Move Nix files back to the root of the project

hosts/nixedo/configuration.nix

@@ -0,0 +1,60 @@
+# Edit this configuration file to define what should be installed on
+# your system.  Help is available in the configuration.nix(5) man page
+# and in the NixOS manual (accessible by running ‘nixos-help’).
+
+{ inputs, ... }:
+
+{
+  imports = [
+    ./hardware-configuration.nix
+    ./secrets.nix
+    ./modules/acme.nix
+
+    ../common
+    ../../users/git
+    ../../users/opdavies
+  ];
+
+  nixosModules = {
+    audiobookshelf.enable = true;
+    beaverhabits.enable = true;
+    docker.enable = true;
+    dwm.enable = true;
+    freshrss.enable = true;
+    gitea.enable = true;
+    immich.enable = true;
+    jellyfin.enable = true;
+    paperless.enable = true;
+    pihole.enable = true;
+    tubearchivist-container.enable = true;
+    vaultwarden.enable = true;
+  };
+
+  programs.dconf.enable = true;
+
+  services.logind.lidSwitchExternalPower = "ignore";
+
+  nix.nixPath = [ "nixpkgs=${inputs.nixpkgs}" ];
+
+  boot.loader = {
+    efi = {
+      canTouchEfiVariables = true;
+      efiSysMountPoint = "/boot/efi";
+    };
+
+    systemd-boot.enable = true;
+  };
+
+  networking.networkmanager.enable = true;
+
+  users.groups.media = { };
+
+  services.openssh.enable = true;
+
+  networking.firewall.allowedTCPPorts = [
+    80
+    443
+  ];
+
+  services.caddy.enable = true;
+}

hosts/nixedo/hardware-configuration.nix

@@ -0,0 +1,54 @@
+# Do not modify this file!  It was generated by ‘nixos-generate-config’
+# and may be overwritten by future invocations.  Please make changes
+# to /etc/nixos/configuration.nix instead.
+{
+  config,
+  lib,
+  pkgs,
+  modulesPath,
+  ...
+}:
+
+{
+  imports = [
+    (modulesPath + "/installer/scan/not-detected.nix")
+  ];
+
+  boot.initrd.availableKernelModules = [
+    "xhci_pci"
+    "thunderbolt"
+    "nvme"
+    "usb_storage"
+    "sd_mod"
+  ];
+  boot.initrd.kernelModules = [ ];
+  boot.kernelModules = [ "kvm-intel" ];
+  boot.kernelParams = [ "i8042.reset" ];
+  boot.extraModulePackages = [ ];
+
+  fileSystems."/" = {
+    device = "/dev/disk/by-uuid/7c6d69ec-ba06-4ddb-b9c4-62b3994fda91";
+    fsType = "ext4";
+  };
+
+  fileSystems."/boot/efi" = {
+    device = "/dev/disk/by-uuid/B729-9A75";
+    fsType = "vfat";
+  };
+
+  swapDevices = [
+    { device = "/dev/disk/by-uuid/5db0a0e6-93fb-4d0b-8fb0-fdb3cb76b89d"; }
+  ];
+
+  # Enables DHCP on each ethernet and wireless interface. In case of scripted networking
+  # (the default) this is the recommended approach. When using systemd-networkd it's
+  # still possible to use this option, but it's recommended to use it in conjunction
+  # with explicit per-interface declarations with `networking.interfaces.<interface>.useDHCP`.
+  networking.useDHCP = lib.mkDefault true;
+  # networking.interfaces.enp0s13f0u1.useDHCP = lib.mkDefault true;
+  # networking.interfaces.wlo1.useDHCP = lib.mkDefault true;
+
+  nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
+  powerManagement.cpuFreqGovernor = lib.mkDefault "powersave";
+  hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
+}

hosts/nixedo/modules/acme.nix

@@ -0,0 +1,19 @@
+{ config, ... }:
+
+{
+  security.acme = {
+    acceptTerms = true;
+
+    certs = {
+      "oliverdavies.uk" = {
+        domain = "oliverdavies.uk";
+        dnsProvider = "cloudflare";
+        email = "oliver@oliverdavies.uk";
+        environmentFile = config.age.secrets.cloudflare.path;
+        webroot = null;
+
+        extraDomainNames = [ "*.oliverdavies.uk" ];
+      };
+    };
+  };
+}

hosts/nixedo/secrets.nix

@@ -0,0 +1,6 @@
+{
+  age.secrets = {
+    cloudflare.file = ../../secrets/cloudflare.age;
+    tubearchivist.file = ../../secrets/tubearchivist.age;
+  };
+}