Simon Bruder
a02d3cb883
Use separate state version for every machine
...
This also uses the system state version as the home-manager state
version.
Fixes #35 .
2021-01-31 12:21:05 +01:00
Simon Bruder
f211bae4e2
Globally set Let’s Encrypt requirements
2021-01-31 12:21:05 +01:00
Simon Bruder
05a72217aa
Use nixos-hardware for hardware configuration
...
This removes the manual modules that use options to activate hardware
configuration. It seems to general (e.g. newer Intel GPUs require
different opencl icd) or not flexible enough (in case of the ssd
module).
Closes #21 .
2021-01-29 15:50:16 +01:00
Simon Bruder
603a006df8
Make routing all traffic over wireguard tunnel work
...
Fixes #26 (regression introduced in
126a0dad4b
)
This is not an ideal solution, since it disables some features of the
firewall. Ideally, the mullvad configuration would be declaratively
managed and include a PostUp and PreDown command that adds routes to the
tunnel endpoint to the physical interface.
2021-01-24 14:44:00 +01:00
Simon Bruder
bcbd5e772a
gui: Use better way to enable 32bit opengl support
2021-01-24 12:51:56 +01:00
Simon Bruder
428e8103d9
tools/adb: Use proper way to determine if x86_64
2021-01-20 16:40:36 +01:00
Simon Bruder
d8b8e5de93
libvirt: Remove custom option
2021-01-20 16:31:59 +01:00
Simon Bruder
e5f90116e8
network-manager: Reformat module
2021-01-20 16:28:52 +01:00
Simon Bruder
64ef37badd
Move global lidSwitchDocked setting to nunotaba
2021-01-20 16:27:51 +01:00
Simon Bruder
c1283b6ffa
Add option to disable large packages
...
Fixes #27
This adds the `sbruder.full` option (enabled by default), which disables
some otherwise enabled packages/modules when disabled. When setting it
to false on a full gui system it reduces the size of the system closure
by over 50%. It is intended for systems with low (main) disk space.
2021-01-20 16:23:18 +01:00
Simon Bruder
9cdf89fe15
firewall: Trust wg-home
...
Fixes regression introduced in 126a0dad4b
.
2021-01-18 00:05:18 +01:00
Simon Bruder
21a8f5a358
Make docker optional
2021-01-17 19:32:01 +01:00
Simon Bruder
126a0dad4b
Enable firewall by default
...
Fixes #25
2021-01-17 11:03:54 +01:00
Simon Bruder
39742c8fbd
restic: Remove hostname from service name
2021-01-08 21:33:45 +01:00
Simon Bruder
7152112076
home/games: Add module and option
2021-01-07 18:29:18 +01:00
Simon Bruder
37c54887b9
Add custom overlay
...
Fixes #20
2021-01-07 17:10:32 +01:00
Simon Bruder
a44f1fd1ac
Add optional ssh server to initrd
2021-01-07 13:39:25 +01:00
Simon Bruder
9a65a81c3c
tools: Only enable adb on x86_64-linux
...
Since it at least fails to build on aarch64.
2021-01-06 23:40:52 +01:00
Simon Bruder
7b2da0349c
Overhaul secrets management
2021-01-06 13:09:29 +01:00
Simon Bruder
3d73519a76
Make building without unfree software/assets work
...
This either removes the packages or replaces them with free packages.
2021-01-03 17:11:22 +01:00
Simon Bruder
131d0cc1a5
Add options for unfree software and assets
2021-01-03 17:11:22 +01:00
Simon Bruder
337ef729e1
sway: wallpaper: Specify license
2021-01-03 15:46:08 +01:00
Simon Bruder
9c51d36c4d
Use fetchpatch to fetch patches
2021-01-02 10:58:08 +01:00
Simon Bruder
fa8323bddc
Enable rar support of p7zip
2021-01-01 13:00:38 +01:00
Simon Bruder
a16b0e260c
gui: Add 32bit OpenGL
2021-01-01 12:33:13 +01:00
Simon Bruder
58d667f6b8
sway: Rename to gui
2021-01-01 12:32:55 +01:00
Simon Bruder
cb913a9b00
Add media-proxy
...
This also adds secrets management for nginx. It is far from perfect
(e.g. nginx does not get reloaded when a secret changes).
2020-12-31 15:44:24 +01:00
Simon Bruder
a34d5a110a
Disable command-not-found
2020-12-25 16:41:48 +01:00
Simon Bruder
e487cf4720
Only enable node exporter when wg-home is enabled
2020-12-22 12:09:14 +01:00
Simon Bruder
b435e1a182
restic: Parameterise extra paths and excludes
2020-12-21 13:09:25 +01:00
Simon Bruder
5937065d0e
restic: Clean up excludes
2020-12-21 13:08:22 +01:00
Simon Bruder
931c7ee91b
restic: Add restic-auth authentication wrapper
2020-12-21 12:54:33 +01:00
Simon Bruder
3d146db55c
restic: Make repository variable (in module)
2020-12-21 12:50:30 +01:00
Simon Bruder
f0e2843d19
Reformat restic module
2020-12-21 12:33:46 +01:00
Simon Bruder
5f56b5a3a7
Set monetary locale to use Euro
2020-12-20 17:10:22 +01:00
Simon Bruder
208922d9f9
Fix nix run
...
It requires an explicit `nixpkgs=` entry in `NIX_PATH` to work.
2020-12-13 17:57:09 +01:00
Simon Bruder
94d625784a
Pin unstable nixpkgs version
2020-12-13 17:57:09 +01:00
Simon Bruder
903041b6e1
Use pass for secrets management
...
Fixes #4
2020-12-13 17:57:08 +01:00
Simon Bruder
049e02089f
Set NIX_PATH to krops sources
2020-12-12 16:15:43 +01:00
Simon Bruder
91cd41286b
Add video4linux2loopback
2020-12-08 18:55:33 +01:00
Simon Bruder
0bbfafcafb
Make nix keep output of derivations with gc root
2020-12-06 13:58:46 +01:00
Simon Bruder
e53f2882f4
Disable system-wide sway extra packages
2020-12-06 13:58:45 +01:00
Simon Bruder
29cfc3750d
Move most tools to user environment
...
Fixes #1 .
2020-12-05 19:44:41 +01:00
Simon Bruder
bdc1c12f9c
Refactor pubkey configuration
2020-12-05 16:42:49 +01:00
Simon Bruder
acc9940043
Remove dev profile
...
Profiles are deprecated in favour of options.
For rust development, use nix-shell instead.
2020-12-05 16:09:10 +01:00
Simon Bruder
73021c1a94
Parameterise cpu config
2020-12-05 16:00:34 +01:00
Simon Bruder
76bd3a4bc8
Parameterise gpu config
2020-12-05 15:57:23 +01:00
Simon Bruder
9b22c91170
config.sbruder.gui → config.sbruder.gui.enable
2020-12-05 15:44:58 +01:00
Simon Bruder
a23c3801cb
Parameterise libvirt
2020-12-05 15:40:54 +01:00
Simon Bruder
ab39c6035c
Parameterise ssd module
2020-12-05 15:40:49 +01:00