hosts: nixos subdir

making room for darwin, system manager and nixbsd

flake.nix

@@ -156,7 +156,7 @@
 
       imports = let ifExists = p: if builtins.pathExists p then p else {}; in [
         ./base.nix
-        "${self}/hosts/${hostname}/configuration.nix"
+        "${self}/hosts/nixos/${hostname}/configuration.nix"
         inputs.sops-nix.nixosModules.sops
         inputs.home-manager.nixosModule
         #inputs.nix-index-database.nixosModules.nix-index # TODO: fix?

hosts/bjarte/configuration.nix

@@ -1,57 +0,0 @@
-{ config, pkgs, lib, ... }:
-{
-  # Bootloader
-  boot.loader.systemd-boot.enable = true;
-  boot.loader.efi.canTouchEfiVariables = true;
-
-  #boot.kernel.sysctl."vm.swappiness" = lib.mkDefault 10; # 0-100, commonly 60
-
-  imports = [
-    ./hardware-configuration.nix
-    ../../profiles/sshd.nix
-    #../../profiles/no-suspend.nix
-    ../../profiles/oci/podman.nix
-    #../../profiles/oci/docker.nix
-    ../../profiles/oci/distrobox.nix
-
-    ../../users/pbsds
-    ../../users/pbsds/syncthing.nix
-
-    #../../profiles/mounts/freon-nfs.nix
-    #../../profiles/mounts/reidun-nfs.nix
-    #../../profiles/mounts/meconium-nfs.nix
-
-    ../../profiles/shell.nix
-
-    ../../profiles/desktop/base.nix
-    ../../profiles/desktop/gnome # configures gdm
-    #../../profiles/desktop/sound/alsa.nix
-    #../../profiles/desktop/sound/pulseaudio.nix
-    ../../profiles/desktop/sound/pipewire.nix
-
-    ../../profiles/desktop/steam.nix
-    #../../profiles/desktop/xboxdrv.nix # TODO: try out
-    ../../profiles/desktop/lutris.nix
-    ../../profiles/desktop/flatpak.nix
-    ../../profiles/desktop/waydroid.nix
-
-    ../../profiles/known-hosts.nix
-  ];
-
-  time.timeZone = null; # allows imperative configuring
-
-  networking.firewall.allowedTCPPorts = [ 57621 ]; # spotify local discovery
-
-  # services.irqbalance.enable = true; # different balancer, avoids freezes, god for old laptops
-
-  # Networking
-  networking.networkmanager.enable = true;
-  #networking.wireless.enable = true;  # Enables wireless support via wpa_supplicant.
-  #networking.useDHCP = true;
-  #TODO: avahi? resolved? https://git.pvv.ntnu.no/Drift/pvv-nixos-config/src/main/base.nix#L15-L18
-
-  services.printing.enable = true;
-
-  # TODO: remove? Move?
-  programs.dconf.enable = true;
-}

hosts/nixos/bjarte/configuration.nix

@@ -0,0 +1,57 @@
+{ config, pkgs, lib, ... }:
+{
+  # Bootloader
+  boot.loader.systemd-boot.enable = true;
+  boot.loader.efi.canTouchEfiVariables = true;
+
+  #boot.kernel.sysctl."vm.swappiness" = lib.mkDefault 10; # 0-100, commonly 60
+
+  imports = [
+    ./hardware-configuration.nix
+    ../../../profiles/sshd.nix
+    #../../../profiles/no-suspend.nix
+    ../../../profiles/oci/podman.nix
+    #../../../profiles/oci/docker.nix
+    ../../../profiles/oci/distrobox.nix
+
+    ../../../users/pbsds
+    ../../../users/pbsds/syncthing.nix
+
+    #../../../profiles/mounts/freon-nfs.nix
+    #../../../profiles/mounts/reidun-nfs.nix
+    #../../../profiles/mounts/meconium-nfs.nix
+
+    ../../../profiles/shell.nix
+
+    ../../../profiles/desktop/base.nix
+    ../../../profiles/desktop/gnome # configures gdm
+    #../../../profiles/desktop/sound/alsa.nix
+    #../../../profiles/desktop/sound/pulseaudio.nix
+    ../../../profiles/desktop/sound/pipewire.nix
+
+    ../../../profiles/desktop/steam.nix
+    #../../../profiles/desktop/xboxdrv.nix # TODO: try out
+    ../../../profiles/desktop/lutris.nix
+    ../../../profiles/desktop/flatpak.nix
+    ../../../profiles/desktop/waydroid.nix
+
+    ../../../profiles/known-hosts.nix
+  ];
+
+  time.timeZone = null; # allows imperative configuring
+
+  networking.firewall.allowedTCPPorts = [ 57621 ]; # spotify local discovery
+
+  # services.irqbalance.enable = true; # different balancer, avoids freezes, god for old laptops
+
+  # Networking
+  networking.networkmanager.enable = true;
+  #networking.wireless.enable = true;  # Enables wireless support via wpa_supplicant.
+  #networking.useDHCP = true;
+  #TODO: avahi? resolved? https://git.pvv.ntnu.no/Drift/pvv-nixos-config/src/main/base.nix#L15-L18
+
+  services.printing.enable = true;
+
+  # TODO: remove? Move?
+  programs.dconf.enable = true;
+}

