aciceri/nixfleet
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

Compare commits

base: aciceri:5f9c60bd638fc1bb19dab76f743017895b3d6049
Branches Tags
aciceri:master
aciceri:update-flake-lock
aciceri:aaa
aciceri:wip
aciceri:test
..
compare: aciceri:64b138efb2ddcbec06d5bbca395469eb81bcba46
Branches Tags
aciceri:master
aciceri:update-flake-lock
aciceri:aaa
aciceri:wip
aciceri:test

5 commits
5f9c60bd63 ... 64b138efb2

Author SHA1 Message Date
Seven of Nine
64b138efb2 flake.lock: Update
Some checks failed
/ test (push) Failing after 46m55s
Details 
Flake lock file updates:

• Updated input 'disko':
    'github:nix-community/disko/e55f9a8678adc02024a4877c2a403e3f6daf24fe' (2024-09-03)
  → 'github:nix-community/disko/624fd86460e482017ed9c3c3c55a3758c06a4e7f' (2024-09-19)
• Updated input 'dream2nix':
    'github:nix-community/dream2nix/3fd4c14d3683baac8d1f94286ae14fe160888b51' (2024-08-01)
  → 'github:nix-community/dream2nix/b76c529f377100516c40c5b6e239a4525fdcabe0' (2024-09-16)
• Updated input 'flakeParts':
    'github:hercules-ci/flake-parts/567b938d64d4b4112ee253b9274472dc3a346eb6' (2024-09-01)
  → 'github:hercules-ci/flake-parts/bcef6817a8b2aa20a5a6dbb19b43e63c5bf8619a' (2024-09-12)
• Updated input 'homeManager':
    'github:nix-community/home-manager/be47a2bdf278c57c2d05e747a13ed31cef54a037' (2024-09-09)
  → 'github:nix-community/home-manager/4803bf558bdf20cb067aceb8830b7ad70113f4e3' (2024-09-20)
• Updated input 'lix':
    'git+https://git@git.lix.systems/lix-project/lix?ref=refs/heads/main&rev=c14486ae8d3bbc862c625d948a6b2f4dc0927d5b' (2024-09-09)
  → 'git+https://git@git.lix.systems/lix-project/lix?ref=refs/heads/main&rev=79246a37337c5df2224dbc2461c722e1e678f6de' (2024-09-18)
• Updated input 'lix-module':
    'git+https://git.lix.systems/lix-project/nixos-module?ref=refs/heads/main&rev=353b25f0b6da5ede15206d416345a2ec4195b5c8' (2024-09-08)
  → 'git+https://git.lix.systems/lix-project/nixos-module?ref=refs/heads/main&rev=b0e6f359500d66670cc16f521e4f62d6a0a4864e' (2024-09-18)
• Updated input 'lix-module/flake-utils':
    'github:numtide/flake-utils/b1d9ab70662946ef0850d488da1c9019f3a9752a' (2024-03-11)
  → 'github:numtide/flake-utils/c1dfcf08411b08f6b8615f7d8971a2bfa81d5e8a' (2024-09-17)
• Updated input 'nixDarwin':
    'github:LnL7/nix-darwin/76559183801030451e200c90a1627c1d82bb4910' (2024-09-06)
  → 'github:LnL7/nix-darwin/c03f85fa42d68d1056ca1740f3113b04f3addff2' (2024-09-19)
• Updated input 'nixosHardware':
    'github:NixOS/nixos-hardware/166dee4f88a7e3ba1b7a243edb1aca822f00680e' (2024-09-09)
  → 'github:NixOS/nixos-hardware/10d5e0ecc32984c1bf1a9a46586be3451c42fd94' (2024-09-19)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/268bb5090a3c6ac5e1615b38542a868b52ef8088' (2024-09-19)
  → 'github:NixOS/nixpkgs/b3e9ef326d3d60dd97c262c6d16cc255175d4902' (2024-09-20)
• Updated input 'treefmt-nix':
    'github:numtide/treefmt-nix/9fb342d14b69aefdf46187f6bb80a4a0d97007cd' (2024-09-02)
  → 'github:numtide/treefmt-nix/ee41a466c2255a3abe6bc50fc6be927cdee57a9f' (2024-09-19)
 2024-09-20 13:01:46 +00:00
Andrea Ciceri
a394b9cefd
Reformat everything
All checks were successful
/ test (push) Successful in 32s
Details
2024-09-20 11:37:17 +02:00
Andrea Ciceri
5f644d0ccd
Format
Some checks failed
/ test (push) Failing after 37s
Details
2024-09-20 11:27:36 +02:00
Andrea Ciceri
4980df6f75
Use newer nixfmt
Some checks failed
/ test (push) Failing after 36s
Details
2024-09-20 11:24:06 +02:00
Andrea Ciceri
6c0376da29
Things
All checks were successful
/ test (push) Successful in 1m1s
Details
2024-09-20 11:18:38 +02:00
169 changed files with 3060 additions and 2313 deletions
Show stats Expand all files Collapse all files

25
checks/default.nix
View file

@ -3,28 +3,35 @@
self,
lib,
...
}: {
}:
{
imports = [
inputs.treefmt-nix.flakeModule
inputs.pre-commit-hooks.flakeModule
inputs.git-hooks-nix.flakeModule
];
perSystem = _: {
perSystem =
{ ... }:
{
treefmt.config = {
projectRootFile = ".git/config";
programs.alejandra.enable = true;
programs = {
nixfmt-rfc-style.enable = true;
deadnix.enable = true;
};
};
pre-commit.settings.hooks = {
alejandra.enable = true;
# deadnix.enable = true;
# statix.enable = true;
nixfmt-rfc-style.enable = true;
deadnix.enable = true;
};
};
flake.checks = let
flake.checks =
let
build = _: nc: nc.config.system.build.toplevel;
in {
in
{
x86_64-linux = lib.mapAttrs build {
inherit (self.nixosConfigurations) picard;
};

68
flake.lock generated
View file

@ -50,11 +50,11 @@
]
},
"locked": {
"lastModified": 1726730453,
"narHash": "sha256-Kdi7liMdbr1/uyMhMDl19O5b9LESxcnYgBRZblrJi9E=",
"lastModified": 1726775926,
"narHash": "sha256-5zShvCy9S4tuISFjNSjb+TWpPtORqPbRZ0XwbLbPLho=",
"owner": "nix-community",
"repo": "disko",
"rev": "a31fe5ef162f2f963308289e6e27d37e3948a983",
"rev": "624fd86460e482017ed9c3c3c55a3758c06a4e7f",
"type": "github"
},
"original": {
@ -241,10 +241,33 @@
"type": "github"
}
},
"git-hooks-nix": {
"inputs": {
"flake-compat": "flake-compat",
"gitignore": "gitignore",
"nixpkgs": [
"nixpkgs"
],
"nixpkgs-stable": "nixpkgs-stable"
},
"locked": {
"lastModified": 1726745158,
"narHash": "sha256-D5AegvGoEjt4rkKedmxlSEmC+nNLMBPWFxvmYnVLhjk=",
"owner": "cachix",
"repo": "git-hooks.nix",
"rev": "4e743a6920eab45e8ba0fbe49dc459f1423a4b74",
"type": "github"
},
"original": {
"owner": "cachix",
"repo": "git-hooks.nix",
"type": "github"
}
},
"gitignore": {
"inputs": {
"nixpkgs": [
"pre-commit-hooks",
"git-hooks-nix",
"nixpkgs"
]
},
@ -330,11 +353,11 @@
]
},
"locked": {
"lastModified": 1726745512,
"narHash": "sha256-9xY9UEKC7gsA4sj5cZvZXk5jT/p2wGtkpp8hqE9yIRA=",
"lastModified": 1726823634,
"narHash": "sha256-rU8Yy62KSLU8Q2J64F+50OJKORNdogxbXl2w4rFw13o=",
"owner": "nix-community",
"repo": "home-manager",
"rev": "7578176649a08abb73dfbd2755a5988766952b53",
"rev": "4803bf558bdf20cb067aceb8830b7ad70113f4e3",
"type": "github"
},
"original": {
@ -738,11 +761,11 @@
},
"nixpkgs_5": {
"locked": {
"lastModified": 1726757509,
"narHash": "sha256-3/2rV78QyC/OPu+WzimbElmSdD3HsQq/P/TLcFQHjZQ=",
"lastModified": 1726836432,
"narHash": "sha256-fk9P0RY2m7r3vAqqSRaR/MZoQJo6yg6vuv4h7D1I2/8=",
"owner": "NixOS",
"repo": "nixpkgs",
"rev": "78fdf431cdf6bc4ba4af9c100aaeda65da7e4ed3",
"rev": "b3e9ef326d3d60dd97c262c6d16cc255175d4902",
"type": "github"
},
"original": {
@ -851,29 +874,6 @@
"type": "gitlab"
}
},
"pre-commit-hooks": {
"inputs": {
"flake-compat": "flake-compat",
"gitignore": "gitignore",
"nixpkgs": [
"nixpkgs"
],
"nixpkgs-stable": "nixpkgs-stable"
},
"locked": {
"lastModified": 1726745158,
"narHash": "sha256-D5AegvGoEjt4rkKedmxlSEmC+nNLMBPWFxvmYnVLhjk=",
"owner": "cachix",
"repo": "pre-commit-hooks.nix",
"rev": "4e743a6920eab45e8ba0fbe49dc459f1423a4b74",
"type": "github"
},
"original": {
"owner": "cachix",
"repo": "pre-commit-hooks.nix",
"type": "github"
}
},
"purescript-overlay": {
"inputs": {
"nixpkgs": [
@ -944,6 +944,7 @@
"disko": "disko",
"dream2nix": "dream2nix",
"flakeParts": "flakeParts",
"git-hooks-nix": "git-hooks-nix",
"homeManager": "homeManager",
"homeManagerGitWorkspace": "homeManagerGitWorkspace",
"impermanence": "impermanence",
@ -955,7 +956,6 @@
"nixThePlanet": "nixThePlanet",
"nixosHardware": "nixosHardware",
"nixpkgs": "nixpkgs_5",
"pre-commit-hooks": "pre-commit-hooks",
"rock5b": "rock5b",
"treefmt-nix": "treefmt-nix_2",
"vscode-server": "vscode-server"

