Move vim packages to pkgs

Add system config Split up modules into home and system sets Update Cleanup Move home config Add module attrs Fix empty LUKS device UUID Import local secrets
2020-12-25 17:38:07 +01:00 · 2020-12-25 17:38:07 +01:00 · e1c562191b
commit e1c562191b
parent 4724f264dd
67 changed files with 1055 additions and 202 deletions
--- a/hosts/gorgon/default.nix
+++ b/hosts/gorgon/default.nix
@ -0,0 +1,123 @@
+{ config, pkgs, lib, ... }:
+let
+  this = import ../.. {};
+in
+{
+  imports = (lib.attrValues this.modules) ++ [
+    ../../modules/profiles/base
+    <nixos-hardware/lenovo/thinkpad/t14s/amd/gen1>
+  ];
+
+  boot.kernelModules = [ "kvm-amd" ];
+
+  virtualisation = {
+    libvirtd.enable = true;
+    docker.enable = false;
+  };
+
+  networking.hostName = "gorgon";
+
+  dadada = {
+    steam.enable = true;
+    fido2 = {
+      credential = "04ea2813a116f634e90f9728dbbb45f1c0f93b7811941a5a14fb75e711794df0c26552dae2262619c1da2be7562ec9dd94888c71a9326fea70dfe16214b5ea8ec01473070000";
+      enablePam = true;
+    };
+    luks.uuid = "3d0e5b93-90ca-412a-b4e0-3e6bfa47d3f4";
+    networking = {
+      wanInterfaces = [ "enp2s0f0" "wlp3s0" ];
+      enableBsShare = true;
+      vpnExtension = "3";
+    };
+  };
+
+  boot.kernel.sysctl = {
+    "vm.swappiness" = 90;
+  };
+
+  # Use the systemd-boot EFI boot loader.
+  boot.loader.systemd-boot.enable = true;
+  boot.loader.efi.canTouchEfiVariables = true;
+
+  programs.adb.enable = true;
+
+  services.fstrim.enable = true;
+
+  # Enable CUPS to print documents.
+  services.printing = {
+    enable = true;
+    browsing = true;
+    drivers = with pkgs; [
+      hplip
+      brlaser
+      brgenml1lpr
+      brgenml1cupswrapper
+    ];
+  };
+
+  hardware = {
+    bluetooth.enable = true;
+    pulseaudio = {
+      enable = true;
+      extraModules = [ pkgs.pulseaudio-modules-bt ];
+      extraConfig = ''
+        set-source-volume 1 10000
+      '';
+      package = pkgs.pulseaudioFull;
+    };
+  };
+
+  services.avahi.enable = true;
+
+  networking.firewall = {
+    enable = true;
+    allowedTCPPorts = [
+      22000 # Syncthing
+    ];
+    allowedUDPPorts = [
+      21027 # Syncthing
+    ];
+  };
+
+  services.xserver.enable = true;
+  services.xserver.displayManager.gdm.enable = true;
+  services.xserver.desktopManager.gnome3.enable = true;
+
+  xdg.mime.enable = true;
+
+  users.users = {
+    dadada = {
+      isNormalUser = true;
+      extraGroups = [ "wheel" "networkmanager" "libvirtd" "adbusers" "kvm" "video" "scanner" "lp" "docker" ];
+      shell = "/run/current-system/sw/bin/zsh";
+      initialHashedPassword = "nopass";
+    };
+
+    "tim.schubert" = {
+      isNormalUser = true;
+      extraGroups = [ "networkmanager" "libvirtd" "adbusers" "kvm" "video" "scanner" "lp" "docker" ];
+      shell = "/run/current-system/sw/bin/zsh";
+      initialHashedPassword = "nopass";
+    };
+  };
+
+  networking.hosts = {
+    "fd42:dead:beef:0:5054:ff:fefb:7361" = [
+      "media.dadada.li"
+      "ifrit.dadada.li"
+      "weechat.dadada.li"
+      "webchat.dadada.li"
+    ];
+    "192.168.42.103" = [
+      "media.dadada.li"
+      "ifrit.dadada.li"
+      "weechat.dadada.li"
+      "webchat.dadada.li"
+    ];
+    "fd42:dead:beef::5054:ff:fe8b:58df" = [ "iot.dadada.li" ];
+    "fd42:dead:beef::20d:b9ff:fe4c:c9ac" = [ "agares.dadada.li" ];
+    "192.168.42.15" = [ "agares.dadada.li" "agares" ];
+    "192.168.42.11" = [ "wohnzimmerpi.dadada.li" "wohnzimmerpi" ];
+    "10.1.2.9" = [ "fgprinter.fginfo.tu-bs.de" ];
+  };
+}