hosts/nixos/bolle/configuration.nix

@@ -11,18 +11,18 @@
 
   imports = [
     ./hardware-configuration.nix
-    ../../profiles/sshd.nix
+    ../../../profiles/sshd.nix
 
-    ../../users/pbsds
-    ../../users/daniel
-    ../../users/eirikwit
-    ../../users/h7x4
-    ../../users/adrlau
+    ../../../users/pbsds
+    ../../../users/daniel
+    ../../../users/eirikwit
+    ../../../users/h7x4
+    ../../../users/adrlau
 
-    ../../profiles/shell.nix
+    ../../../profiles/shell.nix
 
-    ../../profiles/domeneshop-dyndns.nix
-    ../../profiles/known-hosts.nix
+    ../../../profiles/domeneshop-dyndns.nix
+    ../../../profiles/known-hosts.nix
   ];
   services.domeneshop-updater.targets = [ config.networking.fqdn ];
 

hosts/nixos/brumlebasse/configuration.nix

@@ -12,14 +12,14 @@
 
   imports = [
     #./hardware-configuration.nix
-    ../../profiles/sshd.nix
+    ../../../profiles/sshd.nix
 
-    ../../users/pbsds
+    ../../../users/pbsds
 
-    ../../profiles/shell.nix
+    ../../../profiles/shell.nix
 
-    #../../profiles/domeneshop-dyndns.nix
-    ../../profiles/known-hosts.nix
+    #../../../profiles/domeneshop-dyndns.nix
+    ../../../profiles/known-hosts.nix
   ];
   #services.domeneshop-updater.targets = [ config.networking.fqdn ];
 

hosts/nixos/eple/configuration.nix

@@ -13,17 +13,17 @@
 
   imports = [
     ./hardware-configuration.nix
-    ../../profiles/sshd.nix
+    ../../../profiles/sshd.nix
 
-    ../../users/pbsds
-    ../../users/bartvbl
+    ../../../users/pbsds
+    ../../../users/bartvbl
 
-    ../../profiles/mounts/panorama-zfs.nix
+    ../../../profiles/mounts/panorama-zfs.nix
 
-    ../../profiles/shell.nix
+    ../../../profiles/shell.nix
 
-    ../../profiles/domeneshop-dyndns.nix
-    ../../profiles/known-hosts.nix
+    ../../../profiles/domeneshop-dyndns.nix
+    ../../../profiles/known-hosts.nix
   ];
   services.domeneshop-updater.targets = [ config.networking.fqdn ];
 

hosts/nixos/garp/configuration.nix

@@ -26,27 +26,27 @@
 
   imports = [
     ./hardware-configuration.nix
-    ../../profiles/sshd.nix
-    #../../profiles/no-suspend.nix
-    #../../profiles/oci/podman.nix
-    ../../profiles/oci/docker.nix
+    ../../../profiles/sshd.nix
+    #../../../profiles/no-suspend.nix
+    #../../../profiles/oci/podman.nix
+    ../../../profiles/oci/docker.nix
 
-    ../../users/pbsds
-    ../../users/daniel
-    ../../users/eirikwit
-    ../../users/h7x4
-    ../../users/adrlau
+    ../../../users/pbsds
+    ../../../users/daniel
+    ../../../users/eirikwit
+    ../../../users/h7x4
+    ../../../users/adrlau
 
