Commit graph

640 commits

Author SHA1 Message Date
Lillian Violet 0c450e5ad2 Remove some things I don't need, still need to add some sops secrets and certs for turn 2024-02-29 23:54:29 +01:00
Lillian Violet 9567f487a6 Copied this config, have to edit it more, but looks promising 2024-02-29 23:51:14 +01:00
Lillian Violet f61a944dd1 Add helix to all hosts 2024-02-29 15:44:34 +01:00
Lillian Violet 03d185570a Add install nix command to all hosts 2024-02-29 14:39:35 +01:00
Lillian Violet af99e84356 They say I just have to update, I will see if it works like this then 2024-02-29 09:59:48 +01:00
Lillian Violet bba5de7135 Disable amdgpu thing in shodan to see if the mesa message goes away 2024-02-28 21:53:08 +01:00
Lillian Violet b8726e7f4b Test to see what happens if I disable fonts 2024-02-28 14:28:17 +01:00
Lillian Violet b9469c840f Try and fix fonts 2024-02-28 14:26:58 +01:00
Lillian Violet d423ce4c0b Enable initrd on EDI 2024-02-27 11:29:55 +01:00
Lillian Violet e80ad44887 Add libnotify for rebuild command 2024-02-26 14:25:07 +01:00
Lillian Violet 52a5010891 add rebuild command (untested) 2024-02-26 14:17:34 +01:00
Lillian Violet 983e994930 Remove some unneeded comments 2024-02-26 12:59:49 +01:00
Lillian Violet b1e4af16d8 Settings needed according to https://nixos.wiki/wiki/TPM 2024-02-22 15:31:14 +01:00
Lillian Violet 5b296e8157 tss libraries too 2024-02-22 15:24:39 +01:00
Lillian Violet 125d119e18 Add tpm tools 2024-02-22 15:22:45 +01:00
Lillian Violet f2ff58d622 Clarified with a comment here 2024-02-22 14:35:08 +01:00
Lillian Violet eba73661ad Use yescrypt for shodan too 2024-02-22 13:17:43 +01:00
Lillian Violet 6d32c58490 Wheatley used the old format for importing shared, fixed 2024-02-22 13:06:08 +01:00
Lillian Violet b911aec529 Shodan had a keyfile set that isn't right 2024-02-22 13:03:52 +01:00
Lillian Violet b21150f431 Set password for all hosts, made sops look at the same folder for the key file for all hosts (move in queen) 2024-02-22 13:01:31 +01:00
Lillian Violet a8a5cdec7b Put user definition in the shared file to reduce duplicate code 2024-02-22 12:52:10 +01:00
Lillian Violet 6dd7bfeb5c Put font install in the correct place 2024-02-22 11:55:48 +01:00
Lillian Violet 316ecdcc6c Sops file needs to be in the right folder 2024-02-21 12:19:42 +01:00
Lillian Violet 1e62fd2886 Little refactor to reduce reuse 2024-02-21 12:16:53 +01:00
Lillian Violet 5a05a79705 Little refactor 2024-02-21 12:09:57 +01:00
Lillian Violet 62a1b73475 That's a typo, it's mutableUsers 2024-02-21 11:44:07 +01:00
Lillian Violet 261311687b Disable root password and make users immutable 2024-02-21 11:43:24 +01:00
Lillian Violet a3961b0bde Set lillian's password declaratively on EDI 2024-02-21 11:21:08 +01:00
Lillian Violet 4f22ad7e51 Remove the old disk layout for EDI 2024-02-21 10:23:51 +01:00
Lillian Violet 33d4b51c00 T'was already in there 2024-02-20 09:57:29 +01:00
Lillian Violet fc97125e05 Merge branch 'main' of git.lillianviolet.dev:Lillian-Violet/NixOS-Config 2024-02-20 09:50:30 +01:00