12
flake.nix
View file

@ -20,8 +20,8 @@
url = "github:nix-community/disko";
inputs.nixpkgs.follows = "nixpkgs";
};
pre-commit-hooks = {
url = "github:cachix/pre-commit-hooks.nix";
git-hooks-nix = {
url = "github:cachix/git-hooks.nix";
inputs.nixpkgs.follows = "nixpkgs";
};
agenix.url = "github:ryantm/agenix";
@ -57,7 +57,8 @@
vscode-server.url = "github:nix-community/nixos-vscode-server";
};
outputs = inputs @ {flakeParts, ...}:
outputs =
inputs@{ flakeParts, ... }:
flakeParts.lib.mkFlake { inherit inputs; } {
imports = [
# TODO export modules as flake outputs
@ -68,6 +69,9 @@
./shell
./checks
];
systems = ["x86_64-linux" "aarch64-linux"];
systems = [
"x86_64-linux"
"aarch64-linux"
];
};
}

3
hmModules/binance/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.binance ];
}

9
hmModules/btop/default.nix
View file

@ -1,18 +1,21 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
programs.btop = {
enable = true;
settings = {
update_ms = 100;
theme_background = false;
# color_theme = "${config.programs.btop.package}/share/btop/themes/dracula.theme";
color_theme = let
color_theme =
let
catppuccin-theme = pkgs.fetchFromGitHub {
owner = "catppuccin";
repo = "btop";
rev = "21b8d5956a8b07fa52519e3267fb3a2d2e693d17";
hash = "sha256-UXeTypc15MhjgGUiCrDUZ40m32yH2o1N+rcrEgY6sME=";
};
in "${catppuccin-theme}/themes/catppuccin_mocha.theme";
in
"${catppuccin-theme}/themes/catppuccin_mocha.theme";
};
};
}

3
hmModules/calibre/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.calibre ];
}

3
hmModules/chrome/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
programs.chromium = {
enable = true;
package = pkgs.google-chrome;

9
hmModules/cura/default.nix
View file

@ -1,6 +1,8 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [
(let
(
let
cura5 = pkgs.appimageTools.wrapType2 rec {
name = "cura5";
version = "5.8.0";
@ -23,6 +25,7 @@
args+=("$a")
done
QT_QPA_PLATFORM=xcb exec "${cura5}/bin/cura5" "''${args[@]}"
'')
''
)
];
}

3
hmModules/digikam/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.digikam ];
}

3
hmModules/discord/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.discord ];
home.file.".config/discord/settings.json".text = builtins.toJSON {
SKIP_HOST_UPDATE = true;

3
hmModules/dolphin/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.dolphin-emu ];
}

3
hmModules/element/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
# home.packages = [pkgs.schildichat-desktop];
home.packages = [ pkgs.element-desktop-wayland ];

4
hmModules/emacs/default.nix
View file

@ -1,9 +1,9 @@
{
lib,
age,
pkgs,
...
}: {
}:
{
ccrEmacs.enable = true;
home.sessionVariables.EDITOR = lib.mkForce "emacsclient";
systemd.user.services.emacs.Service.EnvironmentFile = age.secrets.chatgpt-token.path;

21
hmModules/email/default.nix
View file

@ -2,19 +2,22 @@
pkgs,
secrets,
...
}: {
}:
{
programs.mbsync.enable = true;
programs.msmtp.enable = true;
services.mbsync.enable = true;
home.file.".config/aerc/stylesets" = let
home.file.".config/aerc/stylesets" =
let
catppuccin-aerc = pkgs.fetchFromGitHub {
owner = "catppuccin";
repo = "aerc";
rev = "ca404a9f2d125ef12db40db663d43c9d94116a05";
hash = "sha256-OWIkHsKFts/zkrDUtbBPXHVSrHL/F0v3LB1rnlFAKmE=";
};
in {
in
{
source = "${catppuccin-aerc}/dist";
recursive = true;
};
@ -81,7 +84,9 @@
"<Esc>" = ":clear<Enter>";
};
"messages:folder=Drafts" = {"<Enter>" = ":recall<Enter>";};
"messages:folder=Drafts" = {
"<Enter>" = ":recall<Enter>";
};
view = {
"/" = ":toggle-key-passthrough<Enter>/";
@ -164,8 +169,12 @@
border-char-vertical = "";
border-char-horizontal = "";
};
viewer = {always-show-mime = true;};
compose = {no-attachment-warning = "^[^>]*attach(ed|ment)";};
viewer = {
always-show-mime = true;
};
compose = {
no-attachment-warning = "^[^>]*attach(ed|ment)";
};
triggers = {
email-received = ''exec notify-send "New email from %n" "%s"'';
};

3
hmModules/firefox/default.nix
View file

@ -2,7 +2,8 @@
pkgs,
username,
...
}: {
}:
{
programs.firefox = {
enable = true;
package = pkgs.wrapFirefox pkgs.firefox-unwrapped {

13
hmModules/foot/default.nix
View file

@ -6,14 +6,16 @@
}:
lib.mkMerge [
{
programs.foot = let
programs.foot =
let
catppuccin = pkgs.fetchFromGitHub {
owner = "catppuccin";
repo = "foot";
rev = "307611230661b7b1787feb7f9d122e851bae97e9";
hash = "sha256-mkPYHDJtfdfDnqLr1YOjaBpn4lCceok36LrnkUkNIE4=";
};
in {
in
{
enable = true;
server.enable = true;
settings = {
@ -23,7 +25,8 @@ lib.mkMerge [
dpi-aware = "no";
horizontal-letter-offset = "1";
include = "${catppuccin}/themes/catppuccin-mocha.ini";
font = let
font =
let
size = "13";
in
lib.concatStringsSep ", " [
@ -43,7 +46,7 @@ lib.mkMerge [
scrollback-up-page = "Control+Shift+k";
scrollback-down-page = "Control+Shift+j";
search-start = "Control+Shift+s";
pipe-command-output = ''[sh -c "f=$(mktemp); cat - > $f; footclient hx $f; rm $f"] Control+Shift+g'';
pipe-command-output = ''[sh -c 'f=$(mktemp); cat - > $f; footclient hx $f; rm $f'] Control+Shift+g'';
};
mouse = {
@ -63,7 +66,7 @@ lib.mkMerge [
onEvent = "fish_preexec";
};
foot_cmd_end = {
body = ''echo -en "\e]133;D\e\\'';
body = ''echo -en "\e]133;D\e\\"'';
onEvent = "fish_postexec";
};
};

3
hmModules/git-workspace/default.nix
View file

@ -2,7 +2,8 @@
age,
username,
...
}: {
}:
{
services.git-workspace = {
enable = true;
frequency = "04:00:00";

11
hmModules/git/default.nix
View file

@ -2,13 +2,18 @@
pkgs,
username,
...
}: let
}:
let
config = {
name = "Andrea Ciceri";
email = "andrea.ciceri@autistici.org";
};
in {
imports = [../gitui ../lazygit];
in
{
imports = [
../gitui
../lazygit
];
programs.git = {
enable = true;
package = pkgs.gitAndTools.gitFull;

4
hmModules/gnome-keyring/default.nix
View file

@ -1,9 +1,9 @@
{
pkgs,
lib,
config,
...
}: {
}:
{
services.gnome-keyring = {
enable = false; # Is this broken? https://github.com/nix-community/home-manager/issues/1454
components = lib.mkForce [

14
hmModules/gpg/default.nix
View file

@ -1,17 +1,23 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
services.gpg-agent = {
enable = true;
enableSshSupport = true;
sshKeys = [ "CE2FD0D9BECBD8876811714925066CC257413416" ];
extraConfig = let
extraConfig =
let
pinentryRofi = pkgs.writeShellApplication {
name = "pinentry-rofi-with-env";
runtimeInputs = with pkgs; [coreutils rofi];
runtimeInputs = with pkgs; [
coreutils
rofi
];
text = ''
"${pkgs.pinentry-rofi}/bin/pinentry-rofi" "$@"
'';
};
in ''
in
''
allow-emacs-pinentry
allow-loopback-pinentry
pinentry-program ${pinentryRofi}/bin/pinentry-rofi-with-env

7
hmModules/headless-hyprland/default.nix
View file

@ -1,11 +1,12 @@
{
config,
lib,
...
}: let
}:
let
originalConfig = config.wayland.windowManager.hyprland.extraConfig;
config = builtins.replaceStrings [ "SUPER" ] [ "" ] originalConfig;
in {
in
{
systemd.user.services.headless-hyprland = {
Unit.Description = "Headless Hyprland";
Service = {

