2023-01-29 01:51:35 +01:00
|
|
|
{ pkgs, values, ... }:
|
|
|
|
{
|
|
|
|
imports = [
|
|
|
|
./hardware-configuration.nix
|
|
|
|
|
|
|
|
../../base.nix
|
2023-05-21 04:03:14 +02:00
|
|
|
../../misc/metrics-exporters.nix
|
2023-01-29 01:51:35 +01:00
|
|
|
|
2023-05-21 00:06:25 +02:00
|
|
|
#./services/keycloak.nix
|
2023-05-07 00:34:42 +02:00
|
|
|
|
2023-01-29 01:51:35 +01:00
|
|
|
# TODO: set up authentication for the following:
|
2023-06-04 01:59:35 +02:00
|
|
|
# ./services/website.nix
|
2023-11-05 01:41:45 +01:00
|
|
|
./services/nginx
|
2023-06-04 01:59:35 +02:00
|
|
|
./services/gitea/default.nix
|
2024-03-29 01:39:59 +01:00
|
|
|
./services/kerberos
|
2023-11-25 21:23:06 +01:00
|
|
|
./services/webmail
|
2023-06-04 01:59:35 +02:00
|
|
|
# ./services/mediawiki.nix
|
2024-03-29 01:59:46 +01:00
|
|
|
./services/idp-simplesamlphp
|
2023-01-29 01:51:35 +01:00
|
|
|
];
|
|
|
|
|
|
|
|
sops.defaultSopsFile = ../../secrets/bekkalokk/bekkalokk.yaml;
|
|
|
|
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
|
|
|
|
sops.age.keyFile = "/var/lib/sops-nix/key.txt";
|
|
|
|
sops.age.generateKey = true;
|
|
|
|
|
|
|
|
boot.loader.systemd-boot.enable = true;
|
|
|
|
boot.loader.efi.canTouchEfiVariables = true;
|
|
|
|
|
2023-09-16 22:38:15 +02:00
|
|
|
virtualisation.podman.enable = true;
|
|
|
|
|
2023-01-29 01:51:35 +01:00
|
|
|
networking.hostName = "bekkalokk";
|
|
|
|
|
2023-05-21 00:06:25 +02:00
|
|
|
systemd.network.networks."30-enp2s0" = values.defaultNetworkConfig // {
|
|
|
|
matchConfig.Name = "enp2s0";
|
2023-03-04 00:57:28 +01:00
|
|
|
address = with values.hosts.bekkalokk; [ (ipv4 + "/25") (ipv6 + "/64") ];
|
2023-01-29 01:51:35 +01:00
|
|
|
};
|
|
|
|
|
|
|
|
# Do not change, even during upgrades.
|
|
|
|
# See https://search.nixos.org/options?show=system.stateVersion
|
|
|
|
system.stateVersion = "22.11";
|
|
|
|
}
|