2023-02-25 04:39:30 +01:00
|
|
|
|
{ config, pkgs, lib, ... }:
|
|
|
|
|
{
|
2023-03-01 02:21:24 +01:00
|
|
|
|
# Bootloader
|
|
|
|
|
boot.loader.grub.enable = true;
|
|
|
|
|
boot.loader.grub.device = "/dev/sda";
|
|
|
|
|
boot.loader.grub.useOSProber = true;
|
2023-02-25 04:39:30 +01:00
|
|
|
|
imports = [
|
2023-02-26 02:46:35 +01:00
|
|
|
|
./hardware-configuration.nix
|
2023-03-12 05:14:28 +01:00
|
|
|
|
../../hardware/opengl-intel.nix
|
2023-02-26 02:46:35 +01:00
|
|
|
|
|
|
|
|
|
../../users # home-manager
|
|
|
|
|
../../users/pbsds
|
|
|
|
|
../../users/jornane
|
|
|
|
|
|
2023-03-12 05:14:28 +01:00
|
|
|
|
../../profiles/mounts/reidun-nfs.nix
|
|
|
|
|
|
|
|
|
|
../../profiles/shell/base.nix
|
|
|
|
|
../../profiles/shell/archives.nix
|
|
|
|
|
../../profiles/shell/nix-utils.nix
|
|
|
|
|
../../profiles/shell/binfmt-emu.nix
|
2023-02-26 02:46:35 +01:00
|
|
|
|
|
2023-03-12 05:14:28 +01:00
|
|
|
|
../../profiles/services/tmate-server.nix # opens port 42244
|
2023-03-03 21:42:29 +01:00
|
|
|
|
|
2023-03-12 05:14:28 +01:00
|
|
|
|
../../profiles/web # enables nginx+acme, defines mkDomain
|
2023-02-26 02:46:35 +01:00
|
|
|
|
../../profiles/web/index
|
|
|
|
|
../../profiles/web/services/cinny
|
|
|
|
|
../../profiles/web/services/element
|
|
|
|
|
../../profiles/web/services/flexget
|
|
|
|
|
../../profiles/web/services/gitea
|
|
|
|
|
../../profiles/web/services/hydra
|
|
|
|
|
../../profiles/web/services/invidious
|
|
|
|
|
../../profiles/web/services/jellyfin
|
|
|
|
|
../../profiles/web/services/libreddit
|
|
|
|
|
../../profiles/web/services/mattermost
|
|
|
|
|
../../profiles/web/services/navidrome
|
|
|
|
|
../../profiles/web/services/netdata
|
|
|
|
|
../../profiles/web/services/nitter
|
|
|
|
|
../../profiles/web/services/ntopng
|
|
|
|
|
../../profiles/web/services/owncast
|
|
|
|
|
../../profiles/web/services/paperless
|
|
|
|
|
../../profiles/web/services/polaris
|
|
|
|
|
../../profiles/web/services/resilio
|
|
|
|
|
../../profiles/web/services/roundcube
|
|
|
|
|
../../profiles/web/services/thelounge
|
|
|
|
|
../../profiles/web/services/vaultwarden
|
|
|
|
|
../../profiles/web/services/webdav-zotero
|
|
|
|
|
#../../profiles/web/services/convos
|
|
|
|
|
#../../profiles/web/services/cryptpad
|
|
|
|
|
#../../profiles/web/services/galene
|
|
|
|
|
#../../profiles/web/services/graphana
|
|
|
|
|
#../../profiles/web/services/hedgedoc
|
|
|
|
|
#../../profiles/web/services/home-assistant
|
|
|
|
|
#../../profiles/web/services/jitsi-meet
|
|
|
|
|
#../../profiles/web/services/kukkee
|
|
|
|
|
#../../profiles/web/services/matrix-synapse
|
|
|
|
|
#../../profiles/web/services/shlink
|
|
|
|
|
#../../profiles/web/services/sourcegraph
|
|
|
|
|
#../../profiles/web/services/censordodge
|
|
|
|
|
#../../profiles/web/services/openspeedtest
|
|
|
|
|
|
2023-02-26 03:53:55 +01:00
|
|
|
|
../../profiles/web/docs
|
2023-02-26 06:11:55 +01:00
|
|
|
|
../../profiles/web/docs/pdoc.nix
|
|
|
|
|
../../profiles/web/docs/python-docs.nix
|
|
|
|
|
../../profiles/web/docs/nixpkgs.nix
|
2023-02-28 04:57:58 +01:00
|
|
|
|
../../profiles/web/docs/home-manager.nix
|
2023-02-26 06:11:55 +01:00
|
|
|
|
../../profiles/web/docs/linux-docs.nix
|
2023-02-28 04:57:58 +01:00
|
|
|
|
../../profiles/web/docs/programs.nix
|
2023-02-26 06:11:55 +01:00
|
|
|
|
../../profiles/web/docs/yagcd.nix
|
2023-02-26 03:53:55 +01:00
|
|
|
|
|
2023-02-26 02:46:35 +01:00
|
|
|
|
../../profiles/web/sites/linktree-pbsds
|
|
|
|
|
../../profiles/web/sites/refleksjon-no
|
|
|
|
|
../../profiles/web/sites/roroslyd-no
|
|
|
|
|
|
|
|
|
|
#../../profiles/web/services/trivial-gradios
|
|
|
|
|
|
|
|
|
|
../../profiles/domeneshop-dyndns # TODO: olavtr is hardcoded...
|
2023-03-12 05:14:28 +01:00
|
|
|
|
../../profiles/code-remote # TODO: move into web? services?
