Jafner.net/dotfiles/flake.nix

{
  description = "Joey's Flake";
  inputs = {
    # Package repositories:
    nixpkgs.url = "github:NixOS/nixpkgs/nixos-24.11";
    nixpkgs-unstable.url = "github:NixOS/nixpkgs/nixos-unstable";
    home-manager = {
      url = "github:nix-community/home-manager/release-24.11";
      inputs.nixpkgs.follows = "nixpkgs";
    };

    # Applications:
    hyprland = {
      url = "github:hyprwm/Hyprland";
      inputs.nixpkgs.follows = "nixpkgs-unstable";
    };
    nixgl.url = "github:nix-community/nixGL";
    nix-flatpak.url = "github:gmodena/nix-flatpak";
    stylix = {
      url = "github:danth/stylix/release-24.11";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    zen-browser.url = "github:0xc000022070/zen-browser-flake";
    sops-nix = {
      url = "github:Mic92/sops-nix";
      inputs.nixpkgs.follows = "nixpkgs";
    };
    deploy-rs.url = "github:serokell/deploy-rs";
    ghostty.url = "github:ghostty-org/ghostty";
  };
  outputs = inputs@{
    nixpkgs,
    nixpkgs-unstable,
    home-manager,
    nixgl,
    ghostty,
    deploy-rs,
    self, 
    ...
  }: {
    nixosConfigurations = {
      desktop = let
        sys = {
          username = "joey";
          hostname = "desktop";
          kernelPackage = "linux_zen"; # Read more: https://nixos.wiki/wiki/Linux_kernel; Other options: https://mynixos.com/nixpkgs/packages/linuxKernel.packages;
          sshPrivateKey = ".ssh/joey.desktop@jafner.net";
        };
        system = "x86_64-linux";
        pkgs = import inputs.nixpkgs {
          inherit system;
          overlays = [ nixgl.overlay ];
          config = { allowUnfreePredicate = (_: true); };
        };
      in nixpkgs.lib.nixosSystem {
        modules = [
          ./systems/desktop/configuration.nix
          inputs.nix-flatpak.nixosModules.nix-flatpak
          inputs.home-manager.nixosModules.home-manager
          inputs.sops-nix.nixosModules.sops
          {
            home-manager.sharedModules = [
              inputs.nix-flatpak.homeManagerModules.nix-flatpak
              inputs.stylix.homeManagerModules.stylix
            ];
            home-manager.extraSpecialArgs = { inherit pkgs inputs sys; };
          }
          ./modules/system.nix
          ./modules/git.nix
          ./modules/sops.nix
          ./modules/docker.nix
          ./modules/smb.nix
          ./modules/iscsi.nix
          ./modules/services/minecraft-server.nix
          ./modules/programs/spotify.nix
          ./modules/services/flatpak.nix
          ./modules/services/minecraft-server.nix
          ./systems/desktop/hardware/audio.nix
          ./systems/desktop/hardware/goxlr-mini.nix
          ./systems/desktop/hardware/libinput.nix
          ./systems/desktop/hardware/printing.nix
          ./systems/desktop/hardware/razer.nix
          ./systems/desktop/hardware/wooting.nix
          ./systems/desktop/hardware/xpad.nix
          ./systems/desktop/hardware.nix
          ./systems/desktop/desktop-environment.nix
          ./systems/desktop/terminal-environment.nix
          ./systems/desktop/theme.nix
          ./systems/desktop/filesystems.nix
          ./systems/desktop/defaultApplications.nix
          ./systems/desktop/clips.nix
        ];
        inherit system;
        specialArgs = { inherit pkgs inputs; 
          sys = sys;
          docker = { 
            username = sys.username; 
          };
          sops = { 
            username = sys.username; 
            sshPrivateKey = sys.sshPrivateKey; 
            repoRoot = "/home/joey/Git/Jafner.net"; 
          };
          git = { 
            username = sys.username; 
            realname = "Joey Hafner"; 
            email = "joey@jafner.net"; 
            sshPrivateKey = sys.sshPrivateKey; 
            signingKey = "B0BBF464024BCEAE"; 
          };
          smb = {
            secretsFile = ./systems/desktop/smb.secrets;
            automount_opts = "x-systemd.automount,noauto,x-systemd.idle-timeout=60,x-systemd.device-timeout=5s,x-systemd.mount-timeout=5s";
            permissions_opts = "credentials=/run/secrets/smb,uid=1000,gid=1000";
          };
          iscsi = {
            iqn = "iqn.2020-03.net.jafner:joey-desktop";
            portalIP = "192.168.1.12:3260";
            mountPath = "/mnt/iscsi"; # Unused until I can figure out how to write a proper iscsi fileSystems block.
            fsType = "ext4"; # Unused until I can figure out how to write a proper iscsi fileSystems block.
