76 lines
1.8 KiB
Nix
76 lines
1.8 KiB
Nix
# This is your system's configuration file.
|
|
# Use this to configure your system environment (it replaces /etc/nixos/configuration.nix)
|
|
{
|
|
inputs,
|
|
lib,
|
|
config,
|
|
pkgs,
|
|
myhostname,
|
|
...
|
|
}:
|
|
{
|
|
# You can import other NixOS modules here
|
|
imports = [
|
|
./hardware-configuration.nix
|
|
../../moduler/users.nix
|
|
../../moduler/base.nix
|
|
../../moduler/services/monitoring
|
|
];
|
|
|
|
alloy = {
|
|
enable = true;
|
|
configPath = ./alloy-systemd.yaml;
|
|
};
|
|
|
|
nixpkgs.config.permittedInsecurePackages = [
|
|
"broadcom-sta-6.30.223.271-57-6.12.47"
|
|
];
|
|
|
|
nix.settings = {
|
|
trusted-public-keys = [
|
|
"cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY="
|
|
"hyprland.cachix.org-1:a7pgxzMz7+chwVL3/pzj6jIBMioiJM7ypFP8PwtkuGc="
|
|
];
|
|
};
|
|
|
|
security.sudo.wheelNeedsPassword = false;
|
|
users.users.root.openssh.authorizedKeys.keys = [
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIP34dnsZSnWdDvd+3BXDwcw7wP0PjPEx2eCdBQJyGD6O fw@laptop"
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAII60tdNsG0z9q2jHmoTKvkeLQE6OF0bmTsDX1bpqpoG7 fw@jobb"
|
|
];
|
|
|
|
# Restic
|
|
users.users.restic = {
|
|
isNormalUser = true;
|
|
createHome = true;
|
|
home = "/home/restic";
|
|
openssh.authorizedKeys.keys = [
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIP34dnsZSnWdDvd+3BXDwcw7wP0PjPEx2eCdBQJyGD6O fw@laptop"
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAII60tdNsG0z9q2jHmoTKvkeLQE6OF0bmTsDX1bpqpoG7 fw@jobb"
|
|
];
|
|
};
|
|
|
|
# Where repos will live (you can choose a different path/disk)
|
|
systemd.tmpfiles.rules = [
|
|
"d /srv/restic 0750 restic restic -"
|
|
];
|
|
|
|
networking.firewall.allowedUDPPorts = [
|
|
22000
|
|
21027
|
|
];
|
|
|
|
services = {
|
|
openssh = {
|
|
enable = true;
|
|
allowSFTP = true;
|
|
};
|
|
};
|
|
|
|
security.rtkit.enable = true;
|
|
networking.hostName = myhostname;
|
|
|
|
services.xserver.dpi = 100;
|
|
|
|
system.stateVersion = "24.11";
|
|
}
|