155
hmModules/hyprland/default.nix
View file

@ -1,17 +1,17 @@
{
config,
pkgs,
lib,
...
}: let
screenshotScript = pkgs.writeShellScript "screenshot.sh" ''
}:
let
screenshotScript = pkgs.writeShellScriptBin "screenshot.sh" ''
filename="$HOME/shots/$(date --iso-8601=seconds).png"
coords="$(${pkgs.slurp}/bin/slurp)"
${pkgs.grim}/bin/grim -t png -g "$coords" "$filename"
wl-copy -t image/png < $filename
'';
hyprland = config.wayland.windowManager.hyprland.package;
switchMonitorScript = pkgs.writeShellScript "switch-monitor.sh" ''
switchMonitorScript = pkgs.writeShellScriptBin "switch-monitor.sh" ''
if [[ "$(${hyprland}/bin/hyprctl monitors) | grep '\sDP-[0-9]+'" ]]; then
if [[ $1 == "open" ]]; then
${hyprland}/bin/hyprctl keyword monitor "eDP-1,1920x1080,3760x230,1"
@ -20,7 +20,8 @@
fi
fi
'';
in {
in
{
imports = [
./hyprpaper.nix
../waybar
@ -32,7 +33,15 @@ in {
../foot
];
home.packages = with pkgs; [wl-clipboard waypipe];
home.packages = with pkgs; [
wl-clipboard
waypipe
switchMonitorScript
screenshotScript
hyprpaper
fuzzel
brightnessctl
];
systemd.user.sessionVariables = {
NIXOS_OZONE_WL = "1";
@ -98,133 +107,11 @@ in {
wayland.windowManager.hyprland = {
enable = true;
extraConfig = ''
cursor {
hide_on_key_press = true
enable_hyprcursor = true
zoom_rigid = true
}
env = HYPRCURSOR_THEME,catppuccin-mocha-sapphire
env = HYPRCURSOR_SIZE,48
env = XCURSOR_THEME,catppuccin-mocha-sapphire
env = XCURSOR_SIZE,48
$mod = SUPER
input {
touchpad {
disable_while_typing = true # set to true while playing
}
}
monitor = HDMI-A-1, 2560x1440, 0x0, 1 # picard
monitor = eDP-1, 1920x1080, 0x0, 1 # kirk
bindl=,switch:off:Lid Switch,exec,${switchMonitorScript} open
bindl=,switch:on:Lid Switch,exec,${switchMonitorScript} close
exec-once = ${pkgs.hyprpaper}/bin/hyprpaper
windowrulev2 = tile, class:^(Spotify)$
windowrulev2 = workspace 9, class:^(Spotify)$
windowrulev2 = float, title:^(floating)$
bind = $mod, b, exec, firefox
bind = $mod, t, exec, footclient
bind = $mod, RETURN, exec, emacsclient -c --eval "(ccr/start-eshell)"
bind = $mod SHIFT, g, exec, emacsclient -c --eval "(ccr/start-chatgpt)"
bind = $mod, x, exec, emacsclient -c
bind = $mod SHIFT, n, exec, emacsclient --eval '(ccr/org-capture "n")' -c -F '((name . "floating"))'
bind = $mod SHIFT, w, exec, emacsclient --eval '(ccr/org-capture "j")' -c -F '((name . "floating"))'
bind = $mod, y, exec, ${pkgs.waypipe}/bin/waypipe --compress lz4=10 ssh picard.fleet emacsclient -c
bind = $mod, d, exec, ${pkgs.fuzzel}/bin/fuzzel --background-color=253559cc --border-radius=5 --border-width=0
bind = $mod, s, exec, ${screenshotScript}
bind = , XF86MonBrightnessUp, exec, ${pkgs.brightnessctl}/bin/brightnessctl s +5%
bind = , XF86MonBrightnessDown, exec, ${pkgs.brightnessctl}/bin/brightnessctl s 5%-
bind = $mod, code:60, exec, ${pkgs.brightnessctl}/bin/brightnessctl s +5%
bind = $mod, code:59, exec, ${pkgs.brightnessctl}/bin/brightnessctl s 5%-
bind = $mod SHIFT, t, togglegroup
bind = $mod, G, changegroupactive
bind = $mod SHIFT, q, killactive
bind = $mod SHIFT, f, fullscreen, 0
bind = $mod SHIFT, e, exit
bind = $mod, h, movefocus, l
bind = $mod, l, movefocus, r
bind = $mod, k, movefocus, u
bind = $mod, j, movefocus, d
bind = $mod SHIFT, h, movewindow, l
bind = $mod SHIFT, l, movewindow, r
bind = $mod SHIFT, k, movewindow, u
bind = $mod SHIFT, j ,movewindow, d
bind = $mod, p, movecurrentworkspacetomonitor, r
bind = $mod, o, movecurrentworkspacetomonitor, l
bindm=ALT,mouse:272,movewindow
bind = $mod, 1, workspace, 1
bind = $mod, 2, workspace, 2
bind = $mod, 3, workspace, 3
bind = $mod, 4, workspace, 4
bind = $mod, 5, workspace, 5
bind = $mod, 6, workspace, 6
bind = $mod, 7, workspace, 7
bind = $mod, 8, workspace, 8
bind = $mod, 9, workspace, 9
bind = $mod, 0, workspace, 10
bind = $mod SHIFT, 1, movetoworkspace, 1
bind = $mod SHIFT, 2, movetoworkspace, 2
bind = $mod SHIFT, 3, movetoworkspace, 3
bind = $mod SHIFT, 4, movetoworkspace, 4
bind = $mod SHIFT, 5, movetoworkspace, 5
bind = $mod SHIFT, 6, movetoworkspace, 6
bind = $mod SHIFT, 7, movetoworkspace, 7
bind = $mod SHIFT, 8, movetoworkspace, 8
bind = $mod SHIFT, 9, movetoworkspace, 9
bind = $mod SHIFT, 0, movetoworkspace, 10
general {
gaps_in = 0
gaps_out = 0
border_size = 1
col.active_border = rgba(AF8D61FF) rgba(CEB153FF) rgba(7B8387FF) 45deg
col.inactive_border = rgba(AF8D6166)
}
decoration {
# See https://wiki.hyprland.org/Configuring/Variables/ for more
rounding = 2
# blur = true
# blur_size = 8
# blur_passes = 1
# blur_new_optimizations = true
drop_shadow = true
shadow_range = 4
shadow_render_power = 3
col.shadow = rgba(a8cfee11)
}
animations {
enabled = true
# Some default animations, see https://wiki.hyprland.org/Configuring/Animations/ for more
bezier = myBezier, 0.05, 0.9, 0.1, 1.05
animation = windows, 1, 3, myBezier
animation = windowsOut, 1, 3, default, popin 80%
animation = border, 1, 5, default
animation = borderangle, 1, 4, default
animation = fade, 1, 3, default
animation = workspaces, 1, 3, default
}
'';
plugins = with pkgs.hyprlandPlugins; [
hy3
hyprspace
];
# TODO migrate to structured options
extraConfig = builtins.readFile ./hyprland.conf;
};
}

184
hmModules/hyprland/hyprland.conf Normal file
View file

@ -0,0 +1,184 @@
cursor {
hide_on_key_press = true
enable_hyprcursor = true
zoom_rigid = true
}
env = HYPRCURSOR_THEME,catppuccin-mocha-sapphire
env = HYPRCURSOR_SIZE,48
env = XCURSOR_THEME,catppuccin-mocha-sapphire
env = XCURSOR_SIZE,48
$mod = SUPER
input {
touchpad {
disable_while_typing = true # set to true while playing
}
}
monitor = HDMI-A-1, 2560x1440, 0x0, 1 # picard
monitor = eDP-1, 1920x1080, 0x0, 1 # kirk
bindl=,switch:off:Lid Switch,exec,switch-monitor.sh open
bindl=,switch:on:Lid Switch,exec,switch-monitor.sh close
exec-once = hyprpaper
windowrulev2 = tile, class:^(Spotify)$
windowrulev2 = workspace 9, class:^(Spotify)$
windowrulev2 = float, title:^(floating)$
bind = $mod, b, exec, firefox
bind = $mod, t, exec, footclient
bind = $mod, y, exec, waypipe --compress lz4=10 ssh picard.fleet emacsclient -c
bind = $mod, d, exec, fuzzel --background-color=253559cc --border-radius=5 --border-width=0
bind = $mod, s, exec, screenshot.sh
bind = , XF86MonBrightnessUp, exec, brightnessctl s +5%
bind = , XF86MonBrightnessDown, exec, brightnessctl s 5%-
bind = $mod, code:60, exec, brightnessctl s +5%
bind = $mod, code:59, exec, brightnessctl s 5%-
bind = $mod SHIFT, t, hy3:makegroup, tab, ephemeral
bind = $mod SHIFT, q, killactive
bind = $mod SHIFT, f, fullscreen, 0
bind = $mod SHIFT, e, exit
bind = $mod, h, hy3:movefocus, l
bind = $mod, l, hy3:movefocus, r
bind = $mod, k, hy3:movefocus, u
bind = $mod, j, hy3:movefocus, d
bind = $mod SHIFT, h, hy3:movewindow, l
bind = $mod SHIFT, l, hy3:movewindow, r
bind = $mod SHIFT, k, hy3:movewindow, u
bind = $mod SHIFT, j ,hy3:movewindow, d
bind = $mod, v, hy3:makegroup, v
bind = $mod SHIFT, v, hy3:makegroup, h
bind = $mod, p, movecurrentworkspacetomonitor, r
bind = $mod, o, movecurrentworkspacetomonitor, l
bindm=ALT,mouse:272,hy3:movewindow
bind = $mod, 1, workspace, 1
bind = $mod, 2, workspace, 2
bind = $mod, 3, workspace, 3
bind = $mod, 4, workspace, 4
bind = $mod, 5, workspace, 5
bind = $mod, 6, workspace, 6
bind = $mod, 7, workspace, 7
bind = $mod, 8, workspace, 8
bind = $mod, 9, workspace, 9
bind = $mod, 0, workspace, 10
bind = $mod SHIFT, 1, movetoworkspace, 1
bind = $mod SHIFT, 2, movetoworkspace, 2
bind = $mod SHIFT, 3, movetoworkspace, 3
bind = $mod SHIFT, 4, movetoworkspace, 4
bind = $mod SHIFT, 5, movetoworkspace, 5
bind = $mod SHIFT, 6, movetoworkspace, 6
bind = $mod SHIFT, 7, movetoworkspace, 7
bind = $mod SHIFT, 8, movetoworkspace, 8
bind = $mod SHIFT, 9, movetoworkspace, 9
bind = $mod SHIFT, 0, movetoworkspace, 10
general {
layout = hy3
gaps_in = 8
gaps_out = 5
}
decoration {
rounding = 8
drop_shadow = true
shadow_range = 4
shadow_render_power = 3
col.shadow = rgba(a8cfee11)
}
animations {
enabled = true
bezier = myBezier, 0.05, 0.9, 0.1, 1.05
animation = windows, 1, 3, myBezier
animation = windowsOut, 1, 3, default, popin 80%
animation = border, 1, 5, default
animation = borderangle, 1, 4, default
animation = fade, 1, 3, default
animation = workspaces, 1, 3, default
}
plugin {
hy3 {
# disable gaps when only one window is onscreen
# 0 - always show gaps
# 1 - hide gaps with a single window onscreen
# 2 - 1 but also show the window border
no_gaps_when_only = 0 # default: 0
# policy controlling what happens when a node is removed from a group,
# leaving only a group
# 0 = remove the nested group
# 1 = keep the nested group
# 2 = keep the nested group only if its parent is a tab group
node_collapse_policy = 2 # default: 2
# offset from group split direction when only one window is in a group
group_inset = 0 # default: 10
# if a tab group will automatically be created for the first window spawned in a workspace
tab_first_window = false
# tab group settings
tabs {
# height of the tab bar
height = 20
# padding between the tab bar and its focused node
padding = 10
# the tab bar should animate in/out from the top instead of below the window
from_top = false
# rounding of tab bar corners
rounding = 4
# render the window title on the bar
render_text = true
# center the window title
text_center = true
# font to render the window title with
text_font = Fira Code
# height of the window title
text_height = 14
# left padding of the window title
text_padding = 4
# active tab bar segment color
# col.active = <color> # default: 0xff32b4ff
# urgent tab bar segment color
# col.urgent = <color> # default: 0xffff4f4f
# inactive tab bar segment color
# col.inactive = <color> # default: 0x80808080
# active tab bar text color
# col.text.active = <color> # default: 0xff000000
# urgent tab bar text color
# col.text.urgent = <color> # default: 0xff000000
# inactive tab bar text color
# col.text.inactive = <color> # default: 0xff000000
}
}
}