          };
        };
      };

      # # build with:
      # # nix build .#nixosConfigurations.iso.config.system.build.isoImage
      # iso = let 
      #   sys = {
      #     username = "admin";
      #     hostname = "installer";
      #     signingKey = "";
      #     kernelPackage = "linux_6_12"; # Read more: https://nixos.wiki/wiki/Linux_kernel; Other options: https://mynixos.com/nixpkgs/packages/linuxKernel.packages;
      #     sshPrivateKey = ".ssh/joey.desktop@jafner.net";
      #   };
      #   system = "x86_64-linux";
      #   pkgs = import inputs.nixpkgs {
      #     inherit system;
      #     config = { allowUnfreePredicate = (_: true); };
      #   };
      # in nixpkgs.lib.nixosSystem {
      #   modules = [
      #     "${nixpkgs}/nixos/modules/installer/cd-dvd/installation-cd-minimal.nix"
      #     "${nixpkgs}/nixos/modules/installer/cd-dvd/channel.nix"
      #     { imports = [ ./modules/system.nix ]; }
      #   ];
      #   inherit system pkgs;
      #   specialArgs = { inherit sys; };
      # };

      # # build with:
      # # nix build .#nixosConfigurations.cloudimage.config.system.build.digitalOceanImage
      # cloudimage = let 
      #   sys = {
      #     username = "admin";
      #     hostname = "digital-ocean";
      #     signingKey = "";
      #     kernelPackage = "linux_6_12"; # Read more: https://nixos.wiki/wiki/Linux_kernel; Other options: https://mynixos.com/nixpkgs/packages/linuxKernel.packages;
      #     sshPrivateKey = ".ssh/joey.desktop@jafner.net";
      #   };
      #   system = "x86_64-linux";
      #   pkgs = import inputs.nixpkgs {
      #     inherit system;
      #     config = { allowUnfreePredicate = (_: true); };
      #   };
      # in nixpkgs.lib.nixosSystem {
      #   modules = [
      #     "${nixpkgs}/nixos/modules/virtualisation/digital-ocean-image.nix"
      #     { imports = [ ./modules/system.nix ]; }
      #   ];
      #   inherit system pkgs;
      #   specialArgs = { inherit sys; };
      # };
      # artificer = let 
      #   sys = {
      #     username = "admin";
      #     hostname = "artificer";
      #     signingKey = "";
      #     kernelPackage = "linux_6_12"; # Read more: https://nixos.wiki/wiki/Linux_kernel; Other options: https://mynixos.com/nixpkgs/packages/linuxKernel.packages;
      #     sshPrivateKey = ".ssh/admin@artificer";
      #   };
      #   system = "x86_64-linux";
      #   pkgs = import inputs.nixpkgs {
      #     inherit system;
      #     config = { allowUnfreePredicate = (_: true); };
      #   };
      # in nixpkgs.lib.nixosSystem {
      #   modules = [
      #     ./systems/artificer/configuration.nix
      #     inputs.home-manager.nixosModules.home-manager
      #     inputs.sops-nix.nixosModules.sops
      #     "${nixpkgs}/nixos/modules/virtualisation/digital-ocean-image.nix"
      #     { imports = [ ./modules/system.nix ]; 
      #       sys = sys; }
      #     { imports = [ ./modules/git.nix ]; 
      #       git = { 
      #         username = sys.username; 
      #         realname = sys.hostname; 
      #         email = "noreply@jafner.net"; 
      #         sshPrivateKey = sys.ssyPrivateKey; 
      #         signingKey = ""; 
      #       }; }
      #     { imports = [ ./modules/sops.nix ]; 
      #       sops = { 
      #         username = sys.username; 
      #         sshPrivateKey = sys.sshPrivateKey; 
      #         repoRoot = "/home/admin/Jafner.net"; 
      #       }; }
      #     { imports = [ ./modules/docker.nix ]; 
      #       docker = { 
      #         username = sys.username; 
      #       }; }
      #   ];
      #   inherit system pkgs;
      #   specialArgs = { inherit sys; };
      # };
      fighter = let 
        sys = {
          username = "admin";
          hostname = "fighter";
          sshPrivateKey = ".ssh/admin@fighter";
          kernelPackage = "linux_6_12"; # Read more: https://nixos.wiki/wiki/Linux_kernel; Other options: https://mynixos.com/nixpkgs/packages/linuxKernel.packages;
        };
        system = "x86_64-linux";
