chore: what could possibly go wrong? · andreijiroh.dev/nixops-config@fd48ad0

+8 -1

.vscode/settings.json

··· 14 14 "misc/nix/nix.user.conf": "https://raw.githubusercontent.com/nix-community/nixd/main/nixd/docs/nixd-schema.json", 15 15 "misc/nix/nix.custom.conf": "https://raw.githubusercontent.com/nix-community/nixd/main/nixd/docs/nixd-schema.json" 16 16 }, 17 - "evenBetterToml.taplo.configFile.path": ".taplo.toml" 17 + "evenBetterToml.taplo.configFile.path": ".taplo.toml", 18 + "nix.enableLanguageServer": true, 19 + "nix.serverPath": "nil", 20 + "[nix]": { 21 + "editor.insertSpaces": true, 22 + "editor.tabSize": 2, 23 + "editor.defaultFormatter": "jnoortheen.nix-ide" 24 + } 18 25 }

+1 -50

hosts/lairland/configuration.nix

··· 41 41 ../../shared/server/devenv.nix 42 42 ../../shared/server/cockpit.nix 43 43 ./users/ajhalili2006.nix 44 + ./users/coolify-runner.nix 44 45 ]; 45 46 46 47 # Bootloader. ··· 63 64 # networking.proxy.default = "http://user:password@proxy:port/"; 64 65 # networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain"; 65 66 66 - # Enable the X11 windowing system. 67 - # You can disable this if you're only using the Wayland session. 68 - services.xserver.enable = true; 69 - 70 - # Configure keymap in X11 71 - services.xserver.xkb = { 72 - layout = "us"; 73 - variant = ""; 74 - }; 75 - 76 67 # Enable CUPS to print documents. 77 68 services.printing.enable = true; 78 69 79 - # Enable sound with pipewire. 80 - services.pulseaudio.enable = false; 81 - security.rtkit.enable = true; 82 - services.pipewire = { 83 - enable = true; 84 - alsa.enable = true; 85 - alsa.support32Bit = true; 86 - pulse.enable = true; 87 - # If you want to use JACK applications, uncomment this 88 - #jack.enable = true; 89 - 90 - # use the example session manager (no others are packaged yet so this is enabled by default, 91 - # no need to redefine it in your config for now) 92 - #media-session.enable = true; 93 - }; 94 - 95 - # Enable touchpad support (enabled default in most desktopManager). 96 - # services.xserver.libinput.enable = true; 97 - 98 - # Define a user account. Don't forget to set a password with ‘passwd’. 99 - users.users.ajhalili2006 = { 100 - isNormalUser = true; 101 - description = "Andrei Jiroh Halili"; 102 - extraGroups = [ 103 - "networkmanager" 104 - "wheel" 105 - "docker" 106 - ]; 107 - openssh.authorizedKeys.keys = with import ../../shared/ssh-keys.nix; [ 108 - personal.y2022 109 - personal.passwordless 110 - work.recaptime-dev.crew 111 - rp.gildedguy 112 - ]; 113 - linger = true; 114 - }; 115 - 116 70 # Some programs need SUID wrappers, can be configured further or are 117 71 # started in user sessions. 118 72 # programs.mtr.enable = true; ··· 120 74 # enable = true; 121 75 # enableSSHSupport = true; 122 76 # }; 123 - 124 - services.xserver.videoDrivers = [ "nvidia" ]; 125 - hardware.nvidia.open = false; 126 77 }

+18

hosts/lairland/users/ajhalili2006.nix

··· 1 1 { config, pkgs, lib, zen-browser, dev-pkgs, ... }: 2 2 3 3 { 4 + users.users.ajhalili2006 = { 5 + isNormalUser = true; 6 + description = "Andrei Jiroh Halili"; 7 + extraGroups = [ 8 + "networkmanager" 9 + "wheel" 10 + "docker" 11 + ]; 12 + openssh.authorizedKeys.keys = with import ../../../shared/ssh-keys.nix; [ 13 + personal.y2022 14 + personal.passwordless 15 + personal.campus-comlab 16 + work.recaptime-dev.crew 17 + rp.gildedguy 18 + ]; 19 + linger = true; 20 + }; 21 + 4 22 # see ../../stellapent-cier/users/gildedguy.nix for context 5 23 home-manager.users.ajhalili2006 = { 6 24 imports = [