4
hmModules/hyprland/hyprpaper.nix
View file

@ -1,7 +1,9 @@
let
wallpaper = ./wallpaper.png;
in {
in
{
xdg.configFile."hypr/hyprpaper.conf".text = ''
splash = false
preload = ${wallpaper}
wallpaper = eDP-1,${wallpaper}
wallpaper = DP-1,${wallpaper}

3
hmModules/kicad/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.kicad-small ];
}

3
hmModules/kitty/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ ... }:
{
programs.kitty = {
enable = true;
font = {

3
hmModules/lazygit/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
programs.lazygit = {
enable = true;
settings = {

3
hmModules/lutris/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.lutris ];
}

3
hmModules/monero/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.monero-gui ];
}

3
hmModules/moonlight/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.moonlight-qt ];
}

13
hmModules/mopidy/default.nix
View file

@ -1,5 +1,6 @@
# TODO: use upstream ytmusic when updated: https://github.com/OzymandiasTheGreat/mopidy-ytmusic/issues/68
{pkgs, ...}: let
{ pkgs, ... }:
let
ytmusicapi = pkgs.python310Packages.buildPythonPackage rec {
pname = "ytmusicapi";
version = "0.24.0";
@ -42,10 +43,16 @@
doCheck = false;
};
in {
in
{
services.mopidy = {
enable = true;
extensionPackages = [mopidy-ytmusic] ++ (with pkgs; [mopidy-mpd mopidy-mpris]);
extensionPackages =
[ mopidy-ytmusic ]
++ (with pkgs; [
mopidy-mpd
mopidy-mpris
]);
settings = {
mpd = {
enabled = true;

3
hmModules/nheko/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.nheko ];
# systemd.user.services.nheko = {

17
hmModules/nix-index/default.nix
View file

@ -1,14 +1,15 @@
{
config,
pkgs,
fleetFlake,
lib,
...
}: {
}:
{
programs.nix-index.enable = true;
systemd.user.services.nix-index-update = {
Unit = {Description = "Update nix-index";};
Unit = {
Description = "Update nix-index";
};
Service = {
CPUSchedulingPolicy = "idle";
@ -18,7 +19,9 @@
};
systemd.user.timers.nix-index-update = {
Unit = {Description = "Update nix-index";};
Unit = {
Description = "Update nix-index";
};
Timer = {
Unit = "nix-index-update.service";
@ -26,6 +29,8 @@
Persistent = true;
};
Install = {WantedBy = ["timers.target"];};
Install = {
WantedBy = [ "timers.target" ];
};
};
}

8
hmModules/obs-studio/default.nix
View file

@ -1,6 +1,10 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
programs.obs-studio = {
enable = true;
plugins = with pkgs.obs-studio-plugins; [wlrobs input-overlay];
plugins = with pkgs.obs-studio-plugins; [
wlrobs
input-overlay
];
};
}

3
hmModules/openscad/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.openscad ];
}

3
hmModules/password-store/default.nix
View file

@ -2,7 +2,8 @@
pkgs,
username,
...
}: {
}:
{
programs.password-store = {
enable = true;
settings = {

12
hmModules/qutebrowser/default.nix
View file

@ -2,7 +2,8 @@
pkgs,
config,
...
}: let
}:
let
inherit (config.programs.qutebrowser) settings;
websites = {
searx = "https://searx.be";
@ -16,7 +17,8 @@
less-dark-white = "#cccccc";
blue = "#0000ff";
};
in {
in
{
programs.qutebrowser = {
enable = true;
searchEngines = with websites; {
@ -108,15 +110,13 @@ in {
};
home.packages = with pkgs; [
fuzzel
(
makeDesktopItem {
(makeDesktopItem {
name = "qutebrowser";
exec = "qutebrowser %u";
comment = "Qutebrowser";
desktopName = "qutebrowser";
type = "Application";
mimeTypes = [ "x-scheme-handler/https" ];
}
)
})
];
}

6
hmModules/reinstall-magisk-on-lineage/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: let
{ pkgs, ... }:
let
reinstall-magisk-on-lineage = pkgs.stdenv.mkDerivation {
name = "reinstall-magisk-on-lineage";
version = "git";
@ -21,6 +22,7 @@
--replace-fail "paste_yours_here" "\"\$1\""
'';
};
in {
in
{
home.packages = [ reinstall-magisk-on-lineage ];
}

3
hmModules/remmina/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.remmina ];
}

32
hmModules/shell/default.nix
View file

@ -4,7 +4,8 @@
age,
hostname,
...
}: {
}:
{
programs.bat.enable = true;
programs.direnv = {
@ -31,7 +32,9 @@
systemd.user.services.atuind = {
Unit.Description = "Atuin daemon";
Install = {WantedBy = ["default.target"];};
Install = {
WantedBy = [ "default.target" ];
};
Service.ExecStart = "${lib.getExe pkgs.atuin} daemon";
};
@ -116,25 +119,29 @@
xdg.configFile = {
"dracula-theme" = {
target = "fish/themes/dracula.theme";
source = let
source =
let
theme = pkgs.fetchFromGitHub {
owner = "dracula";
repo = "fish";
rev = "269cd7d76d5104fdc2721db7b8848f6224bdf554";
hash = "sha256-Hyq4EfSmWmxwCYhp3O8agr7VWFAflcUe8BUKh50fNfY=";
};
in "${theme}/themes/Dracula\ Official.theme";
in
"${theme}/themes/Dracula\ Official.theme";
};
"catppuccin-theme" = {
target = "fish/themes/Catppuccin\ Mocha.theme";
source = let
source =
let
theme = pkgs.fetchFromGitHub {
owner = "catppuccin";
repo = "fish";
rev = "a3b9eb5eaf2171ba1359fe98f20d226c016568cf";
hash = "sha256-shQxlyoauXJACoZWtRUbRMxmm10R8vOigXwjxBhG8ng=";
};
in "${theme}/themes/Catppuccin\ Mocha.theme";
in
"${theme}/themes/Catppuccin\ Mocha.theme";
};
};
@ -227,7 +234,8 @@
# '';
# };
home.packages = with pkgs;
home.packages =
with pkgs;
[
thefuck
htop-vim
@ -240,12 +248,18 @@
carapace # used by nushell
neovim
]
++ (lib.optionals (builtins.elem hostname ["kirk" "picard"]) [
++ (lib.optionals
(builtins.elem hostname [
"kirk"
"picard"
])
[
nixd # TODO probably not the best place
terraform-lsp # TODO probably not best place
python3Packages.jedi-language-server # TODO probably not best place
nodePackages.typescript-language-server # TODO probably not best place
cntr # TODO probably not best place
nom # FIXME disable on aarch64-linux, breaks everything :(
]);
]
);
}

3
hmModules/slack/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.slack ];
}

6
hmModules/spotify/default.nix
View file

@ -2,9 +2,11 @@
lib,
pkgs,
...
}: let
}:
let
spotify-adblocked = pkgs.callPackage ../../packages/spotify-adblocked { };
in {
in
{
home.packages = [ spotify-adblocked ];
systemd.user.services.spotify-adblocked = {

3
hmModules/steam-run/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.steam-run ];
}

29
hmModules/sway/default.nix
View file

@ -3,7 +3,8 @@
lib,
config,
...
}: {
}:
{
imports = [
../waybar
../swayidle
@ -35,17 +36,21 @@
};
wayland = {
windowManager.sway = let
windowManager.sway =
let
modifier = "Mod4";
in {
in
{
enable = true;
wrapperFeatures.gtk = true;
config = {
inherit modifier;
menu = "${pkgs.fuzzel}/bin/fuzzel --background-color=253559cc --border-radius=5 --border-width=0";
output = let
output =
let
bg = "${./wallpaper.svg} fill";
in {
in
{
DP-2 = {
res = "1900x1200";
pos = "0 0";
@ -75,7 +80,10 @@
smartBorders = "on";
};
assigns = {
"1" = [{title = ".*Mozilla Firefox$";} {title = ".*qutebrowser$";}];
"1" = [
{ title = ".*Mozilla Firefox$"; }
{ title = ".*qutebrowser$"; }
];
"2" = [ { title = "^((?!qutebrowser-editor).)*Emacs$"; } ];
"3" = [ { title = "Slack.*"; } ];
"9" = [ { title = "^Element.*"; } ];
@ -91,19 +99,14 @@
xkb_variant = "altgr-intl";
};
};
keybindings = let
keybindings =
let
screenshotScript = pkgs.writeShellScript "screenshot.sh" ''
filename="$HOME/shots/$(date --iso-8601=seconds).png"
coords="$(${pkgs.slurp}/bin/slurp)"
${pkgs.grim}/bin/grim -t png -g "$coords" "$filename"
wl-copy -t image/png < $filename
'';
screenrecordingScript = pkgs.writeShellScript "screenrecorder.sh" ''
filename="$HOME/shots/recording-$(date --iso-8601=seconds).mp4"
coords="$(${pkgs.slurp}/bin/slurp)"
${pkgs.wf-recorder}/bin/wf-recorder -g "$coords" -f "$filename"
wl-copy -t video/mp4 < $filename
'';
in
lib.mkOptionDefault {
"${modifier}+x" = "exec emacsclient -c";