-    ../../profiles/shell.nix
+    ../../../profiles/shell.nix
 
-    #../../profiles/desktop/base.nix
-    #../../profiles/desktop/gnome # configures gdm
-    ##../../profiles/desktop/sound/alsa.nix
-    ##../../profiles/desktop/sound/pulseaudio.nix
-    #../../profiles/desktop/sound/pipewire.nix
+    #../../../profiles/desktop/base.nix
+    #../../../profiles/desktop/gnome # configures gdm
+    ##../../../profiles/desktop/sound/alsa.nix
+    ##../../../profiles/desktop/sound/pulseaudio.nix
+    #../../../profiles/desktop/sound/pipewire.nix
 
-    ../../profiles/domeneshop-dyndns.nix
-    ../../profiles/known-hosts.nix
+    ../../../profiles/domeneshop-dyndns.nix
+    ../../../profiles/known-hosts.nix
   ];
   services.domeneshop-updater.targets = [ config.networking.fqdn ];
 

hosts/nixos/hasselknippe/configuration.nix

@@ -12,28 +12,28 @@
 
   imports = [
     #./hardware-configuration.nix
-    ../../profiles/auto-upgrade.nix
-    ../../profiles/upgrade-diff.nix
-    #../../profiles/sshd.nix
-    #../../profiles/no-suspend.nix
+    ../../../profiles/auto-upgrade.nix
+    ../../../profiles/upgrade-diff.nix
+    #../../../profiles/sshd.nix
+    #../../../profiles/no-suspend.nix
 
-    ../../users/pbsds
+    ../../../users/pbsds
 
-    #../../profiles/mounts/freon-nfs.nix
-    #../../profiles/mounts/reidun-nfs.nix
-    #../../profiles/mounts/meconium-nfs.nix
+    #../../../profiles/mounts/freon-nfs.nix
+    #../../../profiles/mounts/reidun-nfs.nix
+    #../../../profiles/mounts/meconium-nfs.nix
 
-    ../../profiles/shell.nix
+    ../../../profiles/shell.nix
 
-    ../../profiles/desktop/base.nix
-    ../../profiles/desktop/gnome # configures gdm
-    ../../profiles/desktop/sound/pipewire.nix
+    ../../../profiles/desktop/base.nix
+    ../../../profiles/desktop/gnome # configures gdm
+    ../../../profiles/desktop/sound/pipewire.nix
 
-    #../../profiles/desktop/steam.nix
-    #../../profiles/desktop/lutris.nix
-    #../../profiles/desktop/flatpak.nix
+    #../../../profiles/desktop/steam.nix
+    #../../../profiles/desktop/lutris.nix
+    #../../../profiles/desktop/flatpak.nix
 
-    ../../profiles/known-hosts.nix
+    ../../../profiles/known-hosts.nix
   ];
 
   networking.firewall.allowedTCPPorts = [ 57621 ]; # spotify local discovery

hosts/nixos/nord/configuration.nix

@@ -15,33 +15,33 @@
 
   imports = [
     ./hardware-configuration.nix
-    ../../profiles/sshd.nix
-    #../../profiles/oci/podman.nix
-    #../../profiles/oci/docker.nix
+    ../../../profiles/sshd.nix
+    #../../../profiles/oci/podman.nix
+    #../../../profiles/oci/docker.nix
 
-    #../../profiles/vpn-pbsds/tailscale.nix
+    #../../../profiles/vpn-pbsds/tailscale.nix
 
-    ../../users/pbsds
-    ../../users/pbsds/syncthing.nix
+    ../../../users/pbsds
+    ../../../users/pbsds/syncthing.nix
 
-    ../../profiles/mounts/freon-nfs.nix
-    ../../profiles/mounts/reidun-nfs.nix
-    ../../profiles/mounts/meconium-nfs.nix
-    /* ../../profiles/mounts/fridge-nfs.nix */
+    ../../../profiles/mounts/freon-nfs.nix
+    ../../../profiles/mounts/reidun-nfs.nix
+    ../../../profiles/mounts/meconium-nfs.nix
+    /* ../../../profiles/mounts/fridge-nfs.nix */
 
