nixos-config/hosts/ni/default.nix

{ config, pkgs, lib, ... }:

let
  network = import ../plover/modules/hardware/networks.nix;
  inherit (network) publicIP wireguardIPv6BaseAddress wireguardPort;

  wireguardAllowedIPs = [ "0:0:0:0/0" "::/0" ];
  wireguardIFName = "wireguard0";
in
{
  imports = [
    # Include the results of the hardware scan.
    ./hardware-configuration.nix

    (lib.mapHomeManagerUser "foo-dogsquared" {
      extraGroups = [
        "adbusers"
        "wheel"
        "audio"
        "docker"
        "podman"
        "networkmanager"
      ];
      hashedPassword =
        "$6$.cMYto0K0CHbpIMT$dRqyKs4q1ppzmTpdzy5FWP/V832a6X..FwM8CJ30ivK0nfLjQ7DubctxOZbeOtygfjcUd1PZ0nQoQpOg/WMvg.";
      isNormalUser = true;
      createHome = true;
      home = "/home/foo-dogsquared";
    })
  ];

  services.openssh.hostKeys = [{
    path = config.sops.secrets."ni/ssh-key".path;
    type = "ed25519";
  }];

  sops.secrets =
    let
      getKey = key: {
        inherit key;
        sopsFile = ./secrets/secrets.yaml;
      };
      getSecrets = secrets:
        lib.mapAttrs'
          (secret: config:
            lib.nameValuePair
              "ni/${secret}"
              ((getKey secret) // config))
          secrets;
    in
    getSecrets {
      ssh-key = { };
      "ldap/password" = { };
      "wireguard/private-key" = {
        group = config.users.users.systemd-network.group;
        reloadUnits = [ "systemd-networkd.service" ];
        mode = "0640";
      };
      "wireguard/preshared-keys/plover" = {
        group = config.users.users.systemd-network.group;
        reloadUnits = [ "systemd-networkd.service" ];
        mode = "0640";
      };
      "wireguard/preshared-keys/phone" = {
        group = config.users.users.systemd-network.group;
        reloadUnits = [ "systemd-networkd.service" ];
        mode = "0640";
      };
    };

  sops.age.keyFile = "/var/lib/sops-nix/key.txt";

  boot.binfmt.emulatedSystems = [
    "aarch64-linux"
    "riscv64-linux"
  ];

  boot.initrd.supportedFilesystems = [ "btrfs" ];
  boot.supportedFilesystems = [ "btrfs" ];

  services.btrfs.autoScrub = {
    enable = true;
    fileSystems = [
      "/mnt/archives"
    ];
  };

  # My custom configuration with my custom modules starts here.
  profiles = {
    i18n.enable = true;
    archiving.enable = true;
    desktop = {
      enable = true;
      audio.enable = true;
      fonts.enable = true;
      hardware.enable = true;
      cleanup.enable = true;
      autoUpgrade.enable = true;
    };
    dev = {
      enable = true;
      shell.enable = true;
      virtualization.enable = true;
      neovim.enable = true;
    };
  };

  tasks = {
    multimedia-archive.enable = true;
    backup-archive.enable = true;
  };
  workflows.workflows.a-happy-gnome.enable = true;

  programs.pop-launcher = {
    enable = true;
    plugins = with pkgs; [
      pop-launcher-plugin-duckduckgo-bangs
      pop-launcher-plugin-brightness
    ];
  };

  programs.wezterm.enable = true;
  programs.adb.enable = true;

  environment.systemPackages = with pkgs; [
    (swh.swh-core.overrideAttrs (super: self: {
      pythonPath = with swh; [
        swh-fuse
        swh-web-client
        swh-model
        swh-auth
      ];
    }))
  ];

  # Enable Guix service.
  services.guix.enable = true;

  # Use the systemd-boot EFI boot loader.
  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;

  # Set your time zone.
  time.timeZone = "Asia/Manila";

  # Doxxing myself.
  location = {
    latitude = 15.0;
    longitude = 121.0;
  };

  # Some programs need SUID wrappers, can be configured further or are
  # started in user sessions.
  programs.mtr.enable = true;

  services.auto-cpufreq.enable = true;
  services.thermald.enable = true;
  services.avahi.enable = true;