9
hmModules/swayidle/default.nix
View file

@ -2,8 +2,10 @@
pkgs,
lib,
...
}: {
services.swayidle = let
}:
{
services.swayidle =
let
swaylockWithArgs = pkgs.writeScriptBin "swaylockWithArgs" ''
${pkgs.swaylock-effects}/bin/swaylock \
--daemonize \
@ -22,7 +24,8 @@
--fade-in 0.2
'';
swaylockCommand = "${swaylockWithArgs}/bin/swaylockWithArgs";
in {
in
{
enable = true;
events = [
{

3
hmModules/teams/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.teams-for-linux ];
}

3
hmModules/tor-browser/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.tor-browser ];
}

3
hmModules/tremotesf/default.nix
View file

@ -2,7 +2,8 @@
pkgs,
lib,
...
}: {
}:
{
home.packages = [ pkgs.tremotesf ];
systemd.user.services.tremotesf = {

3
hmModules/vscode/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
programs.vscode = {
enable = true;
# For a few reasons sometimes I'm forced to use VSCode and I don't have time to nixifiy even its configuration.

44
hmModules/waybar/default.nix
View file

@ -2,7 +2,8 @@
pkgs,
lib,
...
}: {
}:
{
programs.waybar = {
enable = true;
systemd.enable = true;
@ -46,9 +47,13 @@
# sort-by-number = true;
};
"wlr/mode" = {tooltip = false;};
"wlr/mode" = {
tooltip = false;
};
"wlr/window" = {max_length = 50;};
"wlr/window" = {
max_length = 50;
};
tray = {
spacing = 10;
};
@ -56,7 +61,13 @@
format = "{capacity}% {icon}";
format-alt = "{time} {icon}";
format-charging = "{capacity}% ";
format-icons = [" " " " " " " " " "];
format-icons = [
" "
" "
" "
" "
" "
];
format-plugged = "{capacity}% ";
states = {
critical = 15;
@ -71,7 +82,9 @@
format = "{usage}% ";
tooltip = false;
};
memory = {format = "{}% ";};
memory = {
format = "{}% ";
};
network = {
interval = 1;
format-alt = "{ifname}: {ipaddr}/{cidr}";
@ -86,7 +99,11 @@
format-bluetooth-muted = " {icon} {format_source}";
format-icons = {
car = "";
default = [" " " " " "];
default = [
" "
" "
" "
];
handsfree = "";
headphones = " ";
headset = "";
@ -98,18 +115,27 @@
format-source-muted = "";
on-click = "${pkgs.pavucontrol}/bin/pavucontrol";
};
"wlr/mode" = {format = ''<span style="italic">{}</span>'';};
"wlr/mode" = {
format = ''<span style="italic">{}</span>'';
};
temperature = {
critical-threshold = 80;
format = "{temperatureC}°C {icon}";
format-icons = ["" "" ""];
format-icons = [
""
""
""
];
hwmon-path = "/sys/class/hwmon/hwmon2/temp1_input"; # picard FIXME
# hwmon-path = "/sys/class/thermal/thermal_zone4/temp"; # thinkpad
};
backlight = {
device = "ddcci2";
format = "{percent}% {icon}";
format-icons = [" " " "];
format-icons = [
" "
" "
];
};
};
};

3
hmModules/wayvnc/default.nix
View file

@ -4,7 +4,8 @@
vpn,
hostname,
...
}: {
}:
{
systemd.user.services.wayvnc = {
Install.WantedBy = [ "graphical-session.target" ];

17
hmModules/wezterm/default.nix
View file

@ -2,12 +2,12 @@
pkgs,
hostname,
...
}: {
}:
{
programs.wezterm = {
enable = true;
package =
if hostname == "pircard"
then
if hostname == "pircard" then
(pkgs.wezterm.overrideAttrs (old: rec {
pname = "wezterm";
version = "20240406-cce0706";
@ -24,17 +24,13 @@
"xcb-imdkit-0.3.0" = "sha256-fTpJ6uNhjmCWv7dZqVgYuS2Uic36XNYTbqlaly5QBjI=";
};
};
patches =
(old.patches or [])
++ [
patches = (old.patches or [ ]) ++ [
(pkgs.fetchpatch {
# fix(wayland): ensure repaint event is sent in show
url = "https://patch-diff.githubusercontent.com/raw/wez/wezterm/pull/5264.patch";
hash = "sha256-c+frVaBEL0h3PJvNu3AW2iap+uUXBY8olbm7Wsxuh4Q=";
})
(pkgs.writeText
"wezterm-remove_capabilities.patch"
''
(pkgs.writeText "wezterm-remove_capabilities.patch" ''
diff --git a/window/src/os/wayland/seat.rs b/window/src/os/wayland/seat.rs
index 3798f4259..e91591130 100644
--- a/window/src/os/wayland/seat.rs
@ -60,7 +56,8 @@
'')
];
}))
else pkgs.wezterm;
else
pkgs.wezterm;
extraConfig = ''
return {

3
hmModules/whatsapp/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.whatsapp-for-linux ];
systemd.user.services.whatsapp = {

3
hmModules/wine/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = with pkgs; [
winetricks
wineWowPackages.waylandFull

9
hmModules/xdg/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
xdg = {
enable = true;
mimeApps.enable = true;
@ -20,7 +21,11 @@
genericName = "Firefox protocol";
exec = "firefox -- %U";
terminal = false;
mimeType = ["text/html" "text/xml" "text/uri"];
mimeType = [
"text/html"
"text/xml"
"text/uri"
];
};
};
};

8
hmModules/zmkbatx/default.nix
View file

@ -2,11 +2,15 @@
pkgs,
lib,
...
}: {
}:
{
home.packages = [ pkgs.zmkBATx ];
systemd.user.services.zmkBATx = {
Install.WantedBy = ["graphical-session.target" "waybar.service"];
Install.WantedBy = [
"graphical-session.target"
"waybar.service"
];
Unit = {
Description = "zmkBATx";

3
hmModules/zulip/default.nix
View file

@ -1,3 +1,4 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
home.packages = [ pkgs.zulip ];
}

3
hosts/archer/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
environment.systemPackages = [
pkgs.vim
];

5
hosts/beebox/default.nix
View file

@ -1,9 +1,8 @@
{
fleetModules,
pkgs,
lib,
...
}: {
}:
{
imports =
[
./hardware-configuration.nix

11
hosts/beebox/hardware-configuration.nix
View file

@ -7,12 +7,19 @@
pkgs,
modulesPath,
...
}: {
}:
{
imports = [
(modulesPath + "/installer/scan/not-detected.nix")
];
boot.initrd.availableKernelModules = ["ahci" "xhci_pci" "usb_storage" "usbhid" "sd_mod"];
boot.initrd.availableKernelModules = [
"ahci"
"xhci_pci"
"usb_storage"
"usbhid"
"sd_mod"
];
boot.initrd.kernelModules = [ ];
boot.kernelModules = [ "kvm-intel" ];
boot.extraModulePackages = [ ];

9
hosts/default.nix
View file

@ -1,10 +1,8 @@
{
self,
lib,
config,
inputs,
...
}: {
}:
{
imports = [ ./module.nix ];
fleet = {
@ -74,7 +72,8 @@
# };
deltaflyer = {
nixpkgs = let
nixpkgs =
let
# keep in sync with https://github.com/NixOS/mobile-nixos/blob/development/pkgs.nix
rev = "44d0940ea560dee511026a53f0e2e2cde489b4d4";
in

25
hosts/deltaflyer/default.nix
View file

@ -3,7 +3,8 @@
lib,
pkgs,
...
}: {
}:
{
imports =
fleetModules [
"common"
@ -41,7 +42,10 @@
# Networking, modem and misc.
{
# Ensures any rndis config from stage-1 is not clobbered by NetworkManager
networking.networkmanager.unmanaged = ["rndis0" "usb0"];
networking.networkmanager.unmanaged = [
"rndis0"
"usb0"
];
# Setup USB gadget networking in initrd...
mobile.boot.stage-1.networking.enable = lib.mkDefault true;
@ -81,7 +85,8 @@
{
system.stateVersion = "24.11";
nixpkgs.config.allowUnfreePredicate = pkg:
nixpkgs.config.allowUnfreePredicate =
pkg:
builtins.elem (lib.getName pkg) [
"oneplus-sdm845-firmware-zstd"
"oneplus-sdm845-firmware-xz"
@ -106,7 +111,8 @@
bind = $mod, r, exec, rotate-screen hor
bind = $mod SHIFT, r, exec, rotate-screen ver
'';
home.packages = let
home.packages =
let
rotateScript = pkgs.writeShellApplication {
name = "rotate-screen";
runtimeInputs = [ pkgs.hyprland ];
@ -120,7 +126,8 @@
fi
'';
};
in [rotateScript];
in
[ rotateScript ];
services.swayidle.enable = lib.mkForce false;
}
];
@ -138,7 +145,13 @@
zramSwap.enable = lib.mkDefault true;
boot.binfmt.emulatedSystems = lib.mkForce ["x86_64-linux" "i686-linux" "i386-linux" "i486-linux" "i586-linux"];
boot.binfmt.emulatedSystems = lib.mkForce [
"x86_64-linux"
"i686-linux"
"i386-linux"
"i486-linux"
"i586-linux"
];
}
];
}

5
hosts/deltaflyer/plasma-mobile.nix
View file

@ -2,11 +2,10 @@
# Minimum config used to enable Plasma Mobile.
#
{
config,
lib,
pkgs,
...
}: {
}:
{
mobile.beautification = {
silentBoot = lib.mkDefault false;
splash = lib.mkDefault false;