-    ../../profiles/shell.nix
+    ../../../profiles/shell.nix
 
-    ../../profiles/desktop/base.nix
-    ../../profiles/desktop/gnome # configures gdm
-    #../../profiles/desktop/sound/alsa.nix
-    #../../profiles/desktop/sound/pulseaudio.nix
-    ../../profiles/desktop/sound/pipewire.nix
+    ../../../profiles/desktop/base.nix
+    ../../../profiles/desktop/gnome # configures gdm
+    #../../../profiles/desktop/sound/alsa.nix
+    #../../../profiles/desktop/sound/pulseaudio.nix
+    ../../../profiles/desktop/sound/pipewire.nix
 
-    ../../profiles/desktop/steam.nix
-    ../../profiles/desktop/flatpak.nix
+    ../../../profiles/desktop/steam.nix
+    ../../../profiles/desktop/flatpak.nix
 
-    ../../profiles/known-hosts.nix
-    #../../profiles/domeneshop-dyndns.nix # handled by noximilien
+    ../../../profiles/known-hosts.nix
+    #../../../profiles/domeneshop-dyndns.nix # handled by noximilien
   ];
 
   nix.settings.max-jobs = 1; # this host do be stinky

hosts/nixos/noximilien/configuration.nix

@@ -0,0 +1,142 @@
+{ config, pkgs, lib, ... }:
+{
+  # Bootloader
+  boot.loader.grub.enable      = true;
+  boot.loader.grub.device      = "/dev/sda";
+  boot.loader.grub.useOSProber = true;
+  imports = [
+    ./hardware-configuration.nix
+    ../../../profiles/sshd.nix
+    #../../../profiles/oci/podman.nix
+
+    #./yt-dlp-archive.nix
+
+    #../../../profiles/vpn-pbsds/headscale.nix # opens port 3478 # TODO: move outside of home net?
+
+    ../../../users/pbsds
+    ../../../users/jornane
+
+    ../../../profiles/mounts/freon-nfs.nix
+    ../../../profiles/mounts/reidun-nfs.nix
+    ../../../profiles/mounts/meconium-zfs.nix
+    #../../../profiles/mounts/fridge-nfs.nix # TODO: fix
+
+    ../../../profiles/shell.nix
+
+    #../../../profiles/services/tmate-server.nix # opens port 42244 # TODO: move outside of home net
+
+    ../../../profiles/http # enables nginx+acme, defines mkDomain
+    ../../../profiles/http/index
+    ../../../profiles/http/services/cinny.nix
+    ../../../profiles/http/services/element.nix
+    ../../../profiles/http/services/flexget.nix
+    #../../../profiles/http/services/gitea.nix
+    #../../../profiles/http/services/hydra.nix
+    ../../../profiles/http/services/invidious.nix
+    #../../../profiles/http/services/rss-bridge.nix # TODO: move out of home net
+    #../../../profiles/http/services/jellyfin.nix
+    ../../../profiles/http/services/plex.nix
+    #../../../profiles/http/services/tautulli.nix # will run a first-time-setup where admin account is made
+    ../../../profiles/http/services/libreddit.nix
+    #../../../profiles/http/services/mattermost.nix
+    #../../../profiles/http/services/navidrome.nix
+    #../../../profiles/http/services/netdata.nix # put behind firewall
+    #../../../profiles/http/services/nitter.nix
+    #../../../profiles/http/services/ntopng.nix
+    #../../../profiles/http/services/microbin.nix # TODO: move out of home net
+    #../../../profiles/http/services/owncast.nix
+    #../../../profiles/http/services/paperless.nix
+    ../../../profiles/http/services/polaris.nix
+    #../../../profiles/http/services/resilio.nix
+    ../../../profiles/http/services/roundcube.nix
+    #../../../profiles/http/services/snappymail.nix # WIP
+    ../../../profiles/http/services/thelounge.nix
+    ../../../profiles/http/services/vaultwarden.nix
+    ../../../profiles/http/services/webdav-zotero.nix
+    #../../../profiles/http/services/garage/gunktrunk.nix
+    #../../../profiles/http/services/convos.nix
+    #../../../profiles/http/services/cryptpad.nix
+    #../../../profiles/http/services/galene.nix
+    #../../../profiles/http/services/graphana.nix