        pkgs = import inputs.nixpkgs {
          inherit system;
          config = { allowUnfreePredicate = (_: true); allowUnfree = true; };
        };
      in nixpkgs.lib.nixosSystem {
        modules = [
          ./systems/fighter/configuration.nix
          inputs.home-manager.nixosModules.home-manager
          inputs.sops-nix.nixosModules.sops
          ./modules/system.nix 
          ./modules/git.nix 
          ./modules/sops.nix
          ./modules/docker.nix
          ./systems/fighter/stacks.nix
          ./modules/networking.nix 
          #./modules/iscsi.nix
        ];
        inherit system pkgs;
        specialArgs = { 
          sys = sys; 
          # iscsi = {
          #   iqn = "iqn.2020-03.net.jafner:fighter";
          #   portalIP = "192.168.1.12:3260";
          #   mountPath = "/mnt/iscsi";
          #   fsType = "ext4";
          # };
          networking = {
            hostname = sys.hostname;
            interface = "enp3s0";
            mac = "00:02:c9:56:bf:9a";
            ip = "192.168.1.23";
            dns = [ "10.0.0.1" ];
          };
          stacks = {
            appdata = "/appdata";
            library = {
              digitalModels = "/mnt/3DPrinting";
              av = "/mnt/av";
              books = "/mnt/books";
              movies = "/mnt/movies";
              music = "/mnt/music";
              shows = "/mnt/shows";
              torrenting = "/mnt/torrenting";
            };
          };
          docker = { 
            username = sys.username; 
          };
          sops = { 
            username = sys.username; 
            sshPrivateKey = sys.sshPrivateKey; 
            repoRoot = "/home/admin/Jafner.net"; 
          };
          git = { 
            username = sys.username; 
            realname = sys.hostname; 
            email = "noreply@jafner.net"; 
            sshPrivateKey = sys.sshPrivateKey; 
            signingKey = ""; 
          };
          smb = {
            secretsFile = ./systems/fighter/smb.secrets;
            automount_opts = "x-systemd.automount,noauto,x-systemd.idle-timeout=60,x-systemd.device-timeout=5s,x-systemd.mount-timeout=5s";
            permissions_opts = "credentials=/run/secrets/smb,uid=1000,gid=1000";
          };
          iscsi = {
            iqn = "iqn.2020-03.net.jafner:fighter";
            portalIP = "192.168.1.12:3260";
            mountPath = "/mnt/iscsi"; # Unused until I can figure out how to write a proper iscsi fileSystems block.
            fsType = "ext4"; # Unused until I can figure out how to write a proper iscsi fileSystems block.
          };
        };
      };
    };
    deploy = {
      nodes = {
        artificer = {
          hostname = "143.198.68.202";
          profilesOrder = [ "system" ];
          profiles.system = {
            user = "root";
            sshUser = "admin";
            path = deploy-rs.lib.x86_64-linux.activate.nixos self.nixosConfigurations.artificer;
          };
        };
      };
      fastConnection = true;
      interactiveSudo = false;
      autoRollback = true;
      magicRollback = true;
      remoteBuild = true;
      confirmTimeout = 60;
    };
    checks = builtins.mapAttrs (system: deployLib: deployLib.deployChecks self.deploy) deploy-rs.lib;
  };
}
Flake update with new key format System update 2024-12-31 10:50:01 -08:00			`{`
Update from joey-laptop 2024-09-13 14:55:27 -07:00			`description = "Joey's Flake";`
Flake update with new key format System update 2024-12-31 10:50:01 -08:00			`inputs = {`
Update flake: - Pin Stylix to release-24.11 branch - Add vars.repo for information about the flake repo. - Refactor "vars.desktop" with a system-specific "sysVars" attrset. - Move "{home-manager\|nixos}/{laptop\|desktop}" to "{laptop\|desktop}/{home-manager\|nixos}". 2025-01-06 13:15:05 -08:00			`# Package repositories:`
Update dotfiles for desktop with current working nixos config 2024-12-05 12:52:17 -08:00			`nixpkgs.url = "github:NixOS/nixpkgs/nixos-24.11";`
Update from joey-laptop 2024-09-13 14:55:27 -07:00			`nixpkgs-unstable.url = "github:NixOS/nixpkgs/nixos-unstable";`