|
|
|
|
|
../../profiles/remote-builders
|
2023-02-26 02:46:35 +01:00
|
|
|
|
../../profiles/autossh-reverse-tunnels
|
|
|
|
|
#../../profiles/xrdp
|
2023-02-25 04:39:30 +01:00
|
|
|
|
];
|
2023-03-11 00:30:24 +01:00
|
|
|
|
services.domeneshop-updater.target = "olavtr.pbsds.net";
|
2023-02-25 04:39:30 +01:00
|
|
|
|
|
2023-03-12 05:14:28 +01:00
|
|
|
|
# TODO: remove? Move to where relevant?
|
2023-02-25 04:39:30 +01:00
|
|
|
|
nixpkgs.overlays = [
|
|
|
|
|
/** /
|
|
|
|
|
(final: prev: {
|
|
|
|
|
mapcrafter = prev.callPackage /home/pbsds/repos/nixpkgs-mapcrafter/pkgs/tools/games/minecraft/mapcrafter/default.nix { };
|
|
|
|
|
mapcrafter-world112 = prev.callPackage /home/pbsds/repos/nixpkgs-mapcrafter/pkgs/tools/games/minecraft/mapcrafter/default.nix { world="world112"; };
|
|
|
|
|
})
|
|
|
|
|
/**/
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
services.thermald.enable = true;
|
|
|
|
|
|
|
|
|
|
# Virtualization
|
|
|
|
|
virtualisation.podman.enable = true;
|
|
|
|
|
virtualisation.podman.dockerCompat = true; # alias docker to podman
|
2023-03-12 05:14:28 +01:00
|
|
|
|
virtualisation.oci-containers.backend = "podman"; # default
|
2023-02-25 04:39:30 +01:00
|
|
|
|
|
|
|
|
|
# Networking
|
|
|
|
|
networking.networkmanager.enable = true;
|
|
|
|
|
#networking.wireless.enable = true; # Enables wireless support via wpa_supplicant.
|
|
|
|
|
#networking.iwd.enable = true
|
|
|
|
|
networking.interfaces.eno1.ipv4.addresses = [
|
|
|
|
|
{ address = "192.168.1.9"; prefixLength = 24; }
|
|
|
|
|
];
|
|
|
|
|
networking.nameservers = [
|
|
|
|
|
"192.168.1.254"
|
|
|
|
|
"8.8.8.8"
|
|
|
|
|
"1.1.1.1"
|
|
|
|
|
];
|
|
|
|
|
networking.defaultGateway = {
|
|
|
|
|
address = "192.168.1.254";
|
|
|
|
|
interface = "eno1";
|
|
|
|
|
};
|
|
|
|
|
#networking.useDHCP = true;
|
2023-02-26 02:46:35 +01:00
|
|
|
|
#TODO: avahi? resolved? https://git.pvv.ntnu.no/Drift/pvv-nixos-config/src/main/base.nix#L15-L18
|
2023-02-25 04:39:30 +01:00
|
|
|
|
|
|
|
|
|
# Installed system packages
|
|
|
|
|
environment.systemPackages = with pkgs; [
|
|
|
|
|
cage
|
2023-03-12 05:14:28 +01:00
|
|
|
|
weston
|
|
|
|
|
dialog
|
|
|
|
|
zenith
|
2023-02-25 04:39:30 +01:00
|
|
|
|
vimix-gtk-themes
|
|
|
|
|
flat-remix-icon-theme
|
|
|
|
|
feh
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
# TODO: remove? Move?
|
|
|
|
|
programs.dconf.enable = true;
|
|
|
|
|
|
|
|
|
|
# Some programs need SUID wrappers, can be configured further or are
|
|
|
|
|
# started in user sessions.
|
|
|
|
|
#programs.mtr.enable = true;
|
|
|
|
|
#programs.gnupg.agent = {
|
|
|
|
|
# enable = true;
|
|
|
|
|
# enableSSHSupport = true;
|
|
|
|
|
#};
|
|
|
|
|
|
|
|
|
|
# OpenSSH
|
|
|
|
|
services.openssh.enable = true;
|
|
|
|
|
services.openssh.forwardX11 = true;
|
|
|
|
|
|
2023-02-26 02:46:35 +01:00
|
|
|
|
# System fonts
|
|
|
|
|
# Nice to have when X-forwading on headless machines
|
|
|
|
|
# TODO: move?
|
2023-03-12 05:14:28 +01:00
|
|
|
|
#hardware.video.hidpi.enable = true; # highdpi (for nord only)
|
|
|
|
|
#fonts.fontconfig.hinting.enable = true; # lowdpi
|
|
|
|
|
fonts.fontDir.enable = true; # creates /run/current-system/sw/share/X11/fonts
|
|
|
|
|
fonts.enableDefaultFonts = true; # dejavu, freefont, gyre, liberation, unifont, noto-fonts-emoji
|
2023-02-26 02:46:35 +01:00
|
|
|
|
fonts.fonts = with pkgs; [
|
|
|
|
|
noto-fonts # includes Cousine
|
|
|
|
|
noto-fonts-cjk
|
|
|
|
|
noto-fonts-emoji
|
|
|
|
|
noto-fonts-extra
|
|
|
|
|
];
|
|
|
|
|
|
2023-02-25 04:39:30 +01:00
|
|
|
|
# This value determines the NixOS release from which the default
|
|
|
|
|
# settings for stateful data, like file locations and database versions
|
|
|
|
|
# on your system were taken. It‘s perfectly fine and recommended to leave
|
|
|
|
|
# this value at the release version of the first install of this system.
|
|
|
|
|
# Before changing this value read the documentation for this option
|
|
|
|
|
# (e.g. man configuration.nix or on https://nixos.org/nixos/options.html).
|
|
|
|
|
system.stateVersion = "22.11"; # Did you read the comment?
|
|
|
|
|
}
|