Bun/nixos-config
1
0
Fork 1
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Move and rename some stuff whatever

Browse source
This commit is contained in:
Jimbo 2024-12-09 23:07:20 -05:00
parent a0cc623c4b
commit 7c5ff0253e
38 changed files with 53 additions and 127 deletions
Download patch file Download diff file Expand all files Collapse all files

6
modules/system/accounts/groups/admin/default.nix
View file

@ -1,6 +0,0 @@
{ ... }:
{
users.groups.admin = {
gid = 515;
};
}

5
modules/system/accounts/groups/default.nix
View file

@ -1,7 +1,4 @@
{ ... }:
{
imports = [
./admin
./nfsShare
];
imports = [ ./nfsShare ];
}

5
modules/system/accounts/users/default.nix
View file

@ -8,8 +8,5 @@
home-manager.nixosModules.home-manager
];
users = {
mutableUsers = false;
allowNoPasswordLogin = true;
};
users.mutableUsers = false;
}

2
modules/system/accounts/users/jimbo/default.nix
View file

@ -19,7 +19,7 @@
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJahAoF74BY6GCTsFkt1ADKaraFgJJozW1Y1aBTLK0j9 Pixel9"
];
extraGroups = [
"admin"
"wheel"
"audio"
"video"
"input"

1
modules/system/devices/bluetooth/default.nix
View file

@ -10,6 +10,7 @@
};
systemd.tmpfiles.rules = [ "f /var/lib/systemd/linger/jimbo" ];
environment.persistence."/persist".directories = [ "/var/lib/bluetooth" ];
};
}

1
modules/system/devices/boot/lanzaboote/default.nix
View file

@ -6,7 +6,6 @@
enable = lib.mkOption {
type = lib.types.bool;
default = false;
description = "Enable Lanzaboote and force disable Systemd-boot";
};
};

1
modules/system/devices/networking/wireguard/client/default.nix
View file

@ -3,7 +3,6 @@
options.system.wireguard.client.enable = lib.mkOption {
type = lib.types.bool;
default = false;
description = "Enable the wireguard client";
};
config = lib.mkIf config.system.wireguard.client.enable {

1
modules/system/devices/networking/wireguard/server/default.nix
View file

@ -3,7 +3,6 @@
options.system.wireguard.server.enable = lib.mkOption {
type = lib.types.bool;
default = false;
description = "Enable the wireguard server";
};
config = lib.mkIf config.system.wireguard.server.enable {

1
modules/system/devices/networking/wireless/default.nix
View file

@ -3,7 +3,6 @@
options.system.wireless.enable = lib.mkOption {
type = lib.types.bool;
default = true;
description = "Enable Wifi with iwd";
};
config = lib.mkIf config.system.wireless.enable {

1
modules/system/devices/video/nouveau/default.nix
View file

@ -3,7 +3,6 @@
options.system.video.nouveau.enable = lib.mkOption {
type = lib.types.bool;
default = false;
description = "Enable the open-source Nouveau driver";
};
config = lib.mkIf config.system.video.nouveau.enable {

1
modules/system/devices/video/nvidia/default.nix
View file

@ -3,7 +3,6 @@
options.system.video.nvidia.enable = lib.mkOption {
type = lib.types.bool;
default = false;
description = "Enable the proprietary Nvidia stack";
};
config = lib.mkIf config.system.video.nvidia.enable {

2
modules/system/options/default.nix
View file

@ -4,12 +4,10 @@ with lib; {
desktop.enable = mkOption {
type = types.bool;
default = true;
description = "Enable desktop apps and services";
};
server.enable = mkOption {
type = types.bool;
default = false;
description = "Enable server services";
};
};
}

2
modules/system/programs/default.nix
View file

@ -7,8 +7,6 @@
./gaming
./git
./home-manager
./nh
./security
./shells
];
}

6
modules/system/programs/git/gpg/default.nix
View file

@ -1,9 +1,5 @@
{ pkgs, ... }:
{
programs.gnupg.agent = {
enable = true;
enableSSHSupport = true;
};
programs.gnupg.agent.enable = true;
environment.systemPackages = with pkgs; [ git-crypt ];
}

8
modules/system/programs/nh/default.nix
View file

@ -1,8 +0,0 @@
{ ... }:
{
programs.nh = {
enable = true;
clean.enable = true;
flake = "/etc/nixos";
};
}