Update from joey@joey-laptop: Init basic plasma-manager config 2024-09-16 16:45:05 -07:00			`home-manager = {`
Update dotfiles for desktop with current working nixos config 2024-12-05 12:52:17 -08:00			`url = "github:nix-community/home-manager/release-24.11";`
Update from joey@joey-laptop: Init basic plasma-manager config 2024-09-16 16:45:05 -07:00			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
Update flake: - Pin Stylix to release-24.11 branch - Add vars.repo for information about the flake repo. - Refactor "vars.desktop" with a system-specific "sysVars" attrset. - Move "{home-manager\|nixos}/{laptop\|desktop}" to "{laptop\|desktop}/{home-manager\|nixos}". 2025-01-06 13:15:05 -08:00
			`# Applications:`
			`hyprland = {`
			`url = "github:hyprwm/Hyprland";`
			`inputs.nixpkgs.follows = "nixpkgs-unstable";`
			`};`
#10 Reorganize Nix code - Flake to build personal systems moved to `dotfiles/` - Flake to build silver-flame cluster moved to `homelab/local-hosts/silver-flame - Delete undercooked "digitalocean" and "iso" image builds 2024-10-28 18:04:04 -07:00			`nixgl.url = "github:nix-community/nixGL";`
Update from joey@joey-laptop: Add Flatpak, Zen, zsh customization, kdeconnect 2024-09-14 12:43:44 -07:00			`nix-flatpak.url = "github:gmodena/nix-flatpak";`
Update from joey@joey-laptop: Init basic plasma-manager config 2024-09-16 16:45:05 -07:00			`stylix = {`
Update flake: - Pin Stylix to release-24.11 branch - Add vars.repo for information about the flake repo. - Refactor "vars.desktop" with a system-specific "sysVars" attrset. - Move "{home-manager\|nixos}/{laptop\|desktop}" to "{laptop\|desktop}/{home-manager\|nixos}". 2025-01-06 13:15:05 -08:00			`url = "github:danth/stylix/release-24.11";`
Update from joey@joey-laptop: Init basic plasma-manager config 2024-09-16 16:45:05 -07:00			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
Big Update: - Switch Zen browser from flatpak to 0xc000022070's flake. - Add ffmpeg scripts for transcoding and uploading video. - Add ffmpeg-full package. - Delete workaround for nixGL with OBS-studio. 2024-12-07 00:39:36 -08:00			`zen-browser.url = "github:0xc000022070/zen-browser-flake";`
#10 Reorganize Nix code - Flake to build personal systems moved to `dotfiles/` - Flake to build silver-flame cluster moved to `homelab/local-hosts/silver-flame - Delete undercooked "digitalocean" and "iso" image builds 2024-10-28 18:04:04 -07:00			`sops-nix = {`
Flake update with new key format System update 2024-12-31 10:50:01 -08:00			`url = "github:Mic92/sops-nix";`
#10 Reorganize Nix code - Flake to build personal systems moved to `dotfiles/` - Flake to build silver-flame cluster moved to `homelab/local-hosts/silver-flame - Delete undercooked "digitalocean" and "iso" image builds 2024-10-28 18:04:04 -07:00			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
Flake update with new key format System update 2024-12-31 10:50:01 -08:00			`deploy-rs.url = "github:serokell/deploy-rs";`
System update, disable stylix module 2025-01-02 15:27:44 -08:00			`ghostty.url = "github:ghostty-org/ghostty";`
Update from joey-laptop 2024-09-13 14:55:27 -07:00			`};`
Flake update with new key format System update 2024-12-31 10:50:01 -08:00			`outputs = inputs@{`
			`nixpkgs,`
			`nixpkgs-unstable,`
			`home-manager,`
#10 Reorganize Nix code - Flake to build personal systems moved to `dotfiles/` - Flake to build silver-flame cluster moved to `homelab/local-hosts/silver-flame - Delete undercooked "digitalocean" and "iso" image builds 2024-10-28 18:04:04 -07:00			`nixgl,`
System update, disable stylix module 2025-01-02 15:27:44 -08:00			`ghostty,`
Artificer NixOS host: init, configure docker 2025-01-23 22:48:53 -08:00			`deploy-rs,`
			`self,`
Flake update with new key format System update 2024-12-31 10:50:01 -08:00			`...`
Feature (WIP): Consolidate and standardize vars and modules in flake. 2025-02-16 00:14:45 -08:00			`}: {`
Update from joey-laptop 2024-09-13 14:55:27 -07:00			`nixosConfigurations = {`