  # The usual doas config.
  security.doas = {
    enable = true;
    extraRules = [
      {
        groups = [ "wheel" ];
        persist = true;
      }

      # It is the primary user so we may as well just make this easier to run.
      {
        users = [ "foo-dogsquared" ];
        cmd = "nixos-rebuild";
        noPass = true;
      }
    ];
  };

  system.stateVersion = "22.11"; # Yes! I read the comment!

  users.ldap = {
    enable = true;
    base = "dc=foodogsquared,dc=one";
    bind = {
      distinguishedName = "cn=Manager,dc=foodogsquared,dc=one";
      passwordFile = config.sops.secrets."ni/ldap/password".path;
    };

    daemon.enable = true;
    server = "ldaps://ldap.foodogsquared.one/";
  };

  # Setting up Wireguard as a VPN tunnel. Since this is a laptop that meant to
  # be used anywhere, we're configuring Wireguard here as a "client".
  #
  # We're also setting up this configuration as a forwarder
  systemd.network = {
    netdevs."99-${wireguardIFName}" = {
      netdevConfig = {
        Name = wireguardIFName;
        Kind = "wireguard";
      };

      wireguardConfig = {
        PrivateKeyFile = config.sops.secrets."ni/wireguard/private-key".path;
        ListenPort = wireguardPort;
      };

      wireguardPeers = [
        # Plover server peer. This is the main "server" of the network.
        {
          wireguardPeerConfig = {
            PublicKey = lib.readFile ../plover/files/wireguard/wireguard-public-key-plover;
            PresharedKeyFile = config.sops.secrets."ni/wireguard/preshared-keys/plover".path;
            AllowedIPs = lib.concatStringsSep "," wireguardAllowedIPs;
            Endpoint = "${publicIP}:51820";
          };
        }

        # "Phone" peer. It is also expected to be anywhere on the global
        # network so we're basically setting up our own peer as a traffic
        # forwarder in case there's ever a reason to do connect from the phone
        # to the server which is always available anyways.
        {
          wireguardPeerConfig = {
            PublicKey = lib.readFile ../plover/files/wireguard/wireguard-public-key-phone;
            PresharedKeyFile = config.sops.secrets."ni/wireguard/preshared-keys/phone".path;
            AllowedIPs = lib.concatStringsSep "," wireguardAllowedIPs;
            Endpoint = "${publicIP}:51820";
          };
        }
      ];
    };

    networks."99-${wireguardIFName}" = {
      matchConfig.Name = wireguardIFName;
      address = [
        "172.45.1.2/24"
        "${wireguardIPv6BaseAddress}/48"
      ];

      # Otherwise, it will autostart every bootup when I need it only at few
      # hours at a time.
      linkConfig.Unmanaged = true;
    };
  };
}
flake.nix: update hosts default config 2022-07-28 09:29:58 +00:00			`{ config, pkgs, lib, ... }:`
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00
hosts: add Wireguard services to related peers Among other things, Plover now ignores certain IP for fail2ban. This is for the VPN users that are placed in that range. 2023-01-17 08:05:11 +00:00			`let`
			`network = import ../plover/modules/hardware/networks.nix;`
			`inherit (network) publicIP wireguardIPv6BaseAddress wireguardPort;`