+    #../../../profiles/http/services/hedgedoc.nix # TODO: move out of home net
+    #../../../profiles/http/services/home-assistant.nix
+    #../../../profiles/http/services/jitsi-meet.nix
+    #../../../profiles/http/services/kukkee
+    #../../../profiles/http/services/matrix-synapse.nix
+    #../../../profiles/http/services/shlink.nix
+    #../../../profiles/http/services/sourcegraph.nix
+    #../../../profiles/http/services/censordodge.nix
+    #../../../profiles/http/services/openspeedtest.nix
+
+    /**/
+    # TODO: move to brumle
+    ../../../profiles/http/docs
+    ../../../profiles/http/docs/pdoc.nix
+    ../../../profiles/http/docs/python-docs.nix
+    #../../../profiles/http/docs/nixpkgs.nix # TODO: fix
+    ../../../profiles/http/docs/home-manager.nix
+    #../../../profiles/http/docs/linux-docs.nix # TODO: fix
+    ../../../profiles/http/docs/programs.nix
+    ../../../profiles/http/docs/yagcd.nix
+    /**/
+
+    # TODO: make flake inputs
+    #../../../profiles/http/sites/linktree-pbsds.nix # github bby!! TODO: remove
+    ../../../profiles/http/sites/refleksjon-no.nix
+    ../../../profiles/http/sites/roroslyd-no.nix
+    ../../../profiles/http/sites/kuklefse.nix
+
+    #../../../profiles/http/services/trivial-gradios
+
+    #../../../profiles/code-remote # TODO: move into web? services?
+    ../../../profiles/domeneshop-dyndns.nix
+    ../../../profiles/known-hosts.nix
+    /* ../../../profiles/autossh-reverse-tunnels */
+    #../../../profiles/xrdp
+  ];
+  services.domeneshop-updater.targets = [
+    #"pbsds.net" # github bby!! TODO: remove
+    "olavtr.pbsds.net"
+    "kuklef.se"
+  ];
+
+  nix.settings.max-jobs = 1; # this host do be stinky
+
+  networking.hostId = "e1ffd469"; # needed for zfs: head -c 8 /etc/machine-id
+
+  #networking.wireguard.interfaces."wg0".ips = [ "172.22.48.3/24" ]; # fyrkat
+
+  sops.secrets.flexget.sopsFile = ../../../secrets/${config.networking.hostName}.yaml;
+
+  # TODO: remove? Move to where relevant?
+  nixpkgs.overlays = [
+    /** /
+    (final: prev: {
+      mapcrafter          = prev.callPackage /home/pbsds/repos/nixpkgs-mapcrafter/pkgs/tools/games/minecraft/mapcrafter/default.nix { };
+      mapcrafter-world112 = prev.callPackage /home/pbsds/repos/nixpkgs-mapcrafter/pkgs/tools/games/minecraft/mapcrafter/default.nix { world="world112"; };
+    })
+    /**/
+  ];
+
+  # Networking
+  networking.networkmanager.enable = true;
+  #networking.wireless.enable = true;  # Enables wireless support via wpa_supplicant.
+  #networking.iwd.enable = true # # alternative wireless backend, doesn't support eduroam
+  networking.interfaces.eno1.ipv4.addresses = [
+    { address = "192.168.1.9"; prefixLength = 24; }
+  ];
+  networking.nameservers = [
+    "192.168.1.254"
+    "8.8.8.8"
+    "1.1.1.1"
+  ];
+  networking.defaultGateway = {
+    address = "192.168.1.254";
+    interface = "eno1";
+  };
+  #networking.useDHCP = true;
+  #TODO: avahi? resolved? https://git.pvv.ntnu.no/Drift/pvv-nixos-config/src/main/base.nix#L15-L18
+
+  # TODO: remove? Move?
+  programs.dconf.enable = true;
+}

hosts/nixos/sopp/configuration.nix

@@ -23,34 +23,34 @@
 
   imports = [
     ./hardware-configuration.nix
-    ../../profiles/sshd.nix
-    ../../profiles/no-suspend.nix
-    #../../profiles/oci/podman.nix
-    ../../profiles/oci/docker.nix
-    ../../profiles/oci/distrobox.nix
+    ../../../profiles/sshd.nix
+    ../../../profiles/no-suspend.nix
+    #../../../profiles/oci/podman.nix
+    ../../../profiles/oci/docker.nix
+    ../../../profiles/oci/distrobox.nix
 
-    ../../users/pbsds
-    ../../users/pbsds/syncthing.nix
+    ../../../users/pbsds
+    ../../../users/pbsds/syncthing.nix
 