Fix (Huge): Re-enable desktop. - Enable desktop system in flake with all modules imported in flake file, and arguments for those modules passed via specialArgs. - Disable fileSystems mounts for iscsi. - Refactor smb.nix to define all working shares. (TODO: Figure out how to enable a subset of shares by arguments passed to module). - Roll cloudflare_stream.token. - Extract all module calls out of configuration.nix for desktop. Remove configuration nodes duplicated in system.nix. - Fix dependence on deprecated "sys" subattributes in desktop-environment.nix. - Remove iscsi configuration from filesystems.nix. Using iscsi module instead. - Update terminal-environment.nix to use git attrset where appropriate. - Hardcode wallpaper file in theme.nix. - 2025-02-16 15:14:46 -08:00			`desktop = let`
			`sys = {`
			`username = "joey";`
			`hostname = "desktop";`
			`kernelPackage = "linux_zen"; # Read more: https://nixos.wiki/wiki/Linux_kernel; Other options: https://mynixos.com/nixpkgs/packages/linuxKernel.packages;`
			`sshPrivateKey = ".ssh/joey.desktop@jafner.net";`
			`};`
			`system = "x86_64-linux";`
			`pkgs = import inputs.nixpkgs {`
			`inherit system;`
			`overlays = [ nixgl.overlay ];`
			`config = { allowUnfreePredicate = (_: true); };`
			`};`
			`in nixpkgs.lib.nixosSystem {`
			`modules = [`
			`./systems/desktop/configuration.nix`
			`inputs.nix-flatpak.nixosModules.nix-flatpak`
			`inputs.home-manager.nixosModules.home-manager`
			`inputs.sops-nix.nixosModules.sops`
			`{`
			`home-manager.sharedModules = [`
			`inputs.nix-flatpak.homeManagerModules.nix-flatpak`
			`inputs.stylix.homeManagerModules.stylix`
			`];`
			`home-manager.extraSpecialArgs = { inherit pkgs inputs sys; };`
			`}`
			`./modules/system.nix`
			`./modules/git.nix`
			`./modules/sops.nix`
			`./modules/docker.nix`
			`./modules/smb.nix`
			`./modules/iscsi.nix`
			`./modules/services/minecraft-server.nix`
			`./modules/programs/spotify.nix`
			`./modules/services/flatpak.nix`
			`./modules/services/minecraft-server.nix`
			`./systems/desktop/hardware/audio.nix`
			`./systems/desktop/hardware/goxlr-mini.nix`
			`./systems/desktop/hardware/libinput.nix`
			`./systems/desktop/hardware/printing.nix`
			`./systems/desktop/hardware/razer.nix`
			`./systems/desktop/hardware/wooting.nix`
			`./systems/desktop/hardware/xpad.nix`
			`./systems/desktop/hardware.nix`
			`./systems/desktop/desktop-environment.nix`
			`./systems/desktop/terminal-environment.nix`
			`./systems/desktop/theme.nix`
			`./systems/desktop/filesystems.nix`
			`./systems/desktop/defaultApplications.nix`
			`./systems/desktop/clips.nix`
			`];`
			`inherit system;`
			`specialArgs = { inherit pkgs inputs;`
			`sys = sys;`
			`docker = {`
			`username = sys.username;`
			`};`
			`sops = {`
			`username = sys.username;`
			`sshPrivateKey = sys.sshPrivateKey;`
			`repoRoot = "/home/joey/Git/Jafner.net";`
			`};`
			`git = {`
			`username = sys.username;`
			`realname = "Joey Hafner";`
			`email = "joey@jafner.net";`
			`sshPrivateKey = sys.sshPrivateKey;`
			`signingKey = "B0BBF464024BCEAE";`
			`};`
			`smb = {`
Enhancement: Use `smb.secretsFile` in smb module to define path for smb credentials file. 2025-02-16 15:21:24 -08:00			`secretsFile = ./systems/desktop/smb.secrets;`
Fix (Huge): Re-enable desktop. - Enable desktop system in flake with all modules imported in flake file, and arguments for those modules passed via specialArgs. - Disable fileSystems mounts for iscsi. - Refactor smb.nix to define all working shares. (TODO: Figure out how to enable a subset of shares by arguments passed to module). - Roll cloudflare_stream.token. - Extract all module calls out of configuration.nix for desktop. Remove configuration nodes duplicated in system.nix. - Fix dependence on deprecated "sys" subattributes in desktop-environment.nix. - Remove iscsi configuration from filesystems.nix. Using iscsi module instead. - Update terminal-environment.nix to use git attrset where appropriate. - Hardcode wallpaper file in theme.nix. - 2025-02-16 15:14:46 -08:00			`automount_opts = "x-systemd.automount,noauto,x-systemd.idle-timeout=60,x-systemd.device-timeout=5s,x-systemd.mount-timeout=5s";`
