nixos-config/base.nix

101 lines
2.2 KiB
Nix
Raw Normal View History

2023-01-20 20:21:16 +01:00
{ config, lib, pkgs, inputs, values, ... }:
{
boot.loader.systemd-boot.enable = true;
boot.loader.efi.canTouchEfiVariables = true;
networking = {
domain = lib.mkDefault "home.feal.no";
nameservers = lib.mkDefault [ "192.168.10.175" "192.168.10.1" "1.1.1.1" ];
useDHCP = lib.mkDefault false;
2023-01-20 20:21:16 +01:00
};
time.timeZone = "Europe/Oslo";
i18n.defaultLocale = "en_US.UTF-8";
console = {
font = "Lat2-Terminus16";
keyMap = lib.mkDefault "no";
2023-01-20 20:21:16 +01:00
};
nix = {
gc = {
automatic = true;
options = "--delete-older-than 2d";
};
2023-09-13 23:21:28 +02:00
settings = {
experimental-features = ["nix-command" "flakes"];
trusted-users = [ "felixalb" ];
builders-use-substitutes = true;
};
2023-01-20 20:21:16 +01:00
registry= {
nixpkgs.flake = inputs.nixpkgs;
};
nixPath = [ "nixpkgs=${inputs.nixpkgs}" ];
};
2023-06-07 21:10:31 +02:00
programs.zsh.enable = true;
2023-04-16 16:49:08 +02:00
environment.systemPackages = with pkgs; [
bottom
duf
2024-01-15 10:06:10 +01:00
eza
file
2023-09-13 23:21:28 +02:00
git
gnugrep
gnutar
htop
2024-09-05 16:39:51 +02:00
iotop
lm_sensors
nix-output-monitor
p7zip
2024-01-15 10:06:10 +01:00
python3
2023-04-16 16:49:08 +02:00
ripgrep
2023-09-13 23:21:28 +02:00
rsync
2024-01-15 10:06:10 +01:00
screen
unzip
2024-09-05 16:39:51 +02:00
usbutils
2024-07-02 00:22:02 +02:00
vim
2023-09-13 23:21:28 +02:00
wget
zip
2023-04-16 16:49:08 +02:00
];
2023-01-20 20:21:16 +01:00
services.openssh = {
enable = true;
openFirewall = lib.mkDefault true;
2023-06-07 21:10:31 +02:00
settings = {
PermitRootLogin = "no";
PasswordAuthentication = false;
KbdInteractiveAuthentication = false;
};
extraConfig = ''
AllowTcpForwarding yes
AllowAgentForwarding yes
AuthenticationMethods publickey
'';
2023-01-20 20:21:16 +01:00
};
programs.mosh.enable = true;
2023-01-20 20:21:16 +01:00
users.users.felixalb = {
isNormalUser = true;
2024-09-25 19:56:37 +02:00
extraGroups = [
2023-12-25 13:31:43 +01:00
"wheel"
"docker"
];
uid = lib.mkDefault 1000;
openssh.authorizedKeys.keys = lib.mkDefault [
2023-07-25 19:15:19 +02:00
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBTXSL0w7OUcz1LzEt1T3I3K5RgyNV+MYz0x/1RbpDHQ felixalb@worf"
2024-12-01 10:54:59 +01:00
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDKzPICGew7uN0cmvRmbwkwTCodTBUgEhkoftQnZuO4Q felixalbrigtsen@gmail.com"
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIH5M7hYl3saBNMAo6sczgfUvASEJWFHuERB7xvf4gxst nix-builder-worf"
2024-12-01 10:54:59 +01:00
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJky33ynjqyWP+hh24gFCMFIEqe3CjIIowGM9jiPbT79 felixalb@sisko.home.feal.no"
2023-01-20 20:21:16 +01:00
];
shell = pkgs.zsh;
2023-01-20 20:21:16 +01:00
};
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
2023-01-20 20:21:16 +01:00
}