66317b18bc
hosts/bootstrap: explicitly configure SSH daemon
2023-07-05 16:39:58 +08:00
0aa69a1ad8
lib/private: fix key override for getting secrets
...
The secrets key and path shouldn't be overridden by the functions. The
fix was simpler than I thought.
2023-07-05 13:34:41 +08:00
426e4e360a
tasks: refactor with path prefix
2023-07-05 13:14:38 +08:00
2e7cdeacf3
hosts: remove host path prefix for sops keys
...
It is more explicit and elegant but more of a pain to manage especially
with the new function. It was structured that way for other hosts'
secrets but it isn't really used in practice. We could just enforce a
convention such as a `hosts` prefix to contain those secrets.
2023-07-05 13:11:47 +08:00
240515ed3b
tasks: add prefix for sops secrets key path
2023-07-05 13:04:52 +08:00
2677400a43
lib/private: add attachSopsPathPrefix
2023-07-05 13:03:41 +08:00
1027f97333
users/foo-dogsquared: update session variables
2023-07-05 11:51:44 +08:00
507f1862fb
users/foo-dogsquared: fix music module
2023-07-05 11:51:06 +08:00
245b19e663
profiles/gaming: update games and add comments
2023-07-05 11:42:46 +08:00
5fbd39adfc
hosts/ni: modularize Wireguard
...
I also added a conditional configuration for systemd-networkd and a
condition for the default which should be enabled when NetworkManager is
enabled. Ideally this should be the default when systemd-networkd is not
enabled but since they are the only network manager, we'll let it slide.
2023-07-05 11:40:40 +08:00
ba3af47cb5
hosts/ni: create system-wide nixpkgs config
2023-07-05 11:39:44 +08:00
fdd723ca33
config: convert to lib.getSecrets
2023-07-05 11:38:58 +08:00
dc8d6e8d55
lib/private: create getSecrets
...
At least it is easier to get them now.
2023-07-05 11:38:26 +08:00
f7a27479b2
users/foo-dogsquared: modularize browser config
2023-07-04 18:43:43 +08:00
2baf917efb
users/foo-dogsquared: add email config
2023-07-04 18:43:01 +08:00
a20af418f9
users/foo-dogsquared: add music-related cleaners
2023-07-04 08:54:40 +08:00
2ed3c2b790
users/foo-dogsquared: modularize config
2023-07-04 08:55:49 +08:00
6bd59ccfd4
docs: update notes on Plover
2023-07-02 20:21:49 +08:00
c89c29ac10
hosts/plover: update hardware configuration
2023-07-02 20:21:29 +08:00
da24dd1214
hosts/ni: add fstrim service
2023-07-02 19:24:56 +08:00
ef6ff9230a
users/foo-dogsquared: update Mopidy and Bleachbit config
2023-07-02 11:39:57 +08:00
eed3ce402a
docs: update project notes for declarative user management
2023-07-02 12:25:33 +08:00
f27b7e045c
hosts/plover: modularize Borg backup paths
2023-07-02 12:23:50 +08:00
752053b755
ci: fix environment for dotfiles update automation
2023-07-02 09:41:42 +08:00
47b2714ff4
users/plover: init Bleachbit service for daily history cleanup
2023-07-01 18:13:09 +08:00
c0ebfe98fd
users/foo-dogsquared: remove unnecessary comments
2023-07-01 16:30:15 +08:00
dd1b2b0638
hosts/plover: fix Gitea dump cleanup
2023-07-01 16:29:29 +08:00
ef0d3d92cd
config: fix deploy function with correct system
...
Also added some more configuration options for home-manager deploy
options.
2023-07-01 12:30:36 +08:00
3cc199cf15
ci: update env and dependencies for automated dotfiles update
2023-07-01 12:28:59 +08:00
9cf8d90ff3
ci: update env and dependencies for build step
2023-07-01 12:28:37 +08:00
35ef89a312
hosts/plover: update Borg SSH key
2023-06-30 22:31:14 +08:00
f799b6dc1e
hosts/ni: remove doas
...
I'll just learn more about how to configure sudo properly then.