			`permissions_opts = "credentials=/run/secrets/smb,uid=1000,gid=1000";`
			`};`
			`iscsi = {`
			`iqn = "iqn.2020-03.net.jafner:joey-desktop";`
			`portalIP = "192.168.1.12:3260";`
			`mountPath = "/mnt/iscsi"; # Unused until I can figure out how to write a proper iscsi fileSystems block.`
			`fsType = "ext4"; # Unused until I can figure out how to write a proper iscsi fileSystems block.`
			`};`
			`};`
			`};`
Flake update: - Add usr.admin, jafnerKeys global flake vars. - Add hostname, sshKey, authorizedKeys, dockerData, ssh.{path,privateKey,publicKey} sys vars for desktop. - Add sops-nix module to desktop. - Add authorizedKeys to sys vars for iso, cloudimage configurations. - Implement basic config for iso, cloudimage configurations. - Init fighter configuration. 2025-01-30 15:07:48 -08:00
Feature: Implement new modules for fighter. - Fighter uses: system, git, sops, docker, networking, and iscsi modules; plus its own stacks module which we've updated to use the new design concept. - I can't figure out how to put all of the module code together (importing and defining the vars), so we're compromising. 2025-02-16 01:26:30 -08:00			`# # build with:`
			`# # nix build .#nixosConfigurations.iso.config.system.build.isoImage`
			`# iso = let`
			`# sys = {`
			`# username = "admin";`
			`# hostname = "installer";`
			`# signingKey = "";`
			`# kernelPackage = "linux_6_12"; # Read more: https://nixos.wiki/wiki/Linux_kernel; Other options: https://mynixos.com/nixpkgs/packages/linuxKernel.packages;`
			`# sshPrivateKey = ".ssh/joey.desktop@jafner.net";`
			`# };`
			`# system = "x86_64-linux";`
			`# pkgs = import inputs.nixpkgs {`
			`# inherit system;`
			`# config = { allowUnfreePredicate = (_: true); };`
			`# };`
			`# in nixpkgs.lib.nixosSystem {`
			`# modules = [`
			`# "${nixpkgs}/nixos/modules/installer/cd-dvd/installation-cd-minimal.nix"`
			`# "${nixpkgs}/nixos/modules/installer/cd-dvd/channel.nix"`
			`# { imports = [ ./modules/system.nix ]; }`
			`# ];`
			`# inherit system pkgs;`
			`# specialArgs = { inherit sys; };`
			`# };`
Update: Flake update Feature: add missing components to cloudimage config 2025-01-23 13:46:47 -08:00
Feature: Implement new modules for fighter. - Fighter uses: system, git, sops, docker, networking, and iscsi modules; plus its own stacks module which we've updated to use the new design concept. - I can't figure out how to put all of the module code together (importing and defining the vars), so we're compromising. 2025-02-16 01:26:30 -08:00			`# # build with:`
			`# # nix build .#nixosConfigurations.cloudimage.config.system.build.digitalOceanImage`
			`# cloudimage = let`
			`# sys = {`
			`# username = "admin";`
			`# hostname = "digital-ocean";`
			`# signingKey = "";`
			`# kernelPackage = "linux_6_12"; # Read more: https://nixos.wiki/wiki/Linux_kernel; Other options: https://mynixos.com/nixpkgs/packages/linuxKernel.packages;`
			`# sshPrivateKey = ".ssh/joey.desktop@jafner.net";`
			`# };`
			`# system = "x86_64-linux";`
			`# pkgs = import inputs.nixpkgs {`
			`# inherit system;`
			`# config = { allowUnfreePredicate = (_: true); };`
			`# };`
			`# in nixpkgs.lib.nixosSystem {`
			`# modules = [`
			`# "${nixpkgs}/nixos/modules/virtualisation/digital-ocean-image.nix"`
			`# { imports = [ ./modules/system.nix ]; }`
			`# ];`
			`# inherit system pkgs;`
			`# specialArgs = { inherit sys; };`
			`# };`
			`# artificer = let`
			`# sys = {`
			`# username = "admin";`
			`# hostname = "artificer";`
			`# signingKey = "";`
			`# kernelPackage = "linux_6_12"; # Read more: https://nixos.wiki/wiki/Linux_kernel; Other options: https://mynixos.com/nixpkgs/packages/linuxKernel.packages;`
			`# sshPrivateKey = ".ssh/admin@artificer";`
			`# };`
			`# system = "x86_64-linux";`
			`# pkgs = import inputs.nixpkgs {`
			`# inherit system;`
			`# config = { allowUnfreePredicate = (_: true); };`
			`# };`
			`# in nixpkgs.lib.nixosSystem {`
			`# modules = [`
			`# ./systems/artificer/configuration.nix`