19
hosts/devbox/default.nix
View file

@ -4,7 +4,8 @@
lib,
pkgs,
...
}: {
}:
{
imports =
[
(modulesPath + "/installer/scan/not-detected.nix")
@ -42,7 +43,16 @@
};
fonts = {
fonts = with pkgs; [powerline-fonts dejavu_fonts fira-code fira-code-symbols emacs-all-the-icons-fonts nerdfonts joypixels etBook];
fonts = with pkgs; [
powerline-fonts
dejavu_fonts
fira-code
fira-code-symbols
emacs-all-the-icons-fonts
nerdfonts
joypixels
etBook
];
fontconfig.defaultFonts = {
monospace = [ "DejaVu Sans Mono for Powerline" ];
sansSerif = [ "DejaVu Sans" ];
@ -52,7 +62,10 @@
nixpkgs.config.joypixels.acceptLicense = true;
environment.systemPackages = with pkgs; [waypipe firefox];
environment.systemPackages = with pkgs; [
waypipe
firefox
];
programs.mosh.enable = true;

3
hosts/devbox/disko.nix
View file

@ -3,7 +3,8 @@
lib,
disks ? [ "/dev/sda" ],
...
}: {
}:
{
disk = lib.genAttrs disks (dev: {
device = dev;
type = "disk";

9
hosts/hs/default.nix
View file

@ -4,7 +4,8 @@
lib,
config,
...
}: {
}:
{
imports =
[
./hardware-configuration.nix
@ -261,7 +262,8 @@
};
};
systemd.services.ydns = let
systemd.services.ydns =
let
ydnsUpdater = pkgs.writeScriptBin "ydnsUpdater" ''
USER="andrea.ciceri@autistici.org"
PASSWORD=$(cat /home/ccr/.ydns-password)
@ -273,7 +275,8 @@
done
${pkgs.curl}/bin/curl --basic -u "$USER:$PASSWORD" --silent https://ydns.io/api/v1/update/?host=$DOMAIN
'';
in {
in
{
description = "YDNS IP updater";
wantedBy = [ "multi-user.target" ];
after = [ "network.target" ];

12
hosts/hs/hardware-configuration.nix
View file

@ -1,6 +1,14 @@
{lib, ...}: {
{ lib, ... }:
{
boot = {
initrd.availableKernelModules = ["ohci_pci" "ehci_pci" "ahci" "usb_storage" "usbhid" "sd_mod"];
initrd.availableKernelModules = [
"ohci_pci"
"ehci_pci"
"ahci"
"usb_storage"
"usbhid"
"sd_mod"
];
loader.grub = lib.mkForce {
enable = true;
version = 2;

23
hosts/janeway/default.nix
View file

@ -1,14 +1,15 @@
{
config,
lib,
pkgs,
fleetFlake,
...
}: let
}:
let
sshdTmpDirectory = "${config.user.home}/sshd-tmp";
sshdDirectory = "${config.user.home}/sshd";
port = 8022;
in {
in
{
# Backup etc files instead of failing to activate generation if a file already exists in /etc
environment.etcBackupExtension = ".bak";
@ -23,7 +24,9 @@ in {
# Set your time zone
time.timeZone = "Europe/Rome";
home-manager.config = {pkgs, ...}: {
home-manager.config =
{ ... }:
{
home.stateVersion = "24.05";
_module.args = {
hostname = "janeway";
@ -32,10 +35,12 @@ in {
imports = [ ../../hmModules/shell ];
};
build.activation.sshd = let
build.activation.sshd =
let
keys = (builtins.import ../../lib).keys;
inherit (keys) hosts users;
in ''
in
''
$DRY_RUN_CMD mkdir $VERBOSE_ARG --parents "${config.user.home}/.ssh"
$DRY_RUN_CMD echo ${hosts.picard} > "${config.user.home}/.ssh/authorized_keys"
$DRY_RUN_CMD echo ${hosts.sisko} >> "${config.user.home}/.ssh/authorized_keys"
@ -57,9 +62,11 @@ in {
fi
'';
environment.packages = let
environment.packages =
let
inherit (fleetFlake.inputs.ccrEmacs.packages.aarch64-linux) ccrEmacs;
in [
in
[
pkgs.bottom
pkgs.helix
pkgs.stress

5
hosts/kirk/default.nix
View file

@ -1,10 +1,10 @@
{
fleetModules,
lib,
pkgs,
config,
...
}: {
}:
{
imports =
fleetModules [
"common"
@ -47,7 +47,6 @@
"helix"
"shell"
"element"
"emacs"
"firefox"
"gpg"
"mpv"

164
hosts/module.nix
View file

@ -8,12 +8,17 @@
config,
inputs,
...
} @ flakePartsArgs: let
}:
let
cfg = config.fleet;
in {
in
{
options.fleet = {
darwinHosts = lib.mkOption {
type = lib.types.attrsOf (lib.types.submodule ({name, ...}: {
type = lib.types.attrsOf (
lib.types.submodule (
{ name, ... }:
{
options = {
name = lib.mkOption {
description = "Host name";
@ -37,19 +42,26 @@ in {
};
overlays = lib.mkOption {
description = "Enabled Nixpkgs overlays";
type = lib.types.listOf (lib.mkOptionType {
type = lib.types.listOf (
lib.mkOptionType {
name = "nixpkgs-overlay";
description = "nixpkgs overlay";
check = lib.isFunction;
merge = lib.mergeOneOption;
});
}
);
default = [ ];
};
};
}));
}
)
);
};
nixOnDroidHosts = lib.mkOption {
type = lib.types.attrsOf (lib.types.submodule ({name, ...}: {
type = lib.types.attrsOf (
lib.types.submodule (
{ name, ... }:
{
options = {
name = lib.mkOption {
description = "Host name";
@ -73,20 +85,27 @@ in {
};
overlays = lib.mkOption {
description = "Enabled Nixpkgs overlays";
type = lib.types.listOf (lib.mkOptionType {
type = lib.types.listOf (
lib.mkOptionType {
name = "nixpkgs-overlay";
description = "nixpkgs overlay";
check = lib.isFunction;
merge = lib.mergeOneOption;
});
}
);
default = [ ];
};
};
}));
}
)
);
};
hosts = lib.mkOption {
description = "Host configuration";
type = lib.types.attrsOf (lib.types.submodule ({name, ...}: {
type = lib.types.attrsOf (
lib.types.submodule (
{ name, ... }:
{
options = {
name = lib.mkOption {
description = "Host name";
@ -120,7 +139,10 @@ in {
};
secrets = lib.mkOption {
description = "List of secrets names in the `secrets` folder";
type = lib.types.attrsOf (lib.types.submodule ({name, ...}: {
type = lib.types.attrsOf (
lib.types.submodule (
{ name, ... }:
{
options = {
owner = lib.mkOption {
type = lib.types.str;
@ -140,7 +162,9 @@ in {
default = "0440";
};
};
}));
}
)
);
default = { };
};
enableHomeManager = lib.mkOption {
@ -150,12 +174,14 @@ in {
};
overlays = lib.mkOption {
description = "Enabled Nixpkgs overlays";
type = lib.types.listOf (lib.mkOptionType {
type = lib.types.listOf (
lib.mkOptionType {
name = "nixpkgs-overlay";
description = "nixpkgs overlay";
check = lib.isFunction;
merge = lib.mergeOneOption;
});
}
);
default = [ ];
};
extraModules = lib.mkOption {
@ -175,11 +201,14 @@ in {
};
};
config.overlays = with inputs; cfg.overlays;
}));
}
)
);
default = { };
};
vpnExtra = lib.mkOption {
type = lib.types.attrsOf (lib.types.submodule {
type = lib.types.attrsOf (
lib.types.submodule {
options = {
ip = lib.mkOption {
description = "Wireguard VPN ip";
@ -190,56 +219,69 @@ in {
type = lib.types.str;
};
};
});
}
);
default = { };
};
_mkNixosConfiguration = lib.mkOption {
description = "Function returning a proper NixOS configuration";
type = lib.types.functionTo (lib.types.functionTo lib.types.attrs); # TODO improve this type
internal = true;
default = hostname: config:
default =
hostname: config:
config.nixpkgs.lib.nixosSystem {
inherit (config) system;
modules =
[
({lib, ...}: {
(
{ lib, ... }:
{
networking.hostName = lib.mkForce hostname;
nixpkgs.overlays = config.overlays;
})
}
)
"${self.outPath}/hosts/${hostname}"
]
++ (lib.optionals (config.secrets != [ ]) [
inputs.agenix.nixosModules.default
({lib, ...}: let
(
{ lib, ... }:
let
allSecrets = lib.mapAttrs' (name: value: {
name = lib.removeSuffix ".age" name;
inherit value;
}) (import "${self.outPath}/secrets/secrets.nix");
filteredSecrets =
lib.filterAttrs
(name: _: builtins.hasAttr name config.secrets)
allSecrets;
in {
age.secrets =
lib.mapAttrs' (name: _: {
filteredSecrets = lib.filterAttrs (name: _: builtins.hasAttr name config.secrets) allSecrets;
in
{
age.secrets = lib.mapAttrs' (name: _: {
name = builtins.baseNameOf name;
value = {
inherit (config.secrets.${name}) owner group file mode;
inherit (config.secrets.${name})
owner
group
file
mode
;
};
})
filteredSecrets;
})
}) filteredSecrets;
}
)
])
++ (lib.optionals config.enableHomeManager (let
++ (lib.optionals config.enableHomeManager (
let
user = config.extraHmModulesUser;
extraHmModules = config.extraHmModules;
in [
in
[
config.homeManager.nixosModule
({
(
{
config,
pkgs,
...
}: {
}:
{
home-manager.users."${user}" = {
imports = extraHmModules;
_module.args = {
@ -248,8 +290,10 @@ in {
pkgsStable = inputs.nixpkgsStable.legacyPackages.${pkgs.system};
};
};
})
]))
}
)
]
))
++ config.extraModules;
specialArgs = {
fleetModules = builtins.map (moduleName: "${self.outPath}/modules/${moduleName}");
@ -263,18 +307,21 @@ in {
description = "Function returning a proper Darwin configuration";
type = lib.types.functionTo (lib.types.functionTo lib.types.attrs); # TODO improve this type
internal = true;
default = hostname: config:
default =
hostname: config:
inputs.nixDarwin.lib.darwinSystem {
modules = [
({
(
{
lib,
pkgs,
...
}: {
}:
{
networking.hostName = lib.mkForce hostname;
nixpkgs.overlays = config.overlays;
nixpkgs.hostPlatform = config.system;
})
}
)
"${self.outPath}/hosts/${hostname}"
];
};
@ -284,18 +331,20 @@ in {
description = "Function returning a proper nix-on-droid configuration";
type = lib.types.functionTo (lib.types.functionTo lib.types.attrs); # TODO improve this type
internal = true;
default = hostname: config:
default =
hostname: config:
inputs.nix-on-droid.lib.nixOnDroidConfiguration {
pkgs = inputs.nixpkgs.legacyPackages.aarch64-linux;
modules = [
({
lib,
pkgs,
(
{
...
}: {
}:
{
nixpkgs.overlays = config.overlays;
_module.args.fleetFlake = self;
})
}
)
"${self.outPath}/hosts/${hostname}"
];
};
@ -303,19 +352,10 @@ in {
};
config = {
flake.nixosConfigurations =
lib.mapAttrs
config.fleet._mkNixosConfiguration
config.fleet.hosts;
flake.nixosConfigurations = lib.mapAttrs config.fleet._mkNixosConfiguration config.fleet.hosts;
flake.darwinConfigurations =
lib.mapAttrs
config.fleet._mkDarwinConfiguration
config.fleet.darwinHosts;
flake.darwinConfigurations = lib.mapAttrs config.fleet._mkDarwinConfiguration config.fleet.darwinHosts;
flake.nixOnDroidConfigurations =
lib.mapAttrs
config.fleet._mkNixOnDroidConfiguration
config.fleet.nixOnDroidHosts;
flake.nixOnDroidConfigurations = lib.mapAttrs config.fleet._mkNixOnDroidConfiguration config.fleet.nixOnDroidHosts;
};
}

