Migrate Warwick server to this repo

2024-11-30 22:48:30 +01:00 · 2024-11-30 22:48:30 +01:00 · 842d2afbc0
commit 842d2afbc0
parent a90c75931b
12 changed files with 1702 additions and 4 deletions
--- a/machines/warwick/configuration.nix
+++ b/machines/warwick/configuration.nix
@ -0,0 +1,45 @@
+{
+  lib,
+  config,
+  inputs,
+  ...
+}: {
+  imports = [inputs.nixos-hardware.nixosModules.raspberry-pi-4];
+
+  config = {
+    pim = {
+      tailscale.advertiseExitNode = true;
+      sopsKeys.root = ./nixos.sops.yaml;
+      prometheus.enable = true;
+    };
+
+    facter.reportPath = ./facter.json;
+    networking.hostName = "warwick";
+    system.stateVersion = "23.05";
+
+    systemd.network.networks."30-main-nic" = {
+      matchConfig.Name = lib.mkForce "end*";
+      networkConfig.IPv6AcceptRA = true;
+    };
+
+    deployment = {
+      targetHost = "warwick";
+      targetUser = "root";
+      tags = ["server"];
+      buildOnTarget = true;
+    };
+
+    users.users.root.openssh.authorizedKeys.keys = config.pim.ssh.keys.pim ++ config.pim.ssh.keys.niels;
+
+    sops = {
+      age.keyFile = "/root/.config/sops/age/keys.txt";
+      defaultSopsFile = ./nixos.sops.yaml;
+    };
+
+    fileSystems."/" = {
+      device = "/dev/disk/by-label/NIXOS_SD";
+      fsType = "ext4";
+      options = ["noatime"];
+    };
+  };
+}