			`# inputs.home-manager.nixosModules.home-manager`
			`# inputs.sops-nix.nixosModules.sops`
			`# "${nixpkgs}/nixos/modules/virtualisation/digital-ocean-image.nix"`
			`# { imports = [ ./modules/system.nix ];`
			`# sys = sys; }`
			`# { imports = [ ./modules/git.nix ];`
			`# git = {`
			`# username = sys.username;`
			`# realname = sys.hostname;`
			`# email = "noreply@jafner.net";`
			`# sshPrivateKey = sys.ssyPrivateKey;`
			`# signingKey = "";`
			`# }; }`
			`# { imports = [ ./modules/sops.nix ];`
			`# sops = {`
			`# username = sys.username;`
			`# sshPrivateKey = sys.sshPrivateKey;`
			`# repoRoot = "/home/admin/Jafner.net";`
			`# }; }`
			`# { imports = [ ./modules/docker.nix ];`
			`# docker = {`
			`# username = sys.username;`
			`# }; }`
			`# ];`
			`# inherit system pkgs;`
			`# specialArgs = { inherit sys; };`
			`# };`
Flake update: - Add usr.admin, jafnerKeys global flake vars. - Add hostname, sshKey, authorizedKeys, dockerData, ssh.{path,privateKey,publicKey} sys vars for desktop. - Add sops-nix module to desktop. - Add authorizedKeys to sys vars for iso, cloudimage configurations. - Implement basic config for iso, cloudimage configurations. - Init fighter configuration. 2025-01-30 15:07:48 -08:00			`fighter = let`
			`sys = {`
			`username = "admin";`
			`hostname = "fighter";`
Feature (WIP): Consolidate and standardize vars and modules in flake. 2025-02-16 00:14:45 -08:00			`sshPrivateKey = ".ssh/admin@fighter";`
Fix: Whoops. Wrong system-kernel matchups. 2025-02-06 15:59:08 -08:00			`kernelPackage = "linux_6_12"; # Read more: https://nixos.wiki/wiki/Linux_kernel; Other options: https://mynixos.com/nixpkgs/packages/linuxKernel.packages;`
Flake update: - Add usr.admin, jafnerKeys global flake vars. - Add hostname, sshKey, authorizedKeys, dockerData, ssh.{path,privateKey,publicKey} sys vars for desktop. - Add sops-nix module to desktop. - Add authorizedKeys to sys vars for iso, cloudimage configurations. - Implement basic config for iso, cloudimage configurations. - Init fighter configuration. 2025-01-30 15:07:48 -08:00			`};`
			`system = "x86_64-linux";`
			`pkgs = import inputs.nixpkgs {`
			`inherit system;`
Enhancement: Allow unfree in nixpkgs for fighter. 2025-02-07 14:00:25 -08:00			`config = { allowUnfreePredicate = (_: true); allowUnfree = true; };`
Flake update: - Add usr.admin, jafnerKeys global flake vars. - Add hostname, sshKey, authorizedKeys, dockerData, ssh.{path,privateKey,publicKey} sys vars for desktop. - Add sops-nix module to desktop. - Add authorizedKeys to sys vars for iso, cloudimage configurations. - Implement basic config for iso, cloudimage configurations. - Init fighter configuration. 2025-01-30 15:07:48 -08:00			`};`
			`in nixpkgs.lib.nixosSystem {`
			`modules = [`
			`./systems/fighter/configuration.nix`
Fix: Add home-manager module to fighter 2025-01-31 11:27:47 -08:00			`inputs.home-manager.nixosModules.home-manager`
Fix: IDEK 2025-02-06 01:38:06 -08:00			`inputs.sops-nix.nixosModules.sops`
Feature: Implement new modules for fighter. - Fighter uses: system, git, sops, docker, networking, and iscsi modules; plus its own stacks module which we've updated to use the new design concept. - I can't figure out how to put all of the module code together (importing and defining the vars), so we're compromising. 2025-02-16 01:26:30 -08:00			`./modules/system.nix`
			`./modules/git.nix`
			`./modules/sops.nix`
			`./modules/docker.nix`
			`./systems/fighter/stacks.nix`
			`./modules/networking.nix`
Fix: Rework iscsi mount for fighter. 2025-02-16 02:43:07 -08:00			`#./modules/iscsi.nix`
Flake update: - Add usr.admin, jafnerKeys global flake vars. - Add hostname, sshKey, authorizedKeys, dockerData, ssh.{path,privateKey,publicKey} sys vars for desktop. - Add sops-nix module to desktop. - Add authorizedKeys to sys vars for iso, cloudimage configurations. - Implement basic config for iso, cloudimage configurations. - Init fighter configuration. 2025-01-30 15:07:48 -08:00			`];`
			`inherit system pkgs;`
