From 09297b9b4e95cc42356d71a1a57699a929224e34 Mon Sep 17 00:00:00 2001
From: Kiara Grouwstra <kiara@procolix.eu>
Date: Tue, 21 Oct 2025 16:54:50 +0200
Subject: [PATCH] use token

Signed-off-by: Kiara Grouwstra <kiara@procolix.eu>
---
 deployment/check/data-model-tf-proxmox/nixosTest.nix | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/deployment/check/data-model-tf-proxmox/nixosTest.nix b/deployment/check/data-model-tf-proxmox/nixosTest.nix
index db530851..6893c1fa 100644
--- a/deployment/check/data-model-tf-proxmox/nixosTest.nix
+++ b/deployment/check/data-model-tf-proxmox/nixosTest.nix
@@ -159,12 +159,9 @@ in
       set -e
       pvesh create /pools --poolid Fediversity
       pvesh set /storage/local --content "vztmpl,rootdir,backup,snippets,import,iso,images" 1>/dev/null
-      pvesh create /access/groups --groupid "roots"
-      pvesh set /access/users/root@pam --enable 1 --groups "roots"
-      pvesh set /access/acl --path "/" --roles "Administrator" --groups "roots"
-      pvesh create /access/users/root@pam/token/mytoken --privsep 0 --output-format json | jq -r .value
+      pvesh create /access/users/root@pam/token/mytoken --output-format json | jq -r .value
+      pvesh set /access/acl --path "/" --token "root@pam!mytoken" --roles "Administrator"
     """).strip()
-    # FIXME pass separate privileges rather than disabling privsep
 
     # skip indent for EOF
     deployer.succeed(f"""