allowed uid is specified in a configuration file in /etc/nix-setuid.conf.
`build-users-group'. This makes configuration easier: you can just add users in /etc/group.
that have to be done as root: running builders under different uids, changing ownership of build results, and deleting paths in the store with the wrong ownership).