Feature: Implement new modules for fighter. - Fighter uses: system, git, sops, docker, networking, and iscsi modules; plus its own stacks module which we've updated to use the new design concept. - I can't figure out how to put all of the module code together (importing and defining the vars), so we're compromising. 2025-02-16 01:26:30 -08:00			`specialArgs = {`
			`sys = sys;`
Fix: Rework iscsi mount for fighter. 2025-02-16 02:43:07 -08:00			`# iscsi = {`
			`# iqn = "iqn.2020-03.net.jafner:fighter";`
			`# portalIP = "192.168.1.12:3260";`
			`# mountPath = "/mnt/iscsi";`
			`# fsType = "ext4";`
			`# };`
Feature: Implement new modules for fighter. - Fighter uses: system, git, sops, docker, networking, and iscsi modules; plus its own stacks module which we've updated to use the new design concept. - I can't figure out how to put all of the module code together (importing and defining the vars), so we're compromising. 2025-02-16 01:26:30 -08:00			`networking = {`
			`hostname = sys.hostname;`
			`interface = "enp3s0";`
			`mac = "00:02:c9:56:bf:9a";`
			`ip = "192.168.1.23";`
			`dns = [ "10.0.0.1" ];`
			`};`
			`stacks = {`
			`appdata = "/appdata";`
			`library = {`
			`digitalModels = "/mnt/3DPrinting";`
			`av = "/mnt/av";`
			`books = "/mnt/books";`
			`movies = "/mnt/movies";`
			`music = "/mnt/music";`
			`shows = "/mnt/shows";`
			`torrenting = "/mnt/torrenting";`
			`};`
			`};`
			`docker = {`
			`username = sys.username;`
			`};`
			`sops = {`
			`username = sys.username;`
			`sshPrivateKey = sys.sshPrivateKey;`
			`repoRoot = "/home/admin/Jafner.net";`
			`};`
			`git = {`
			`username = sys.username;`
			`realname = sys.hostname;`
			`email = "noreply@jafner.net";`
			`sshPrivateKey = sys.sshPrivateKey;`
			`signingKey = "";`
			`};`
Enhancement: Use `smb.secretsFile` in smb module to define path for smb credentials file. 2025-02-16 15:21:24 -08:00			`smb = {`
			`secretsFile = ./systems/fighter/smb.secrets;`
			`automount_opts = "x-systemd.automount,noauto,x-systemd.idle-timeout=60,x-systemd.device-timeout=5s,x-systemd.mount-timeout=5s";`
			`permissions_opts = "credentials=/run/secrets/smb,uid=1000,gid=1000";`
			`};`
			`iscsi = {`
			`iqn = "iqn.2020-03.net.jafner:fighter";`
			`portalIP = "192.168.1.12:3260";`
			`mountPath = "/mnt/iscsi"; # Unused until I can figure out how to write a proper iscsi fileSystems block.`
			`fsType = "ext4"; # Unused until I can figure out how to write a proper iscsi fileSystems block.`
			`};`
Feature: Implement new modules for fighter. - Fighter uses: system, git, sops, docker, networking, and iscsi modules; plus its own stacks module which we've updated to use the new design concept. - I can't figure out how to put all of the module code together (importing and defining the vars), so we're compromising. 2025-02-16 01:26:30 -08:00			`};`
Flake update: - Add usr.admin, jafnerKeys global flake vars. - Add hostname, sshKey, authorizedKeys, dockerData, ssh.{path,privateKey,publicKey} sys vars for desktop. - Add sops-nix module to desktop. - Add authorizedKeys to sys vars for iso, cloudimage configurations. - Implement basic config for iso, cloudimage configurations. - Init fighter configuration. 2025-01-30 15:07:48 -08:00			`};`
Artificer NixOS host: init, configure docker 2025-01-23 22:48:53 -08:00			`};`
			`deploy = {`
			`nodes = {`
			`artificer = {`
			`hostname = "143.198.68.202";`
			`profilesOrder = [ "system" ];`
			`profiles.system = {`
			`user = "root";`
			`sshUser = "admin";`
			`path = deploy-rs.lib.x86_64-linux.activate.nixos self.nixosConfigurations.artificer;`
			`};`
			`};`
			`};`
			`fastConnection = true;`
			`interactiveSudo = false;`
			`autoRollback = true;`
			`magicRollback = true;`
			`remoteBuild = true;`
			`confirmTimeout = 60;`
Update from joey@joey-laptop: Switch to home-manager standalone + flake (no nixos module) 2024-09-16 13:45:18 -07:00			`};`
Artificer NixOS host: init, configure docker 2025-01-23 22:48:53 -08:00			`checks = builtins.mapAttrs (system: deployLib: deployLib.deployChecks self.deploy) deploy-rs.lib;`
Update from joey-laptop 2024-09-13 14:55:27 -07:00			`};`
			`}`