andreijiroh.dev / nixops-config
NixOS + home-manager configs, mirrored from GitLab SaaS. gitlab.com/andreijiroh-dev/nixops-config
nix-flake nixos home-manager nixpkgs nix-flakes
1
fork

Configure Feed

Select the types of activity you want to include in your feed.

Cook up more configs as usual

Signed-off-by: Andrei Jiroh Halili <ajhalili2006@andreijiroh.dev>

andreijiroh.dev d21655b4 75d1682c

+86 -31
+2
hosts/recoverykit/configuration.nix
··· 7 7 imports = [ 8 8 ../../shared/systemd.nix 9 9 ../../shared/server/ssh.nix 10 + ../../shared/meta-configs.nix 11 + ../../shared/systemd.nix 10 12 ]; 11 13 12 14 # Import my SSH keys to the nixos user for remote access.
+9 -13
hosts/stellapent-cier/configuration.nix
··· 20 20 ../../shared/server/tailscale.nix 21 21 ../../shared/systemd.nix 22 22 ../../shared/yubikey.nix 23 + ../../shared/server/devenv.nix 23 24 ]; 24 25 25 26 # Bootloader. ··· 83 84 # Enable touchpad support (enabled default in most desktopManager). 84 85 # services.xserver.libinput.enable = true; 85 86 87 + # home-manager specifics 88 + home-manager.useUserPackages = true; 89 + home-manager.useGlobalPkgs = true; 90 + 86 91 # Define a user account. Don't forget to set a password with ‘passwd’. 87 92 # Might be obvious to some since I'm technically roleplaying on my 88 93 # old HP laptop my overseas Filipino dad gave me in 2024. 89 94 users.users.gildedguy = { 90 95 isNormalUser = true; 91 96 description = "Gildedguy (Michael Moy)"; # We're not impersonating the animatior here. 92 - extraGroups = [ "networkmanager" "wheel" ]; 93 - #packages = with pkgs; [ 94 - # kdePackages.kate 95 - # thunderbird 96 - #]; 97 + extraGroups = [ "networkmanager" "wheel" "docker"]; 97 98 openssh = { 98 99 authorizedKeys.keys = with import ../../shared/ssh-keys.nix; [ 99 100 personal.y2022 ··· 102 103 ]; 103 104 }; 104 105 }; 105 - 106 - # home-manager specifics 107 - home-manager.useUserPackages = true; 108 - home-manager.useGlobalPkgs = true; 109 106 home-manager.users.gildedguy = import ./users/gildedguy.nix; 110 107 #programs.home-manager.enable = true; # allow home-manager to manage itself 111 108 ··· 118 115 # vim # Do not forget to add an editor to edit configuration.nix! The Nano editor is also installed by default. 119 116 wget 120 117 dig 121 - broadcom-bt-firmware 122 118 btop 123 119 htop 124 - direnv 125 - cachix 126 120 icu 127 - devbox 128 121 thunderbird 129 122 google-chrome 130 123 firefox 131 124 kdePackages.kate 125 + libreoffice-qt6-fresh 126 + hunspell 127 + hunspellDicts.en_US 132 128 ]; 133 129 134 130 # Some programs need SUID wrappers, can be configured further or are
+22 -12
shared/locale.nix
··· 2 2 3 3 { 4 4 # Set your time zone. 5 - time.timeZone = "Asia/Manila"; 5 + time = { 6 + timeZone = "Asia/Manila"; 7 + # since we're no longer being taken ahold by Windows 11 slavery in terms of hw clock 8 + # confusion, we cn set this to false to use UTC. 9 + hardwareClockInLocalTime = false; 10 + }; 6 11 7 12 # Select internationalisation properties. 8 - i18n.defaultLocale = "en_PH.UTF-8"; 9 - i18n.extraLocaleSettings = { 10 - LC_ADDRESS = "en_PH.UTF-8"; 11 - LC_IDENTIFICATION = "en_PH.UTF-8"; 12 - LC_MEASUREMENT = "en_PH.UTF-8"; 13 - LC_MONETARY = "en_PH.UTF-8"; 14 - LC_NAME = "en_PH.UTF-8"; 15 - LC_NUMERIC = "en_PH.UTF-8"; 16 - LC_PAPER = "en_PH.UTF-8"; 17 - LC_TELEPHONE = "en_PH.UTF-8"; 18 - LC_TIME = "en_PH.UTF-8"; 13 + i18n = { 14 + defaultLocale = "en_PH.UTF-8"; 15 + extraLocaleSettings = { 16 + LC_ADDRESS = "en_PH.UTF-8"; 17 + LC_IDENTIFICATION = "en_PH.UTF-8"; 18 + LC_MEASUREMENT = "en_PH.UTF-8"; 19 + LC_MONETARY = "en_PH.UTF-8"; 20 + LC_NAME = "en_PH.UTF-8"; 21 + LC_NUMERIC = "en_PH.UTF-8"; 22 + LC_PAPER = "en_PH.UTF-8"; 23 + LC_TELEPHONE = "en_PH.UTF-8"; 24 + LC_TIME = "en_PH.UTF-8"; 25 + }; 26 + supportedLocales = [ 27 + "all" # bless anyone here 28 + ]; 19 29 }; 20 30 }
+21 -6
shared/meta-configs.nix
··· 15 15 }; 16 16 17 17 nix = { 18 + gc = { 19 + automatic = true; 20 + randomizedDelaySec = "69min"; 21 + }; 18 22 settings = { 19 23 # See https://nix.dev/manual/nix/latest/development/experimental-features 20 24 # for latest supported feature flags. 21 25 experimental-features = [ 22 - "nix-command" 23 - "flakes" 26 + "auto-allocate-uids" 24 27 "ca-derivations" 25 28 "cgroups" 29 + "configurable-impure-env" 30 + "daemon-trust-override" 31 + "dynamic-derivations" 32 + "fetch-closure" 33 + "fetch-tree" 34 + "flakes" 35 + "git-hashing" 26 36 "impure-derivations" 27 - "git-hashing" 28 - "fetch-tree" 29 - "fetch-closure" 30 37 "local-overlay-store" 31 38 "mounted-ssh-store" 32 - # "verified-fetches" 39 + "nix-command" 40 + "no-url-literals" 41 + "parse-toml-timestamps" 42 + "pipe-operators" 43 + "read-only-local-store" 44 + "recursive-nix" 45 + "verified-fetches" 33 46 ]; 34 47 35 48 trusted-users = [ 36 49 "root" 37 50 "gildedguy" 38 51 "ajhalili2006" 52 + "nixos" 39 53 ]; 40 54 41 55 # just sync with trusted-users, but w/o root 42 56 allowed-users = [ 43 57 "gildedguy" 44 58 "ajhalili2006" 59 + "nixos" 45 60 ]; 46 61 47 62 trusted-public-keys = [
+32
shared/server/devenv.nix
··· 1 + { pkgs, ... }: 2 + 3 + { 4 + environment.defaultPackages = with pkgs; [ 5 + direnv 6 + cachix 7 + devbox 8 + ]; 9 + 10 + virtualisation = { 11 + docker = { 12 + enable = true; 13 + enableOnBoot = true; 14 + daemon = { 15 + settings = { 16 + dns = [ 17 + 1.1.1.1 18 + 1.0.0.1 19 + ]; 20 + ipv6 = true; 21 + }; 22 + }; 23 + }; 24 + libvirtd = { 25 + enable = true; 26 + }; 27 + }; 28 + 29 + programs.virt-manager.enable = true; 30 + services.qemuGuest.enable = true; 31 + services.spice-vdagentd.enable = true; 32 + }