2023-06-30 14:30:59 +08:00
cb54c33afc
hosts/plover: add disko device config
2023-06-30 13:38:38 +08:00
9af237e242
hosts/ni: add disko device config
2023-06-30 13:38:22 +08:00
6c7939e7da
config: include disko as part of the flake
...
This could be used for bootstrapping with nixos-anywhere tool
apparently.
2023-06-30 12:55:40 +08:00
33b8dfe9c6
hosts/plover: enable DNS-over-TLS for Bind
2023-06-30 10:48:10 +08:00
4af6d64ef2
profiles/dev: enable envfs service
2023-06-30 10:47:17 +08:00
ffad85fa70
hosts/plover: enable nginx-bad-request jail
2023-06-30 10:47:02 +08:00
831022bf22
hosts/plover: enable DH params generation
...
This is for certain applications as we'll see.
2023-06-30 10:46:43 +08:00
53f7cf6e83
chore: reformat codebase
2023-06-29 14:17:38 +08:00
52b66fa47d
docs: add section for declarative user management
2023-06-29 13:56:15 +08:00
a107bf383e
docs: update declarative user management section
2023-06-29 13:56:04 +08:00
f2d3e7fe30
ci: fix ISO attribute name to build
...
Forgot to update this.
2023-06-29 13:54:39 +08:00
160266b2db
shells/gnome: make package attributes up-to-date
2023-06-29 13:54:10 +08:00
e95927c83b
config: filter NixOS configuration
...
With images that are only exported as ISO (or even without one) are
included as part of NixOS configurations.
The idea with this attribute seems to be closer for deploying and
installing them with `nixos-install` which most of them aren't. This
might be reverted at some point. It's not clear to me yet.
2023-06-29 13:51:21 +08:00
a91a9fe110
config: improve home-manager user creation
...
Now with configurable home-manager channel! Also, I've improved some
usage of the metadata to be used from `users.toml`.
2023-06-29 13:50:26 +08:00
fc6da2a710
ci: update GitHub actions
...
I keep neglecting them. T_T
2023-06-29 12:39:59 +08:00
5754583ce0
programs/wezterm: remove conditionals for shell init
...
`programs.bash.enable` is apparently removed.
2023-06-29 12:30:03 +08:00
d60e406557
flake.lock: update inputs
...
Flake lock file updates:
• Updated input 'devshell':
'github:numtide/devshell/fd6223370774dd9c33354e87a007004b5fd36442' (2023-06-13)
→ 'github:numtide/devshell/3864857b2754ab0e16c7c7c626f0e5a1d4e42f38' (2023-06-28)
• Updated input 'emacs-overlay':
'github:nix-community/emacs-overlay/37ab2cb6a09245809e862dde7ed9adcd5b83d62d' (2023-06-19)
→ 'github:nix-community/emacs-overlay/2c48f3c8cc381ce8ec207b3ee2c435a8aa594a65' (2023-06-28)
• Updated input 'emacs-overlay/flake-utils':
'github:numtide/flake-utils/a1720a10a6cfe8234c0e93907ffe81be440f4cef' (2023-05-31)
→ 'github:numtide/flake-utils/dbabf0ca0c0c4bce6ea5eaf65af5cb694d2082c7' (2023-06-25)
• Updated input 'emacs-overlay/nixpkgs-stable':
'github:NixOS/nixpkgs/c7ff1b9b95620ce8728c0d7bd501c458e6da9e04' (2023-06-16)
→ 'github:NixOS/nixpkgs/9790f3242da2152d5aa1976e3e4b8b414f4dd206' (2023-06-27)
• Updated input 'flake-utils':
'github:numtide/flake-utils/a1720a10a6cfe8234c0e93907ffe81be440f4cef' (2023-05-31)
→ 'github:numtide/flake-utils/dbabf0ca0c0c4bce6ea5eaf65af5cb694d2082c7' (2023-06-25)
• Updated input 'helix-editor':
'github:helix-editor/helix/06d63d6ac1644ce57d6a90b53ea4f832e67ab2a9' (2023-06-19)