			`wireguardAllowedIPs = [ "0:0:0:0/0" "::/0" ];`
			`wireguardIFName = "wireguard0";`
			`in`
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00			`{`
Update various configurations Flake outputs, hosts, users, and formatting of Nix files. et cetera, et cetera. 2021-12-11 05:37:27 +00:00			`imports = [`
			`# Include the results of the hardware scan.`
Format the Nix files properly 2021-11-25 13:45:48 +00:00			`./hardware-configuration.nix`
host/ni: use Guix module from guix-overlay 2022-01-31 07:39:21 +00:00
profiles/users: move as a library function 2022-07-09 05:54:05 +00:00			`(lib.mapHomeManagerUser "foo-dogsquared" {`
hosts/ni: update config 2022-08-10 04:14:11 +00:00			`extraGroups = [`
			`"adbusers"`
			`"wheel"`
			`"audio"`
			`"docker"`
			`"podman"`
			`"networkmanager"`
			`];`
profiles/users: move as a library function 2022-07-09 05:54:05 +00:00			`hashedPassword =`
			`"$6$.cMYto0K0CHbpIMT$dRqyKs4q1ppzmTpdzy5FWP/V832a6X..FwM8CJ30ivK0nfLjQ7DubctxOZbeOtygfjcUd1PZ0nQoQpOg/WMvg.";`
			`isNormalUser = true;`
			`createHome = true;`
			`home = "/home/foo-dogsquared";`
			`})`
Format the Nix files properly 2021-11-25 13:45:48 +00:00			`];`
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00
hosts/ni: update config and store secrets 2022-07-17 05:25:36 +00:00			`services.openssh.hostKeys = [{`
hosts/ni: update secrets code 2022-12-31 03:13:27 +00:00			`path = config.sops.secrets."ni/ssh-key".path;`
hosts/ni: update config and store secrets 2022-07-17 05:25:36 +00:00			`type = "ed25519";`
			`}];`
hosts/ni: update secrets code 2022-12-31 03:13:27 +00:00
chore: reformat codebase 2023-01-07 08:06:34 +00:00			`sops.secrets =`
			`let`
			`getKey = key: {`
			`inherit key;`
			`sopsFile = ./secrets/secrets.yaml;`
			`};`
			`getSecrets = secrets:`
			`lib.mapAttrs'`
			`(secret: config:`
			`lib.nameValuePair`
			`"ni/${secret}"`
			`((getKey secret) // config))`
			`secrets;`
			`in`
hosts/ni: update secrets code 2022-12-31 03:13:27 +00:00			`getSecrets {`
			`ssh-key = { };`
hosts/ni: add LDAP service 2022-12-31 03:14:08 +00:00			`"ldap/password" = { };`
hosts: add Wireguard services to related peers Among other things, Plover now ignores certain IP for fail2ban. This is for the VPN users that are placed in that range. 2023-01-17 08:05:11 +00:00			`"wireguard/private-key" = {`
			`group = config.users.users.systemd-network.group;`
			`reloadUnits = [ "systemd-networkd.service" ];`
			`mode = "0640";`
			`};`
			`"wireguard/preshared-keys/plover" = {`
			`group = config.users.users.systemd-network.group;`
			`reloadUnits = [ "systemd-networkd.service" ];`
			`mode = "0640";`
			`};`
			`"wireguard/preshared-keys/phone" = {`
			`group = config.users.users.systemd-network.group;`
			`reloadUnits = [ "systemd-networkd.service" ];`
			`mode = "0640";`
			`};`
hosts/ni: update secrets code 2022-12-31 03:13:27 +00:00			`};`

hosts/ni: update config and store secrets 2022-07-17 05:25:36 +00:00			`sops.age.keyFile = "/var/lib/sops-nix/key.txt";`

update profiles and user configs 2022-05-20 06:47:09 +00:00			`boot.binfmt.emulatedSystems = [`
			`"aarch64-linux"`
			`"riscv64-linux"`
			`];`

hosts/ni: update host config 2022-07-14 00:20:02 +00:00			`boot.initrd.supportedFilesystems = [ "btrfs" ];`
			`boot.supportedFilesystems = [ "btrfs" ];`

			`services.btrfs.autoScrub = {`
			`enable = true;`
			`fileSystems = [`
			`"/mnt/archives"`
			`];`
			`};`

Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00			`# My custom configuration with my custom modules starts here.`
Restructure the modules While it is easier to maintain the modules by prefixing them all with `modules`, it is not easy when used from other flakes and/or modules. This is my attempt on making it easier with appropriate namespaces. Update home-manager user from the restructure 2022-01-09 05:38:59 +00:00			`profiles = {`
hosts/ni: update host config 2022-07-14 00:20:02 +00:00			`i18n.enable = true;`
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00			`archiving.enable = true;`
profiles/system: rename to profiles/desktop The need for configuring desktop and server in separate profiles is becoming more obvious. Not to mention, most of the system config from profiles/system is obviously more desktop-oriented. 2022-11-29 13:03:30 +00:00			`desktop = {`
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00			`enable = true;`
			`audio.enable = true;`
Update users NixOS module Welp, that's one step for more convenient and separate user-specific configuration. It's a tad simpler than https://github.com/divnix/devos but I want to work my way towards a similar setup. It's just a little overwhelming starting with that framework. 2021-11-27 11:21:08 +00:00			`fonts.enable = true;`
Add library and desktop modules 2021-12-06 07:27:51 +00:00			`hardware.enable = true;`
Update various configurations Flake outputs, hosts, users, and formatting of Nix files. et cetera, et cetera. 2021-12-11 05:37:27 +00:00			`cleanup.enable = true;`
profiles/system: add auto-upgrade option 2022-04-16 16:17:19 +00:00			`autoUpgrade.enable = true;`
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00			`};`
			`dev = {`
			`enable = true;`
			`shell.enable = true;`
Update home-manager modules and related configs 2021-11-29 09:56:24 +00:00			`virtualization.enable = true;`
Remove editor module for NixOS The dedicated editor module for NixOS has been removed seeing as it is barely used. The only exception is Neovim which is moved into `modules.dev.neovim`. 2021-12-25 12:35:55 +00:00			`neovim.enable = true;`
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00			`};`
Restructure the modules While it is easier to maintain the modules by prefixing them all with `modules`, it is not easy when used from other flakes and/or modules. This is my attempt on making it easier with appropriate namespaces. Update home-manager user from the restructure 2022-01-09 05:38:59 +00:00			`};`
hosts/ni: update config For now, we're removing the backup media task just to make it easier to install for non-local setups. It is pretty much the only thing that requires the most secrets and I want to easily showcase my NixOS setup or something like that. Enabling the task is still in the local changes, just not to be committed. 2022-06-12 05:47:55 +00:00
hosts/ni: update config with setup 2022-07-05 14:05:59 +00:00			`tasks = {`
			`multimedia-archive.enable = true;`
			`backup-archive.enable = true;`
			`};`
themes: rename into `workflows` More self-descriptive == better. Plus it does imply that themes only change aesthetics which is not often the case with the usual modules that are defined here. 2022-08-23 10:24:44 +00:00			`workflows.workflows.a-happy-gnome.enable = true;`
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00
hosts/ni: add more programs 2022-08-11 01:45:19 +00:00			`programs.pop-launcher = {`
			`enable = true;`
			`plugins = with pkgs; [`
			`pop-launcher-plugin-duckduckgo-bangs`
			`pop-launcher-plugin-brightness`
			`];`
			`};`
hosts/ni: update config 2022-08-10 04:14:11 +00:00
			`programs.wezterm.enable = true;`
			`programs.adb.enable = true;`

Clean up the files 2022-02-02 04:25:03 +00:00			`environment.systemPackages = with pkgs; [`
hosts/ni: add more programs 2022-08-11 01:45:19 +00:00			`(swh.swh-core.overrideAttrs (super: self: {`
			`pythonPath = with swh; [`
			`swh-fuse`
			`swh-web-client`
			`swh-model`
			`swh-auth`
			`];`
			`}))`
Clean up the files 2022-02-02 04:25:03 +00:00			`];`

host/ni: use Guix module from guix-overlay 2022-01-31 07:39:21 +00:00			`# Enable Guix service.`
flake.nix: use Nix-built Guix service module 2022-08-27 05:30:04 +00:00			`services.guix.enable = true;`
host/ni: use Guix module from guix-overlay 2022-01-31 07:39:21 +00:00
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00			`# Use the systemd-boot EFI boot loader.`
			`boot.loader.systemd-boot.enable = true;`
			`boot.loader.efi.canTouchEfiVariables = true;`
Add library and desktop modules 2021-12-06 07:27:51 +00:00
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00			`# Set your time zone.`
			`time.timeZone = "Asia/Manila";`

			`# Doxxing myself.`
			`location = {`
			`latitude = 15.0;`
			`longitude = 121.0;`
			`};`

			`# Some programs need SUID wrappers, can be configured further or are`
			`# started in user sessions.`
			`programs.mtr.enable = true;`

