2024-12-01 00:03:21 +00:00
|
|
|
{
|
|
|
|
|
self,
|
|
|
|
|
pkgs,
|
2024-12-01 15:56:47 +00:00
|
|
|
lib,
|
|
|
|
|
inputs,
|
|
|
|
|
config,
|
2024-12-01 00:03:21 +00:00
|
|
|
...
|
|
|
|
|
}: {
|
2024-12-01 15:56:47 +00:00
|
|
|
options = {
|
|
|
|
|
pim.cosmic.enable = lib.mkEnableOption "cosmic";
|
|
|
|
|
};
|
|
|
|
|
|
2024-11-11 19:43:36 +00:00
|
|
|
config = {
|
|
|
|
|
pim = {
|
|
|
|
|
lanzaboote.enable = true;
|
|
|
|
|
tidal.enable = true;
|
|
|
|
|
gnome.enable = true;
|
|
|
|
|
stylix.enable = true;
|
|
|
|
|
wireguard.enable = true;
|
|
|
|
|
compliance.enable = true;
|
2024-12-01 00:03:21 +00:00
|
|
|
sops-nix.usersWithSopsKeys = ["pim"];
|
2024-11-11 19:43:36 +00:00
|
|
|
};
|
|
|
|
|
|
2024-11-19 21:08:41 +00:00
|
|
|
users.users.pim = {
|
|
|
|
|
isNormalUser = true;
|
|
|
|
|
extraGroups = ["wheel" "docker" "input" "wireshark" "dialout"];
|
|
|
|
|
};
|
|
|
|
|
|
2024-11-17 21:59:40 +00:00
|
|
|
deployment = {
|
|
|
|
|
allowLocalDeployment = true;
|
|
|
|
|
targetHost = null;
|
2024-11-19 21:08:41 +00:00
|
|
|
tags = ["desktop"];
|
2024-11-17 21:59:40 +00:00
|
|
|
};
|
|
|
|
|
|
2024-11-11 19:43:36 +00:00
|
|
|
facter.reportPath = ./facter.json;
|
2024-11-21 19:53:35 +00:00
|
|
|
home-manager.users.pim.imports = [./pim.home.nix];
|
2024-11-21 19:39:51 +00:00
|
|
|
nix.settings.trusted-users = ["pim"];
|
2024-11-30 12:14:46 +00:00
|
|
|
system.stateVersion = "23.05";
|
2024-12-01 16:06:43 +00:00
|
|
|
sops.defaultSopsFile = "${self}/secrets/sue/nixos.yaml";
|
2024-12-24 13:30:10 +00:00
|
|
|
boot.kernelPackages = pkgs.unstable.linuxKernel.packages.linux_6_12;
|
2024-11-17 20:04:03 +00:00
|
|
|
|
2024-11-14 20:04:17 +00:00
|
|
|
environment.systemPackages = with pkgs; [
|
|
|
|
|
borgbackup
|
|
|
|
|
kubectl
|
|
|
|
|
nmap
|
|
|
|
|
poppler_utils # For pdfunite
|
|
|
|
|
silicon
|
|
|
|
|
units
|
|
|
|
|
];
|
|
|
|
|
|
2024-12-15 20:26:31 +00:00
|
|
|
virtualisation = {
|
|
|
|
|
libvirtd.enable = true;
|
|
|
|
|
|
|
|
|
|
docker = {
|
2024-11-14 20:04:17 +00:00
|
|
|
enable = true;
|
2024-12-15 20:26:31 +00:00
|
|
|
|
|
|
|
|
rootless = {
|
|
|
|
|
enable = true;
|
|
|
|
|
setSocketVariable = true;
|
|
|
|
|
};
|
2024-11-14 20:04:17 +00:00
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
2024-11-11 19:43:36 +00:00
|
|
|
swapDevices = [{device = "/dev/disk/by-uuid/96a43c35-0174-4e92-81f0-168a5f601f0b";}];
|
|
|
|
|
fileSystems = {
|
|
|
|
|
"/" = {
|
|
|
|
|
device = "/dev/disk/by-uuid/31638735-5cc4-4013-8037-17e30edcbb0a";
|
|
|
|
|
fsType = "ext4";
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
"/boot" = {
|
|
|
|
|
device = "/dev/disk/by-uuid/560E-F8A2";
|
|
|
|
|
fsType = "vfat";
|
|
|
|
|
options = ["fmask=0022" "dmask=0022"];
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
nix.settings = {
|
|
|
|
|
substituters = ["https://cosmic.cachix.org/"];
|
|
|
|
|
trusted-public-keys = ["cosmic.cachix.org-1:Dya9IyXD4xdBehWjrkPv6rtxpmMdRel02smYzA85dPE="];
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
boot.initrd.luks.devices."luks-8ffd3129-4908-4209-98c4-4eb68a35c494".device = "/dev/disk/by-uuid/8ffd3129-4908-4209-98c4-4eb68a35c494";
|
|
|
|
|
|
2024-12-01 15:56:47 +00:00
|
|
|
specialisation.cosmic = lib.mkIf config.pim.cosmic.enable {
|
|
|
|
|
configuration = {
|
|
|
|
|
imports = [
|
|
|
|
|
inputs.nixos-cosmic.nixosModules.default
|
|
|
|
|
];
|
2024-11-11 19:43:36 +00:00
|
|
|
|
2024-12-01 15:56:47 +00:00
|
|
|
services = {
|
|
|
|
|
desktopManager.cosmic.enable = true;
|
|
|
|
|
displayManager.cosmic-greeter.enable = true;
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
};
|
2024-11-11 19:43:36 +00:00
|
|
|
};
|
2024-10-27 11:23:20 +00:00
|
|
|
}
|