→ 'github:helix-editor/helix/d3f8e0592bd577489369e5bd00cddf159f107a24' (2023-06-28)
• Updated input 'home-manager':
'github:nix-community/home-manager/0480dabc99e1b669ebe909949180fa2786e733cd' (2023-06-18)
→ 'github:nix-community/home-manager/a7002d6bfca54742d5fc9b485a1879953b4585b9' (2023-06-28)
• Updated input 'home-manager/nixpkgs':
'github:nixos/nixpkgs/75a5ebf473cd60148ba9aec0d219f72e5cf52519' (2023-06-11)
→ 'github:nixos/nixpkgs/04af42f3b31dba0ef742d254456dc4c14eedac86' (2023-06-17)
• Updated input 'neovim-nightly-overlay':
'github:nix-community/neovim-nightly-overlay/0e9b38f09c214547d4a20e053cdb9c8a07e5ed61' (2023-06-19)
→ 'github:nix-community/neovim-nightly-overlay/2c8b7cf4693e9a8a94c213f2bdf5be8d6c36900b' (2023-06-29)
• Updated input 'neovim-nightly-overlay/flake-parts':
'github:hercules-ci/flake-parts/71fb97f0d875fd4de4994dfb849f2c75e17eb6c3' (2023-06-01)
→ 'github:hercules-ci/flake-parts/37dd7bb15791c86d55c5121740a1887ab55ee836' (2023-06-26)
• Updated input 'neovim-nightly-overlay/neovim-flake':
'github:neovim/neovim/8c9dab3e0d788d44c8a2fee83a6193f5955c814e?dir=contrib' (2023-06-18)
→ 'github:neovim/neovim/421c66f741bf4ed4de6bf15df19160df0f90db4b?dir=contrib' (2023-06-28)
• Updated input 'nixos-generators':
'github:nix-community/nixos-generators/a54683aa7eff00ee5b33dec225525d0eb6ab02de' (2023-06-16)
→ 'github:nix-community/nixos-generators/bde0bc291c95b710dd63d5e5c422e47f760a1406' (2023-06-29)
• Updated input 'nixos-generators/nixlib':
'github:nix-community/nixpkgs.lib/961e99baaaa57f5f7042fe7ce089a88786c839f4' (2023-06-04)
→ 'github:nix-community/nixpkgs.lib/b3ec8fb525fc0c8f08eff5ef93c684b4c6d0e777' (2023-06-25)
• Updated input 'nixos-stable':
'github:NixOS/nixpkgs/b6c73c5fe53bb3afbf65e870541e0645e9145171' (2023-06-20)
→ 'github:NixOS/nixpkgs/9790f3242da2152d5aa1976e3e4b8b414f4dd206' (2023-06-27)
• Updated input 'nixos-unstable':
'github:NixOS/nixpkgs/04af42f3b31dba0ef742d254456dc4c14eedac86' (2023-06-17)
→ 'github:NixOS/nixpkgs/e18dc963075ed115afb3e312b64643bf8fd4b474' (2023-06-27)
• Updated input 'nixos-unstable-small':
'github:NixOS/nixpkgs/8b0f22dc5155e8a6d329520c27751dfb0f821d63' (2023-06-21)
→ 'github:NixOS/nixpkgs/4b14ab2a916508442e685089672681dff46805be' (2023-06-27)
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/04af42f3b31dba0ef742d254456dc4c14eedac86' (2023-06-17)
→ 'github:NixOS/nixpkgs/e18dc963075ed115afb3e312b64643bf8fd4b474' (2023-06-27)
• Updated input 'nur':
'github:nix-community/NUR/3700be70d38f57b41e5426879db59241806a6708' (2023-06-19)
→ 'github:nix-community/NUR/c674da8b2a994d7d9f366e71a4790de4c0caf2ac' (2023-06-29)
• Updated input 'rust-overlay':
'github:oxalica/rust-overlay/86302751ef371597d48951983e1a2f04fe78d4ff' (2023-06-19)
→ 'github:oxalica/rust-overlay/fc57a011f1c20d2b24f75a79ab669430a221b220' (2023-06-28)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/1634d2da53f079e7f5924efa7a96511cd9596f81' (2023-06-18)
→ 'github:Mic92/sops-nix/2ff6973350682f8d16371f8c071a304b8067f192' (2023-06-22)
2023-06-29 09:52:55 +08:00
3ad1c9022b
config: update naming for NixOS host images
2023-06-29 09:49:18 +08:00
