opdavies/nix-config
1
1
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

Re-add nixedo as a media server

Browse source
This commit is contained in:
Oliver Davies 2024-12-28 09:26:54 +00:00
parent ec7efcba47
commit ba50ef37c5
11 changed files with 276 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

147
nix/hosts/nixedo/configuration.nix Normal file
View file

@ -0,0 +1,147 @@
# Edit this configuration file to define what should be installed on
# your system. Help is available in the configuration.nix(5) man page
# and in the NixOS manual (accessible by running nixos-help).
{
headless,
hostname,
inputs,
outputs,
pkgs,
self,
system,
username,
...
}:
{
imports = [
# Include the results of the hardware scan.
./hardware-configuration.nix
];
# home-manager.backupFileExtension
home-manager = {
backupFileExtension = "bak2";
extraSpecialArgs = {
inherit
hostname
inputs
outputs
headless
self
system
username
;
};
useGlobalPkgs = true;
useUserPackages = true;
users."${username}" = import "${self}/nix/home/${username}";
};
nixpkgs = {
config = {
allowUnfree = true;
permittedInsecurePackages = [ "electron-27.3.11" ];
};
overlays = [
outputs.overlays.additions
outputs.overlays.modifications
outputs.overlays.stable-packages
];
};
nix.nixPath = [ "nixpkgs=${inputs.nixpkgs}" ];
# Bootloader.
boot.loader.systemd-boot.enable = true;
boot.loader.efi.canTouchEfiVariables = true;
boot.loader.efi.efiSysMountPoint = "/boot/efi";
# networking.wireless.enable = true; # Enables wireless support via wpa_supplicant.
# Configure network proxy if necessary
# networking.proxy.default = "http://user:password@proxy:port/";
# networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain";
# Enable networking
networking.networkmanager.enable = true;
# Set your time zone.
time.timeZone = "Europe/London";
# Select internationalisation properties.
i18n.defaultLocale = "en_GB.UTF-8";
i18n.extraLocaleSettings = {
LC_ADDRESS = "en_GB.UTF-8";
LC_IDENTIFICATION = "en_GB.UTF-8";
LC_MEASUREMENT = "en_GB.UTF-8";
LC_MONETARY = "en_GB.UTF-8";
LC_NAME = "en_GB.UTF-8";
LC_NUMERIC = "en_GB.UTF-8";
LC_PAPER = "en_GB.UTF-8";
LC_TELEPHONE = "en_GB.UTF-8";
LC_TIME = "en_GB.UTF-8";
};
# Configure keymap in X11
services.xserver.xkb = {
layout = "gb";
variant = "";
};
# Configure console keymap
console.keyMap = "uk";
# Define a user account. Don't forget to set a password with passwd.
users.users.opdavies = {
isNormalUser = true;
description = "Oliver Davies";
extraGroups = [
"docker"
"media"
"networkmanager"
"wheel"
];
packages = with pkgs; [
cryptsetup
];
};
users.groups.media = { };
# List packages installed in system profile. To search, run:
# $ nix search wget
environment.systemPackages = with pkgs; [
# vim # Do not forget to add an editor to edit configuration.nix! The Nano editor is also installed by default.
# wget
];
# Some programs need SUID wrappers, can be configured further or are
# started in user sessions.
# programs.mtr.enable = true;
# programs.gnupg.agent = {
# enable = true;
# enableSSHSupport = true;
# };
# List services that you want to enable:
# Enable the OpenSSH daemon.
services.openssh.enable = true;
# Open ports in the firewall.
networking.firewall.allowedTCPPorts = [
80
443
];
# networking.firewall.allowedUDPPorts = [ ... ];
# Or disable the firewall altogether.
# networking.firewall.enable = false;
system.stateVersion = "24.11";
}

28
nix/hosts/nixedo/default.nix Normal file
View file

@ -0,0 +1,28 @@
{
features = {
cli = {
docker.enable = true;
};
homelab = {
forgejo.enable = true;
gitea.enable = true;
immich.enable = true;
jellyfin.enable = true;
paperless.enable = true;
pihole.enable = true;
tubearchivist-container.enable = true;
# vaultwarden.enable = true;
};
};
imports = [
../common
./configuration.nix
./secrets.nix
./extra.nix
./modules/nginx.nix
];
}

9
nix/hosts/nixedo/extra.nix Normal file
View file

@ -0,0 +1,9 @@
{
programs.dconf.enable = true;
services.logind.lidSwitchExternalPower = "ignore";
age.identityPaths = [
"/home/opdavies/.ssh/id_rsa"
];
}

54
nix/hosts/nixedo/hardware-configuration.nix Normal file
View file

@ -0,0 +1,54 @@
# Do not modify this file! It was generated by nixos-generate-config
# and may be overwritten by future invocations. Please make changes
# to /etc/nixos/configuration.nix instead.
{
config,
lib,
pkgs,
modulesPath,
...
}:
{
imports = [
(modulesPath + "/installer/scan/not-detected.nix")
];
boot.initrd.availableKernelModules = [
"xhci_pci"
"thunderbolt"
"nvme"
"usb_storage"
"sd_mod"
];
boot.initrd.kernelModules = [ ];
boot.kernelModules = [ "kvm-intel" ];
boot.kernelParams = [ "i8042.reset" ];
boot.extraModulePackages = [ ];
fileSystems."/" = {
device = "/dev/disk/by-uuid/7c6d69ec-ba06-4ddb-b9c4-62b3994fda91";
fsType = "ext4";
};
fileSystems."/boot/efi" = {
device = "/dev/disk/by-uuid/B729-9A75";
fsType = "vfat";
};
swapDevices = [
{ device = "/dev/disk/by-uuid/5db0a0e6-93fb-4d0b-8fb0-fdb3cb76b89d"; }
];
# Enables DHCP on each ethernet and wireless interface. In case of scripted networking
# (the default) this is the recommended approach. When using systemd-networkd it's
# still possible to use this option, but it's recommended to use it in conjunction
# with explicit per-interface declarations with `networking.interfaces.<interface>.useDHCP`.
networking.useDHCP = lib.mkDefault true;
# networking.interfaces.enp0s13f0u1.useDHCP = lib.mkDefault true;
# networking.interfaces.wlo1.useDHCP = lib.mkDefault true;
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
powerManagement.cpuFreqGovernor = lib.mkDefault "powersave";
hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
}

11
nix/hosts/nixedo/modules/nginx.nix Normal file
View file

@ -0,0 +1,11 @@
{ config, ... }:
{
services.nginx = {
enable = true;
virtualHosts = {
"syncthing.localhost".locations."/".proxyPass = "http://localhost:8384/";
};
};
}

5
nix/hosts/nixedo/secrets.nix Normal file
View file

@ -0,0 +1,5 @@
{
age.secrets = {
tubearchivist.file = ../../secrets/tubearchivist.age;
};
}