remove inactive users

hosts/bicep/configuration.nix

@@ -1,56 +1,32 @@
-{ fp, pkgs, values, lib, ... }:
+{ fp, pkgs, values, ... }:
 {
   imports = [
     ./hardware-configuration.nix
 
     (fp /base)
-    #./services/nginx
+    ./services/nginx
 
-    #./services/calendar-bot.nix
+    ./services/calendar-bot.nix
     #./services/git-mirrors
-    #./services/minecraft-heatmap.nix
+    ./services/minecraft-heatmap.nix
-    #./services/mysql
+    ./services/mysql
-    #./services/postgresql
+    ./services/postgresql
 
-    #./services/matrix
+    ./services/matrix
   ];
 
-  boot.loader = {
+  #systemd.network.networks."30-enp6s0f0" = values.defaultNetworkConfig // {
-    systemd-boot.enable = false; # no uefi support on this device
+  systemd.network.networks."30-ens18" = values.defaultNetworkConfig // {
-    grub.device = "/dev/disk/by-id/scsi-3600508b1001ca9cf1c96afea40d5451d";
+    #matchConfig.Name = "enp6s0f0";
-    grub.enable = true;
+    matchConfig.Name = "ens18";
-  };
+    address = with values.hosts.bicep; [ (ipv4 + "/25") (ipv6 + "/64") ]
-
+      ++ (with values.services.turn; [ (ipv4 + "/25") (ipv6 + "/64") ]);
-  boot = {
-    zfs = {
-      extraPools = [ "bicepdata" ];
-      requestEncryptionCredentials = false;
-    };
-    supportedFilesystems.zfs = true;
-
-    kernelPackages = pkgs.linuxPackages;
-  };
-
-  services.zfs.autoScrub = {
-    enable = true;
-    interval = "Wed *-*-8..14 00:00:00";
-  };
-
-  networking.hostId = "3b4bf6a5";
-  systemd.network.networks."30-ens10f3" = values.defaultNetworkConfig // {
-    matchConfig.Name = "ens10f3";
-    # IPs belong to guest1.pvv.ntnu.no
-    address = [ "129.241.210.248/25" "2001:700:300:1900::248/63" ];
   };
   systemd.network.wait-online = {
     anyInterface = true;
   };
 
-  # local overrides
+  services.qemuGuest.enable = true;
-  services.smartd.enable = lib.mkForce false;
-  system.autoUpgrade.enable = lib.mkForce false;
-  #services.userborn.enable = lib.mkForce false;
-  #services.userdbd.enable = lib.mkForce false;
 
   # Don't change (even during upgrades) unless you know what you are doing.
   # See https://search.nixos.org/options?show=system.stateVersion

hosts/bicep/hardware-configuration.nix

@@ -5,26 +5,39 @@
 
 {
   imports =
-    [ (modulesPath + "/installer/scan/not-detected.nix")
+    [ (modulesPath + "/profiles/qemu-guest.nix")
     ];
 
-  boot.initrd.availableKernelModules = [ "uhci_hcd" "ehci_pci" "hpsa" "ohci_pci" "usbhid" "sd_mod" ];
+  boot.initrd.availableKernelModules = [ "ata_piix" "uhci_hcd" "ahci" "sd_mod" "sr_mod" ];
   boot.initrd.kernelModules = [ ];
-  boot.kernelModules = [ "kvm-intel" ];
+  boot.kernelModules = [ ];
   boot.extraModulePackages = [ ];
 
   fileSystems."/" =
-    { device = "/dev/disk/by-uuid/ec4ab82a-f31e-4f02-a988-99c18160d04a";
+    { device = "/dev/disk/by-uuid/20e06202-7a09-47cc-8ef6-5e7afe19453a";
-      fsType = "btrfs";
+      fsType = "ext4";
     };
 