-    ../../profiles/mounts/freon-nfs.nix
-    ../../profiles/mounts/reidun-nfs.nix
-    ../../profiles/mounts/meconium-nfs.nix
+    ../../../profiles/mounts/freon-nfs.nix
+    ../../../profiles/mounts/reidun-nfs.nix
+    ../../../profiles/mounts/meconium-nfs.nix
 
-    ../../profiles/shell.nix
+    ../../../profiles/shell.nix
 
-    ../../profiles/desktop/base.nix
-    ../../profiles/desktop/gnome # configures gdm
-    #../../profiles/desktop/sound/alsa.nix
-    #../../profiles/desktop/sound/pulseaudio.nix
-    ../../profiles/desktop/sound/pipewire.nix
+    ../../../profiles/desktop/base.nix
+    ../../../profiles/desktop/gnome # configures gdm
+    #../../../profiles/desktop/sound/alsa.nix
+    #../../../profiles/desktop/sound/pulseaudio.nix
+    ../../../profiles/desktop/sound/pipewire.nix
 
-    ../../profiles/desktop/steam.nix
-    #../../profiles/desktop/xboxdrv.nix # TODO: try out
-    ../../profiles/desktop/lutris.nix
-    ../../profiles/desktop/flatpak.nix
+    ../../../profiles/desktop/steam.nix
+    #../../../profiles/desktop/xboxdrv.nix # TODO: try out
+    ../../../profiles/desktop/lutris.nix
+    ../../../profiles/desktop/flatpak.nix
 
-    ../../profiles/known-hosts.nix
-    #../../profiles/domeneshop-dyndns.nix # handled by noximilien
+    ../../../profiles/known-hosts.nix
+    #../../../profiles/domeneshop-dyndns.nix # handled by noximilien
   ];
 
