User = usr;
       EnvironmentFile = config.sops.templates.corednsEnv.path;
       # LoadCredential = lib.mapAttrsToList (name: path: "${name}:${path}") cfg.credentials;
       DeviceAllow = "";
@@ -275,8 +275,8 @@ in {
   };
 
   users.users.coredns = {
-    group = "coredns";
+    group = usr;
-    home = "/etc/coredns";
+    home = "/etc/" + usr;
     createHome = false;
     isSystemUser = true;
     extraGroups = ["users"];

nix/modules/dnscrypt.nix

@@ -124,7 +124,7 @@ in {
   };
 
   systemd.services.dnscrypt-proxy2.serviceConfig = {
-    StateDirectory = "dnscrypt-proxy";
+    StateDirectory = usr;
     WorkingDirectory = "/";
     # StartLimitIntervalSec = 5;
     StartLimitBurst = 10;