-  swapDevices = [
+  # temp data disk, only 128gb not enough until we can add another disk to the system.
-    {
+  fileSystems."/data" =
-      device = "/var/lib/swapfile";
+    { device = "/dev/disk/by-uuid/c81af266-0781-4084-b8eb-c2587cbcf1ba";
-      size = 8 * 1024;
+      fsType = "ext4";
-    }
+    };
-  ];
+
+  fileSystems."/boot" =
+    { device = "/dev/disk/by-uuid/198B-E363";
+      fsType = "vfat";
+      options = [ "fmask=0022" "dmask=0022" ];
+    };
+
+  swapDevices = [ ];
+
+  # Enables DHCP on each ethernet and wireless interface. In case of scripted networking
+  # (the default) this is the recommended approach. When using systemd-networkd it's
+  # still possible to use this option, but it's recommended to use it in conjunction
+  # with explicit per-interface declarations with `networking.interfaces.<interface>.useDHCP`.
+  networking.useDHCP = lib.mkDefault true;
+  # networking.interfaces.ens18.useDHCP = lib.mkDefault true;
 
   nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
-  hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
 }

hosts/lupine/services/gitea-runner.nix

@@ -39,17 +39,22 @@
         "debian-bullseye-slim:docker://node:current-bullseye-slim"
 
         "alpine-latest:docker://node:current-alpine"
+        "alpine-3.23:docker://node:current-alpine3.23"
         "alpine-3.22:docker://node:current-alpine3.22"
         "alpine-3.21:docker://node:current-alpine3.21"
 
         # See https://gitea.com/gitea/runner-images
         "ubuntu-latest:docker://docker.gitea.com/runner-images:ubuntu-latest"
+        "ubuntu-26.04:docker://docker.gitea.com/runner-images:ubuntu-26.04"
+        "ubuntu-resolute:docker://docker.gitea.com/runner-images:ubuntu-26.04"
         "ubuntu-24.04:docker://docker.gitea.com/runner-images:ubuntu-24.04"
         "ubuntu-noble:docker://docker.gitea.com/runner-images:ubuntu-24.04"
         "ubuntu-22.04:docker://docker.gitea.com/runner-images:ubuntu-22.04"
         "ubuntu-jammy:docker://docker.gitea.com/runner-images:ubuntu-22.04"
 
         "ubuntu-latest-slim:docker://docker.gitea.com/runner-images:ubuntu-latest-slim"
+        "ubuntu-26.04-slim:docker://docker.gitea.com/runner-images:ubuntu-26.04-slim"
+        "ubuntu-resolute-slim:docker://docker.gitea.com/runner-images:ubuntu-26.04-slim"
         "ubuntu-24.04-slim:docker://docker.gitea.com/runner-images:ubuntu-24.04-slim"
         "ubuntu-noble-slim:docker://docker.gitea.com/runner-images:ubuntu-24.04-slim"
         "ubuntu-22.04-slim:docker://docker.gitea.com/runner-images:ubuntu-22.04-slim"

users/alfhj.nix

@@ -1,12 +0,0 @@
-{ config, pkgs, ... }:
-
-{
-  users.users.alfhj = {
-    isNormalUser = true;
-    extraGroups = [ "wheel" ];
-    shell = if config.programs.zsh.enable then pkgs.zsh else pkgs.bash;
-    openssh.authorizedKeys.keys = [
-      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMCAYE0U3sFizm/NSbKCs0jEhZ1mpAWPcijFevejiFL1 alfhj"
-    ];
-  };
-}

users/amalieem.nix

@@ -1,12 +0,0 @@
-{ config, pkgs, ... }:
-
-{
-  users.users.amalieem = {
-    isNormalUser = true;
-    extraGroups = [ "wheel" ];
-    shell = if config.programs.zsh.enable then pkgs.zsh else pkgs.bash;
-    openssh.authorizedKeys.keys = [
-      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPsMtFIj4Dem/onwMoWYbosOcU4y7A5nTjVwqWaU33E1 amalieem@matey-aug22"
-    ];
-  };
-}