   networking.firewall.allowedTCPPorts = [ 57621 ]; # spotify local discovery

hosts/noximilien/configuration.nix

@@ -1,142 +0,0 @@
-{ config, pkgs, lib, ... }:
-{
-  # Bootloader
-  boot.loader.grub.enable      = true;
-  boot.loader.grub.device      = "/dev/sda";
-  boot.loader.grub.useOSProber = true;
-  imports = [
-    ./hardware-configuration.nix
-    ../../profiles/sshd.nix
-    #../../profiles/oci/podman.nix
-
-    #./yt-dlp-archive.nix
-
-    #../../profiles/vpn-pbsds/headscale.nix # opens port 3478 # TODO: move outside of home net?
-
-    ../../users/pbsds
-    ../../users/jornane
-
-    ../../profiles/mounts/freon-nfs.nix
-    ../../profiles/mounts/reidun-nfs.nix
-    ../../profiles/mounts/meconium-zfs.nix
-    #../../profiles/mounts/fridge-nfs.nix # TODO: fix
-
-    ../../profiles/shell.nix
-
-    #../../profiles/services/tmate-server.nix # opens port 42244 # TODO: move outside of home net
-
-    ../../profiles/http # enables nginx+acme, defines mkDomain
-    ../../profiles/http/index
-    ../../profiles/http/services/cinny.nix
-    ../../profiles/http/services/element.nix
-    ../../profiles/http/services/flexget.nix
-    #../../profiles/http/services/gitea.nix
-    #../../profiles/http/services/hydra.nix
-    ../../profiles/http/services/invidious.nix
-    #../../profiles/http/services/rss-bridge.nix # TODO: move out of home net
-    #../../profiles/http/services/jellyfin.nix
-    ../../profiles/http/services/plex.nix
-    #../../profiles/http/services/tautulli.nix # will run a first-time-setup where admin account is made
-    ../../profiles/http/services/libreddit.nix
-    #../../profiles/http/services/mattermost.nix
-    #../../profiles/http/services/navidrome.nix
-    #../../profiles/http/services/netdata.nix # put behind firewall
-    #../../profiles/http/services/nitter.nix
-    #../../profiles/http/services/ntopng.nix
-    #../../profiles/http/services/microbin.nix # TODO: move out of home net
-    #../../profiles/http/services/owncast.nix
-    #../../profiles/http/services/paperless.nix
-    ../../profiles/http/services/polaris.nix
-    #../../profiles/http/services/resilio.nix
-    ../../profiles/http/services/roundcube.nix
-    #../../profiles/http/services/snappymail.nix # WIP
-    ../../profiles/http/services/thelounge.nix
-    ../../profiles/http/services/vaultwarden.nix
-    ../../profiles/http/services/webdav-zotero.nix
-    #../../profiles/http/services/garage/gunktrunk.nix
-    #../../profiles/http/services/convos.nix
-    #../../profiles/http/services/cryptpad.nix
-    #../../profiles/http/services/galene.nix
-    #../../profiles/http/services/graphana.nix
-    #../../profiles/http/services/hedgedoc.nix # TODO: move out of home net
-    #../../profiles/http/services/home-assistant.nix
-    #../../profiles/http/services/jitsi-meet.nix
-    #../../profiles/http/services/kukkee
-    #../../profiles/http/services/matrix-synapse.nix
-    #../../profiles/http/services/shlink.nix
-    #../../profiles/http/services/sourcegraph.nix
-    #../../profiles/http/services/censordodge.nix
-    #../../profiles/http/services/openspeedtest.nix
-
-    /**/
-    # TODO: move to brumle
-    ../../profiles/http/docs
-    ../../profiles/http/docs/pdoc.nix
-    ../../profiles/http/docs/python-docs.nix
-    #../../profiles/http/docs/nixpkgs.nix # TODO: fix
-    ../../profiles/http/docs/home-manager.nix
-    #../../profiles/http/docs/linux-docs.nix # TODO: fix
-    ../../profiles/http/docs/programs.nix
-    ../../profiles/http/docs/yagcd.nix
-    /**/
-
-    # TODO: make flake inputs
-    #../../profiles/http/sites/linktree-pbsds.nix # github bby!! TODO: remove
-    ../../profiles/http/sites/refleksjon-no.nix
-    ../../profiles/http/sites/roroslyd-no.nix
-    ../../profiles/http/sites/kuklefse.nix
-
-    #../../profiles/http/services/trivial-gradios
-
-    #../../profiles/code-remote # TODO: move into web? services?
-    ../../profiles/domeneshop-dyndns.nix
-    ../../profiles/known-hosts.nix
-    /* ../../profiles/autossh-reverse-tunnels */
-    #../../profiles/xrdp
-  ];
-  services.domeneshop-updater.targets = [
-    #"pbsds.net" # github bby!! TODO: remove
-    "olavtr.pbsds.net"
-    "kuklef.se"
-  ];
-
-  nix.settings.max-jobs = 1; # this host do be stinky
-
-  networking.hostId = "e1ffd469"; # needed for zfs: head -c 8 /etc/machine-id
-
-  #networking.wireguard.interfaces."wg0".ips = [ "172.22.48.3/24" ]; # fyrkat
-
-  sops.secrets.flexget.sopsFile = ../../secrets/${config.networking.hostName}.yaml;
-
-  # TODO: remove? Move to where relevant?
-  nixpkgs.overlays = [
-    /** /
-    (final: prev: {
-      mapcrafter          = prev.callPackage /home/pbsds/repos/nixpkgs-mapcrafter/pkgs/tools/games/minecraft/mapcrafter/default.nix { };
-      mapcrafter-world112 = prev.callPackage /home/pbsds/repos/nixpkgs-mapcrafter/pkgs/tools/games/minecraft/mapcrafter/default.nix { world="world112"; };
-    })
-    /**/
-  ];
-
-  # Networking
-  networking.networkmanager.enable = true;
-  #networking.wireless.enable = true;  # Enables wireless support via wpa_supplicant.
-  #networking.iwd.enable = true # # alternative wireless backend, doesn't support eduroam
-  networking.interfaces.eno1.ipv4.addresses = [
-    { address = "192.168.1.9"; prefixLength = 24; }
-  ];
-  networking.nameservers = [
-    "192.168.1.254"
-    "8.8.8.8"
-    "1.1.1.1"
-  ];
-  networking.defaultGateway = {
-    address = "192.168.1.254";
-    interface = "eno1";
-  };
-  #networking.useDHCP = true;
-  #TODO: avahi? resolved? https://git.pvv.ntnu.no/Drift/pvv-nixos-config/src/main/base.nix#L15-L18
-
-  # TODO: remove? Move?
-  programs.dconf.enable = true;
-}