niksos/hosts/chmura/configuration.nix

82 lines
1.8 KiB
Nix
Raw Normal View History

2023-07-13 12:49:20 +02:00
{
config,
...
}: let
2024-07-15 23:18:25 +02:00
inherit (config.poz.other.system) username;
in {
2024-08-25 22:34:44 +02:00
nixpkgs.config = {
permittedInsecurePackages = [
"olm-3.2.16"
];
2023-09-13 20:58:03 +02:00
# fuck broadcom
2024-08-25 22:34:44 +02:00
allowUnfree = true;
2023-09-13 20:58:03 +02:00
};
2023-07-13 12:49:20 +02:00
users.users.${username} = {
extraGroups = [ "docker" ];
};
2023-07-13 12:49:20 +02:00
2024-07-16 08:07:53 +02:00
services.caddy = let
redirToFlake = ''
redir https://git.jacekpoz.pl/jacekpoz/niksos
'';
in {
enable = true;
2024-04-14 18:49:29 +02:00
virtualHosts = {
"test.jacekpoz.pl".extraConfig = ''
reverse_proxy * localhost:3001
'';
"f.jacekpoz.pl".extraConfig = ''
root * /srv/files
2024-04-14 18:49:29 +02:00
file_server
'';
2024-04-14 18:49:29 +02:00
"flake.jacekpoz.pl".extraConfig = redirToFlake;
"flake.jpoz.pl".extraConfig = redirToFlake;
};
};
2023-07-14 23:12:41 +02:00
powerManagement.cpuFreqGovernor = "performance";
2023-07-15 23:42:18 +02:00
virtualisation = {
2023-10-03 19:22:24 +02:00
podman = {
enable = true;
dockerCompat = true;
};
oci-containers.backend = "podman";
};
2023-07-14 13:30:53 +02:00
networking.firewall.allowedTCPPorts = [ 80 443 22 ];
2023-07-13 12:49:20 +02:00
2024-07-15 23:18:25 +02:00
poz = {
other.home-manager.enable = true;
2023-11-25 17:12:09 +01:00
programs = {
agenix.enable = true;
git = {
enable = true;
defaultBranch = "master";
};
2023-11-25 17:12:09 +01:00
starship.enable = true;
zsh.enable = true;
btop.enable = true;
neovim = {
enable = true;
enableLsp = false;
};
2023-11-25 17:12:09 +01:00
};
services = {
ssh = {
agent.enable = false;
daemon = {
enable = true;
ports = [ 7312 ];
};
};
syncthing.enable = true;
};
2023-11-25 17:12:09 +01:00
};
system.stateVersion = "23.11";
2023-07-13 12:49:20 +02:00
}