+16

hosts/lairland/users/coolify-runner.nix

··· 1 + { config, pkgs, lib, zen-browser, dev-pkgs, ... }: 2 + 3 + { 4 + users.users.coolify-runner = { 5 + isSystemUser = true; 6 + description = "Coolify service user"; 7 + home = "/opt/docker-data/coolify"; 8 + extraGroups = [ "docker" ]; 9 + linger = true; 10 + openssh.authorizedKeys.keys = with import ../../../shared/ssh-keys.nix; [ 11 + personal.campus-comlab 12 + infra.termius 13 + ]; 14 + createHome = true; 15 + }; 16 + }

-23

hosts/stellapent-cier/configuration.nix

··· 108 108 # Enable touchpad support (enabled default in most desktopManager). 109 109 # services.xserver.libinput.enable = true; 110 110 111 - # Define a user account. Don't forget to set a password with ‘passwd’. 112 - # Might be obvious to some since I'm technically roleplaying on my 113 - # old HP laptop my overseas Filipino dad gave me in 2024. 114 - users.users.gildedguy = { 115 - isNormalUser = true; 116 - description = "Gildedguy (Michael Moy)"; # We're not impersonating the animatior here lol. 117 - extraGroups = [ 118 - "networkmanager" 119 - "wheel" 120 - "docker" 121 - ]; 122 - openssh = { 123 - authorizedKeys.keys = with import ../../shared/ssh-keys.nix; [ 124 - personal.y2022 125 - personal.passwordless 126 - work.recaptime-dev.crew 127 - rp.gildedguy 128 - ]; 129 - }; 130 - linger = true; 131 - 132 - }; 133 - 134 111 # logind adjustments for this laptop to run as a headless server while 135 112 # the lid is closed. 136 113 services.logind.settings.Login = {

+5

hosts/stellapent-cier/users/bog.nix

··· 1 + { config, pkgs, lib, zen-browser, dev-pkgs, ... }: 2 + 3 + { 4 + # Config coming soon, not yet imported to main 5 + }

+23 -2

hosts/stellapent-cier/users/gildedguy.nix

··· 1 1 { config, pkgs, lib, zen-browser, dev-pkgs, ... }: 2 2 3 3 { 4 - # This now configures the 'gildedguy' user within the NixOS module system 4 + # Might be obvious to some since I'm technically roleplaying on my 5 + # old HP laptop my overseas Filipino dad gave me in 2024. 6 + users.users.gildedguy = { 7 + isNormalUser = true; 8 + description = "Gildedguy (Michael Moy)"; # We're not impersonating the animatior here lol. 9 + extraGroups = [ 10 + "networkmanager" 11 + "wheel" 12 + "docker" 13 + ]; 14 + openssh = { 15 + authorizedKeys.keys = with import ../../../shared/ssh-keys.nix;; [ 16 + personal.y2022 17 + personal.passwordless 18 + personal.campus-comlab 19 + work.recaptime-dev.crew 20 + rp.gildedguy 21 + ]; 22 + }; 23 + linger = true; 24 + }; 25 + 5 26 home-manager.users.gildedguy = { 6 27 imports = [ 28 + zen-browser.homeModules.beta 7 29 ../../../shared/home-manager/main.nix 8 - zen-browser.homeModules.beta 9 30 ]; 10 31 11 32 home.username = "gildedguy";

+5

hosts/stellapent-cier/users/yupia.nix

··· 1 + { config, pkgs, lib, zen-browser, dev-pkgs, ... }: 2 + 3 + { 4 + # Config coming soon, not yet imported to main 5 + }

+2

shared/ssh-keys.nix

··· 7 7 y2022 = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEXuD3hJwInlcHs3wkXWAWNo8es3bPAd2e8ipjyqgGp2 ajhalili2006@andreijiroh.dev"; 8 8 passwordless = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDUnTexcVQTGT+UhX8MRPkMvM6FPuskbY2Dn0ScZ3+ot ~ajhalili2006 [passwordless key for sshfs]"; 9 9 releases = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHzLVfKtq8vBYeSrrVhwFwkpfu6TDLFgyjb3UmB+Jdhl releases@andreijiroh.dev"; 10 + campus-comlab = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFI1Mj7gTG1IwnxPyr2AsXDq2kBq98hnijhgkGklkhWH"; 10 11 }; 11 12 work = { 12 13 recaptime-dev = { ··· 20 21 }; 21 22 22 23 infra = { 24 + termius = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC+H0oixQCgHiZWk4+H6VupW+2Aibs7poK7kNPf+hJEv"; 23 25 gcp = "ssh-rsa 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 gildedguy@stellapent-cier"; 24 26 aws = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICx7San3UCFg3+vr5a07MoNBM9egqAeKHnu4Jhpx3Zwx devlab.aws"; 25 27 };

Configure Feed

Configure Feed