31
modules/system/programs/security/privilege/default.nix
View file

@ -1,31 +0,0 @@
{ ... }:
{
security.sudo-rs = {
enable = true;
extraRules = [
{ # Admin gets certain commands
groups = [ "admin" ];
commands = [
"/run/current-system/sw/bin/nix"
"/run/current-system/sw/bin/nh"
"/run/current-system/sw/bin/nixos-rebuild"
"/run/current-system/sw/bin/nixos-enter"
"/run/current-system/sw/bin/nix-collect-garbage"
"/run/current-system/sw/bin/nix-store"
"/run/current-system/sw/bin/systemctl"
"/run/current-system/sw/bin/pkill"
"/run/current-system/sw/bin/dd"
"/run/current-system/sw/bin/eject"
"/run/current-system/sw/bin/vgchange"
"/run/current-system/sw/bin/cp"
"/run/current-system/sw/bin/ls"
"/run/current-system/sw/bin/cat"
"/run/current-system/sw/bin/mount"
];
}
];
};
}

31
modules/system/programs/security/privilege/default.nix~
View file

@ -1,31 +0,0 @@
{ ... }:
{
security.sudo-rs = {
enable = true;
extraRules = [
{ # Admin gets certain commands
groups = [ "admin" ];
commands = [
"/run/current-system/sw/bin/nix"
"/run/current-system/sw/bin/nh"
"/run/current-system/sw/bin/nixos-rebuild"
"/run/current-system/sw/bin/nixos-enter"
"/run/current-system/sw/bin/nix-collect-garbage"
"/run/current-system/sw/bin/nix-store"
"/run/current-system/sw/bin/systemctl"
"/run/current-system/sw/bin/pkill"
"/run/current-system/sw/bin/dd"
"/run/current-system/sw/bin/eject"
"/run/current-system/sw/bin/vgchange"
"/run/current-system/sw/bin/cp"
"/run/current-system/sw/bin/ls"
"/run/current-system/sw/bin/cat"
"/run/current-system/sw/bin/mount"
];
}
];
};
}

0
modules/system/services/general/displaymanager/uwsm/default.nix
View file

2
modules/system/services/general/keyd/default.nix
View file

@ -33,7 +33,7 @@
"9" = "f9";
"0" = "f10";
"-" = "f11";
#"=" = "f12";
# ?? "=" = "f12";
};
};
};

2
modules/system/services/general/tlp/default.nix
View file

@ -1,4 +1,4 @@
{ ... }:
{ lib, ... }:
{
services.tlp.enable = true;
}

3
modules/system/services/general/userborn/default.nix
View file

@ -1,5 +1,4 @@
{ ... }:
{
# Enable this when 24.11 drops
#services.userborn.enable = true;
services.userborn.enable = true;
}

3
modules/system/settings/default.nix
View file

@ -2,9 +2,10 @@
{
imports = [
./documentation
./fonts
./font
./minimal
./nix
./security
./timezone
];
}

4
modules/system/settings/font/default.nix Normal file
View file

@ -0,0 +1,4 @@
{ pkgs, ... }:
{
console.font = "${pkgs.terminus_font}/share/consolefonts/ter-u22n.psf.gz";
}

7
modules/system/settings/fonts/default.nix
View file

@ -1,7 +0,0 @@
{ pkgs, ... }:
{
console = {
font = "${pkgs.terminus_font}/share/consolefonts/ter-u22n.psf.gz";
packages = with pkgs; [ terminus_font ];
};
}

1
modules/system/settings/nix/default.nix
View file

@ -2,6 +2,7 @@
{
imports = [
./autoupgrade
./gc
];
nix.settings = {

8
modules/system/settings/nix/gc/default.nix Normal file
View file

@ -0,0 +1,8 @@
{ ... }:
{
nix.gc = {
automatic = true;
dates = "weekly";
options = "--delete-older-than 1w";
};
}

0
modules/system/programs/security/apparmor/default.nix → modules/system/settings/security/apparmor/default.nix
View file

0
modules/system/programs/security/default.nix → modules/system/settings/security/default.nix
View file

0
modules/system/programs/security/polkit/default.nix → modules/system/settings/security/polkit/default.nix
View file

16
modules/system/settings/security/privilege/default.nix Normal file
View file

@ -0,0 +1,16 @@
{ ... }:
{
security = {
sudo.enable = false;
doas = {
enable = true;
extraRules = [
{ # Give wheel root access
groups = [ "wheel" ];
keepEnv = true;
persist = true;
}
];
};
};
}

0
modules/system/programs/security/rtprio/default.nix → modules/system/settings/security/rtprio/default.nix
View file