44 lines
1.1 KiB
Nix
44 lines
1.1 KiB
Nix
{ pkgs, values, ... }:
|
|
{
|
|
imports = [
|
|
./hardware-configuration.nix
|
|
|
|
../../base.nix
|
|
../../misc/metrics-exporters.nix
|
|
./services/nginx
|
|
|
|
./acmeCert.nix
|
|
|
|
./services/mysql.nix
|
|
./services/postgres.nix
|
|
./services/mysql.nix
|
|
# TODO: fix the calendar bot
|
|
# ./services/calendar-bot.nix
|
|
|
|
./services/matrix
|
|
];
|
|
|
|
sops.defaultSopsFile = ../../secrets/bicep/bicep.yaml;
|
|
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
|
|
sops.age.keyFile = "/var/lib/sops-nix/key.txt";
|
|
sops.age.generateKey = true;
|
|
|
|
boot.loader.grub.enable = true;
|
|
boot.loader.grub.device = "/dev/disk/by-id/scsi-3600508b1001cb1a8751c137b30610682";
|
|
|
|
networking.hostName = "bicep";
|
|
|
|
systemd.network.networks."30-enp6s0f0" = values.defaultNetworkConfig // {
|
|
matchConfig.Name = "enp6s0f0";
|
|
address = with values.hosts.bicep; [ (ipv4 + "/25") (ipv6 + "/64") ]
|
|
++ (with values.services.turn; [ (ipv4 + "/25") (ipv6 + "/64") ]);
|
|
};
|
|
systemd.network.wait-online = {
|
|
anyInterface = true;
|
|
};
|
|
|
|
# Do not change, even during upgrades.
|
|
# See https://search.nixos.org/options?show=system.stateVersion
|
|
system.stateVersion = "22.11";
|
|
}
|