21
hosts/mothership/default.nix
View file

@ -5,7 +5,8 @@
pkgs,
config,
...
}: {
}:
{
imports = fleetModules [
"common"
"wireguard-server"
@ -57,7 +58,16 @@
};
fonts = {
fonts = with pkgs; [powerline-fonts dejavu_fonts fira-code fira-code-symbols emacs-all-the-icons-fonts nerdfonts joypixels etBook];
fonts = with pkgs; [
powerline-fonts
dejavu_fonts
fira-code
fira-code-symbols
emacs-all-the-icons-fonts
nerdfonts
joypixels
etBook
];
fontconfig.defaultFonts = {
monospace = [ "DejaVu Sans Mono for Powerline" ];
sansSerif = [ "DejaVu Sans" ];
@ -75,7 +85,12 @@
programs.mosh.enable = true;
boot.initrd.availableKernelModules = ["xhci_pci" "ahci" "nvme" "usbhid"];
boot.initrd.availableKernelModules = [
"xhci_pci"
"ahci"
"nvme"
"usbhid"
];
boot.initrd.kernelModules = [ ];
boot.kernelModules = [ "kvm-intel" ];
boot.extraModulePackages = [ ];

9
hosts/mothership/disko.nix
View file

@ -1,8 +1,11 @@
{
lib,
disks ? ["/dev/nvme0n1" "/dev/nvme1n1"],
disks ? [
"/dev/nvme0n1"
"/dev/nvme1n1"
],
...
}: {
}:
{
disk = {
x = {
type = "disk";

6
hosts/oneplus5t/default.nix
View file

@ -1,9 +1,7 @@
{
config,
lib,
pkgs,
...
}: {
}:
{
signing.enable = true;
# apps.prebuilt = {

3
hosts/pbp/default.nix
View file

@ -3,7 +3,8 @@
pkgs,
lib,
...
}: {
}:
{
imports =
[
./hardware-configuration.nix

3
hosts/pbp/hardware-configuration.nix
View file

@ -3,7 +3,8 @@
lib,
pkgs,
...
}: {
}:
{
disko.devices = import ./disko.nix { };
boot = {

3
hosts/picard/default.nix
View file

@ -4,7 +4,8 @@
config,
pkgs,
...
}: {
}:
{
imports =
fleetModules [
"common"

9
hosts/sisko/default.nix
View file

@ -1,10 +1,10 @@
{
fleetModules,
pkgs,
fleetFlake,
config,
...
}: {
}:
{
imports =
fleetModules [
"common"
@ -78,10 +78,15 @@
efi.canTouchEfiVariables = false;
};
hardware.deviceTree.enable = true;
hardware.deviceTree.name = "rockchip/rk3588-rock-5b.dtb";
boot.loader.systemd-boot.installDeviceTree = true;
boot.initrd.availableKernelModules = [
"nvme"
"xhci_pci"
"ahci"
"usb_storage"
];
boot.kernelParams = [

11
hosts/sisko/disko.nix
View file

@ -1,15 +1,18 @@
let
emmc = "/dev/disk/by-id/mmc-SLD64G_0xf6be3ba0";
ssd = "/dev/disk/by-id/ata-CT240BX300SSD1_1739E1042F3C";
in
# hd1 = "/dev/disk/by-id/ata-WDC_WD10EADS-22M2B0_WD-WCAV52709550";
# hd2 = "/dev/disk/by-id/ata-WDC_WD10EADX-22TDHB0_WD-WCAV5V359530";
hd = "/dev/disk/by-id/ata-WDC_WD10EADS-22M2B0_WD-WCAV52709550-part1";
# old_hd = "/dev/disk/by-id/ata-WDC_WD5000AAKX-08U6AA0_WD-WCC2E5TR40FU";
in {
{
disko.devices = {
nodev."/" = {
fsType = "tmpfs";
mountOptions = ["size=1024M" "defaults" "mode=755"];
mountOptions = [
"size=1024M"
"defaults"
"mode=755"
];
};
disk = {
ssd = {

6
hosts/test/default.nix
View file

@ -1,10 +1,8 @@
{
fleetModules,
lib,
config,
pkgs,
...
}: {
}:
{
imports =
fleetModules [
"common"

11
hosts/thinkpad/default.nix
View file

@ -1,10 +1,10 @@
{
config,
lib,
pkgs,
fleetModules,
...
}: {
}:
{
imports =
[
./zfs.nix
@ -97,7 +97,12 @@
];
};
boot.initrd.availableKernelModules = ["xhci_pci" "nvme" "usb_storage" "sd_mod"];
boot.initrd.availableKernelModules = [
"xhci_pci"
"nvme"
"usb_storage"
"sd_mod"
];
boot.initrd.kernelModules = [ ];
boot.kernelModules = [ "kvm-intel" ];
boot.extraModulePackages = with config.boot.kernelPackages; [ v4l2loopback ];

36
hosts/thinkpad/hardware-configuration.nix
View file

@ -4,15 +4,20 @@
{
config,
lib,
pkgs,
modulesPath,
...
}: {
}:
{
imports = [
(modulesPath + "/installer/scan/not-detected.nix")
];
boot.initrd.availableKernelModules = ["xhci_pci" "nvme" "usb_storage" "sd_mod"];
boot.initrd.availableKernelModules = [
"xhci_pci"
"nvme"
"usb_storage"
"sd_mod"
];
boot.initrd.kernelModules = [ ];
boot.kernelModules = [ "uinput" ];
boot.extraModulePackages = [ ];
@ -20,31 +25,46 @@
fileSystems."/" = {
device = "rpool/nixos/root";
fsType = "zfs";
options = ["zfsutil" "X-mount.mkdir"];
options = [
"zfsutil"
"X-mount.mkdir"
];
};
fileSystems."/home" = {
device = "rpool/nixos/home";
fsType = "zfs";
options = ["zfsutil" "X-mount.mkdir"];
options = [
"zfsutil"
"X-mount.mkdir"
];
};
fileSystems."/var/lib" = {
device = "rpool/nixos/var/lib";
fsType = "zfs";
options = ["zfsutil" "X-mount.mkdir"];
options = [
"zfsutil"
"X-mount.mkdir"
];
};
fileSystems."/var/log" = {
device = "rpool/nixos/var/log";
fsType = "zfs";
options = ["zfsutil" "X-mount.mkdir"];
options = [
"zfsutil"
"X-mount.mkdir"
];
};
fileSystems."/boot" = {
device = "bpool/nixos/root";
fsType = "zfs";
options = ["zfsutil" "X-mount.mkdir"];
options = [
"zfsutil"
"X-mount.mkdir"
];
};
fileSystems."/boot/efis/nvme-INTEL_SSDPEKKF010T8L_PHHP938405741P0D-part1" = {

4
hosts/thinkpad/zfs.nix
View file

@ -1,9 +1,9 @@
{
config,
pkgs,
lib,
...
}: {
}:
{
boot.supportedFilesystems = [ "zfs" ];
networking.hostId = "adf0b5e7";
boot.loader.efi.efiSysMountPoint = "/boot/efi";

5
modules/adguard-home/default.nix
View file

@ -6,6 +6,9 @@
openFirewall = true;
};
};
networking.firewall.allowedTCPPorts = [3000 53];
networking.firewall.allowedTCPPorts = [
3000
53
];
networking.firewall.allowedUDPPorts = [ 53 ];
}

3
modules/atuin/default.nix
View file

@ -1,4 +1,5 @@
{config, ...}: {
{ config, ... }:
{
services.atuin = {
enable = true;
openFirewall = false; # use only in the VPN

3
modules/audio/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
sound.enable = true;
hardware.pulseaudio = {

5
modules/auto-upgrade/default.nix
View file

@ -1,9 +1,8 @@
{
config,
options,
lib,
...
}: {
}:
{
system.autoUpgrade = {
enable = false;
flake = "github:aciceri/nixfleet#${config.networking.hostName}";