Update flake and users config 2021-12-19 09:39:18 +00:00			`services.auto-cpufreq.enable = true;`
			`services.thermald.enable = true;`
Update `ni` configuration 2021-12-26 10:43:49 +00:00			`services.avahi.enable = true;`
Update flake and users config 2021-12-19 09:39:18 +00:00
Format the Nix files properly 2021-11-25 13:45:48 +00:00			`# The usual doas config.`
			`security.doas = {`
			`enable = true;`
hosts/ni: update config 2022-08-10 04:14:11 +00:00			`extraRules = [`
			`{`
			`groups = [ "wheel" ];`
			`persist = true;`
			`}`

			`# It is the primary user so we may as well just make this easier to run.`
			`{`
			`users = [ "foo-dogsquared" ];`
			`cmd = "nixos-rebuild";`
			`noPass = true;`
			`}`
			`];`
Format the Nix files properly 2021-11-25 13:45:48 +00:00			`};`
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00
hosts/ni: update config and store secrets 2022-07-17 05:25:36 +00:00			`system.stateVersion = "22.11"; # Yes! I read the comment!`
hosts/ni: add LDAP service 2022-12-31 03:14:08 +00:00
			`users.ldap = {`
			`enable = true;`
			`base = "dc=foodogsquared,dc=one";`
			`bind = {`
			`distinguishedName = "cn=Manager,dc=foodogsquared,dc=one";`
			`passwordFile = config.sops.secrets."ni/ldap/password".path;`
			`};`

			`daemon.enable = true;`
			`server = "ldaps://ldap.foodogsquared.one/";`
			`};`
hosts: add Wireguard services to related peers Among other things, Plover now ignores certain IP for fail2ban. This is for the VPN users that are placed in that range. 2023-01-17 08:05:11 +00:00
			`# Setting up Wireguard as a VPN tunnel. Since this is a laptop that meant to`
			`# be used anywhere, we're configuring Wireguard here as a "client".`
			`#`
			`# We're also setting up this configuration as a forwarder`
			`systemd.network = {`
			`netdevs."99-${wireguardIFName}" = {`
			`netdevConfig = {`
			`Name = wireguardIFName;`
			`Kind = "wireguard";`
			`};`

			`wireguardConfig = {`
			`PrivateKeyFile = config.sops.secrets."ni/wireguard/private-key".path;`
			`ListenPort = wireguardPort;`
			`};`

			`wireguardPeers = [`
			`# Plover server peer. This is the main "server" of the network.`
			`{`
			`wireguardPeerConfig = {`
			`PublicKey = lib.readFile ../plover/files/wireguard/wireguard-public-key-plover;`
			`PresharedKeyFile = config.sops.secrets."ni/wireguard/preshared-keys/plover".path;`
			`AllowedIPs = lib.concatStringsSep "," wireguardAllowedIPs;`
			`Endpoint = "${publicIP}:51820";`
			`};`
			`}`

			`# "Phone" peer. It is also expected to be anywhere on the global`
			`# network so we're basically setting up our own peer as a traffic`
			`# forwarder in case there's ever a reason to do connect from the phone`
			`# to the server which is always available anyways.`
			`{`
			`wireguardPeerConfig = {`
			`PublicKey = lib.readFile ../plover/files/wireguard/wireguard-public-key-phone;`
			`PresharedKeyFile = config.sops.secrets."ni/wireguard/preshared-keys/phone".path;`
			`AllowedIPs = lib.concatStringsSep "," wireguardAllowedIPs;`
			`Endpoint = "${publicIP}:51820";`
			`};`
			`}`
			`];`
			`};`

			`networks."99-${wireguardIFName}" = {`
			`matchConfig.Name = wireguardIFName;`
			`address = [`
			`"172.45.1.2/24"`
			`"${wireguardIPv6BaseAddress}/48"`
			`];`

			`# Otherwise, it will autostart every bootup when I need it only at few`
			`# hours at a time.`
			`linkConfig.Unmanaged = true;`
			`};`
			`};`
Rewrite as a flake I revisited NixOS this week and I've rewritten my NixOS config from scratch. I must say I really like Nix flakes. For whatever reason it just clicked and I understood more programming with Nix despite my previous experience which is not good. Could be just the fact I had a break for a long time from completely using Nix (I still used it on non-NixOS distros). Eh... I still took some things from the original inspiration of this configuration so there's that. 2021-11-25 11:55:30 +00:00			`}`