5
modules/battery/default.nix
View file

@ -1,10 +1,11 @@
{config, ...}: {
{ config, ... }:
{
services.tlp.enable = true;
services.upower.enable = true;
nixpkgs.overlays = [
(self: super: {
(_self: super: {
tlp = super.tlp.override {
enableRDW = config.networkmanager.enable;
};

6
modules/binfmt/default.nix
View file

@ -1,5 +1,9 @@
{
boot.binfmt.emulatedSystems = ["i686-linux" "aarch64-linux" "riscv64-linux"];
boot.binfmt.emulatedSystems = [
"i686-linux"
"aarch64-linux"
"riscv64-linux"
];
nix.extraOptions = ''
extra-platforms = aarch64-linux arm-linux i686-linux riscv64-linux
'';

3
modules/bluetooth/default.nix
View file

@ -2,7 +2,8 @@
pkgs,
config,
...
}: {
}:
{
services.blueman.enable = true;
hardware.pulseaudio.enable = true;
hardware.bluetooth = {

5
modules/bubbleupnp/default.nix
View file

@ -3,7 +3,10 @@
bubbleupnpserver = {
image = "bubblesoftapps/bubbleupnpserver";
ports = [ "58050:58050" ];
extraOptions = ["--network=host" "-device /dev/dri:/dev/dri"];
extraOptions = [
"--network=host"
"-device /dev/dri:/dev/dri"
];
};
};

33
modules/ccr/default.nix
View file

@ -7,10 +7,12 @@
vpn,
options,
...
}: let
}:
let
cfg = config.ccr;
inherit (lib) types;
in {
in
{
options.ccr = {
enable = lib.mkEnableOption "ccr";
@ -70,14 +72,27 @@ in {
};
};
config = lib.mkIf cfg.enable (lib.mkMerge [
config = lib.mkIf cfg.enable (
lib.mkMerge [
(lib.optionalAttrs (builtins.hasAttr "backup" options) {
backup.paths = cfg.backupPaths;
})
{
# FIXME shouldn't set these groups by default
ccr.extraGroups = ["wheel" "fuse" "video" "dialout" "systemd-journal" "camera"];
ccr.modules = ["shell" "git" "nix-index" "btop"];
ccr.extraGroups = [
"wheel"
"fuse"
"video"
"dialout"
"systemd-journal"
"camera"
];
ccr.modules = [
"shell"
"git"
"nix-index"
"btop"
];
users.users.${cfg.username} = {
inherit (config.ccr) hashedPassword extraGroups description;
@ -89,10 +104,7 @@ in {
programs.fish.enable = true;
services.getty.autologinUser =
if config.ccr.autologin
then cfg.username
else null;
services.getty.autologinUser = if config.ccr.autologin then cfg.username else null;
home-manager.useGlobalPkgs = true;
home-manager.useUserPackages = true;
@ -114,5 +126,6 @@ in {
home.stateVersion = config.system.stateVersion;
};
}
]);
]
);
}

19
modules/cgit/config.nix
View file

@ -1,13 +1,15 @@
{
lib,
pkgs,
...
}: let
}:
let
repos-path = "/var/lib/cgit-repos";
cgit-setup-repos =
pkgs.writers.writePython3 "cgit-setup-repos" {
pkgs.writers.writePython3 "cgit-setup-repos"
{
libraries = with pkgs.python3Packages; [ PyGithub ];
} ''
}
''
from github import Github
from pathlib import Path
@ -22,7 +24,8 @@
f"repo.desc={repo.description}\n"
])
'';
in {
in
{
services.nginx.virtualHosts."git.aciceri.dev" = {
cgit = {
enable = true;
@ -31,10 +34,12 @@ in {
virtual-root = "/";
cache-size = 1000;
include = [
(builtins.toString (pkgs.writeText "cgit-extra" ''
(builtins.toString (
pkgs.writeText "cgit-extra" ''
source-filter=${pkgs.cgit-pink}/lib/cgit/filters/syntax-highlighting.py
about-filter=${pkgs.cgit-pink}/lib/cgit/filters/about-formatting.sh
''))
''
))
repos-path
];
};

47
modules/cgit/default.nix
View file

@ -4,33 +4,42 @@
pkgs,
...
}:
with lib; let
with lib;
let
globalConfig = config;
settingsFormat = {
type = with lib.types; let
type =
with lib.types;
let
value =
oneOf [int str]
oneOf [
int
str
]
// {
description = "INI-like atom (int or string)";
};
values =
coercedTo value lib.singleton (listOf value)
// {
values = coercedTo value lib.singleton (listOf value) // {
description = value.description + " or a list of them for duplicate keys";
};
in
attrsOf values;
generate = name: values:
generate =
name: values:
pkgs.writeText name (lib.generators.toKeyValue { listsAsDuplicateKeys = true; } values);
};
in {
in
{
imports = [
../nginx-base
./config.nix
];
options.services.nginx.virtualHosts = mkOption {
type = types.attrsOf (types.submodule ({config, ...}: let
type = types.attrsOf (
types.submodule (
{ config, ... }:
let
cfg = config.cgit;
# These are the global options for this submodule, but for nicer UX they
@ -50,7 +59,8 @@ in {
# Remove the global options for serialization into cgitrc
settings = removeAttrs cfg (attrNames options);
in {
in
{
options.cgit = mkOption {
type = types.submodule {
freeformType = settingsFormat.type;
@ -87,7 +97,8 @@ in {
'';
};
config = let
config =
let
location = removeSuffix "/" cfg.location;
in
mkIf cfg.enable {
@ -112,21 +123,25 @@ in {
fastcgi_pass unix:${globalConfig.services.fcgiwrap.socketAddress};
''
+ (
if cfg.location == "/"
then ''
if cfg.location == "/" then
''
fastcgi_param PATH_INFO $uri;
''
else ''
else
''
fastcgi_split_path_info ^(${location}/)(/?.+)$;
fastcgi_param PATH_INFO $fastcgi_path_info;
''
);
};
};
}));
}
)
);
};
config = let
config =
let
vhosts = config.services.nginx.virtualHosts;
in
mkIf (any (name: vhosts.${name}.cgit.enable) (attrNames vhosts)) {

3
modules/cloudflare-dyndns/default.nix
View file

@ -1,4 +1,5 @@
{config, ...}: {
{ config, ... }:
{
services.cloudflare-dyndns = {
enable = true;
ipv4 = true;

3
modules/common/default.nix
View file

@ -2,7 +2,8 @@
lib,
fleetModules,
...
}: {
}:
{
imports = fleetModules [
"nix"
"auto-upgrade"

3
modules/dbus/default.nix
View file

@ -1,4 +1,5 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
services.dbus.packages = [ pkgs.dconf ];
programs.dconf.enable = true;
}

9
modules/docker/default.nix
View file

@ -1,13 +1,16 @@
{
pkgs,
config,
...
}: {
}:
{
virtualisation.podman.enable = true;
# virtualisation.docker.enable = true;
environment.systemPackages = with pkgs; [
docker-compose
podman-compose
];
ccr.extraGroups = ["docker" "podman"];
ccr.extraGroups = [
"docker"
"podman"
];
}

17
modules/fonts/default.nix
View file

@ -1,6 +1,19 @@
{pkgs, ...}: {
{ pkgs, ... }:
{
fonts = {
packages = with pkgs; [powerline-fonts dejavu_fonts fira-code fira-code-symbols iosevka iosevka-comfy.comfy emacs-all-the-icons-fonts nerdfonts joypixels etBook vegur];
packages = with pkgs; [
powerline-fonts
dejavu_fonts
fira-code
fira-code-symbols
iosevka
iosevka-comfy.comfy
emacs-all-the-icons-fonts
nerdfonts
joypixels
etBook
vegur
];
fontconfig.defaultFonts = {
monospace = [ "DejaVu Sans Mono for Powerline" ];
sansSerif = [ "DejaVu Sans" ];

39
modules/forgejo-runners/default.nix
View file

@ -4,10 +4,27 @@
pkgs,
lib,
...
}: let
}:
let
storeDeps = pkgs.runCommand "store-deps" { } ''
mkdir -p $out/bin
for dir in ${with pkgs; builtins.toString [coreutils findutils gnugrep gawk git nix bash jq nodejs nix-fast-build curl tea]}; do
for dir in ${
with pkgs;
builtins.toString [
coreutils
findutils
gnugrep
gawk
git
nix
bash
jq
nodejs
nix-fast-build
curl
tea
]
}; do
for bin in "$dir"/bin/*; do
ln -s "$bin" "$out/bin/$(basename "$bin")"
done
@ -35,7 +52,12 @@ in
wantedBy = [ "multi-user.target" ];
after = [ "podman.service" ];
requires = [ "podman.service" ];
path = [config.virtualisation.podman.package pkgs.gnutar pkgs.shadow pkgs.getent];
path = [
config.virtualisation.podman.package
pkgs.gnutar
pkgs.shadow
pkgs.getent
];
# we also include etc here because the cleanup job also wants the nixuser to be present
script = ''
set -eux -o pipefail
@ -113,7 +135,9 @@ in
# };
}
{
systemd.services = lib.genAttrs (builtins.genList (n: "gitea-runner-nix${builtins.toString n}") numInstances) (name: {
systemd.services =
lib.genAttrs (builtins.genList (n: "gitea-runner-nix${builtins.toString n}") numInstances)
(_name: {
# TODO: systemd confinment
serviceConfig = {
# Hardening (may overlap with DynamicUser=)
@ -157,7 +181,12 @@ in
"~setdomainname"
"~sethostname"
];
RestrictAddressFamilies = ["AF_INET" "AF_INET6" "AF_UNIX" "AF_NETLINK"];
RestrictAddressFamilies = [
"AF_INET"
"AF_INET6"
"AF_UNIX"
"AF_NETLINK"
];
# Needs network access
PrivateNetwork = false;

4
modules/forgejo/default.nix
View file

@ -1,8 +1,8 @@
{
config,
pkgs,
...
}: {
}:
{
services.forgejo = {
enable = true;
settings = {

Some files were not shown because too many files have changed in this diff Show more