Lillian Violet 00f1f1be16 Set configuration limit in EDI 2024-02-20 09:50:26 +01:00
Lillian Violet ab474a949c Add qjackctl to GLaDOS 2024-02-19 16:20:12 +01:00
Lillian Violet 0dcc2b9acc Enable pipewire jack 2024-02-16 21:31:25 +01:00
Lillian Violet 123fc86753 Add & enable wireplumber 2024-02-16 14:41:36 +01:00
Lillian Violet 629b3127c1 GPU drivers for GLaDOS 2024-02-16 12:59:11 +01:00
Lillian Violet f52e9eddd4 Or this? 2024-02-16 10:45:49 +01:00
Lillian Violet f0d377eb57 This instead? 2024-02-16 10:42:37 +01:00
Lillian Violet e62c4697af Add v4l2loopback 2024-02-16 10:20:59 +01:00
Lillian Violet ef67bfff5c Add configurationlimit to EDI 2024-02-15 22:28:25 +01:00
Lillian Violet 7bcb99f376 Add podman and sbctl to GLaDOS 2024-02-15 22:26:20 +01:00
Lillian Violet 14126751e0 Need to remove enabling systemdboot 2024-02-15 22:18:23 +01:00
Lillian Violet f7ce86697f Change bootloader to lanzaboot in GLaDOS 2024-02-15 22:17:04 +01:00
Lillian Violet 82bac88a7b adding GLaDOS disko config 2024-02-15 18:37:06 +00:00
Lillian Violet 032da60de7 Little formatting fix 2024-02-15 14:28:44 +01:00
Lillian Violet 54589eb953 set up lanzaboot and update the EDI disko setup 2024-02-15 14:27:03 +01:00
Lillian Violet 5b353828ff Add servo 2024-02-14 10:50:19 +01:00
Lillian Violet e39fe5214b Use disko for configuration of the disk, built the ISO with lvm, put the default to the current setup for EDI. Make sure to update after flashing. 2024-02-13 15:41:05 +01:00
Lillian Violet a59b6c5986 Add output to flake, EDI ISO for now 2024-02-12 17:16:32 +01:00
Lillian Violet 68abe668d3 Add nixos-generators 2024-02-12 17:03:30 +01:00
Lillian Violet d9ff4d8de7 Add disko configuration (disable for the moment to not have EDI overwrite its disk) 2024-02-12 16:36:27 +01:00
Lillian Violet 4fe37bf1e1 The thing it probably errors on here too 2024-02-09 22:01:15 +01:00
Lillian Violet 6cf73a77a3 And this? 2024-02-09 22:00:23 +01:00
Lillian Violet e622fd4464 Remove that from here too 2024-02-09 21:58:07 +01:00
Lillian Violet 979d86a858 This as well 2024-02-09 21:55:58 +01:00
Lillian Violet cbcccc11ca Should probably do that this way 2024-02-09 21:53:50 +01:00
Lillian Violet 14c2f4fcb7 Disable this to comply to CnD 2024-02-09 21:52:23 +01:00
Lillian Violet e4fca29931 remove dex 2024-02-08 21:46:54 +01:00
Lillian Violet de279dc3d7 Typo, fixed it 2024-02-08 21:46:24 +01:00
Lillian Violet e68bf2bd97 Add maintanance times to nextcloud and update flake lock 2024-02-08 21:38:07 +01:00
Lillian Violet 4ade64ac06 Add gnupg to desktops 2024-02-08 10:36:52 +01:00
Lillian Violet ecd0c71f3f Let's make a default for the server config too 2024-02-07 13:54:34 +01:00
Lillian Violet 9212baeb30 Some more things I missed, let's test again 2024-02-07 13:52:23 +01:00
Lillian Violet f7b36ba224 Big refactor, test first 2024-02-07 13:50:03 +01:00
Lillian Violet fa6a06c51e Update public key from rsa to ed25519 2024-02-07 11:32:43 +01:00
Lillian Violet 4e2199b8eb try this autologin on shodan for sddm 2024-02-06 20:21:41 +01:00
Lillian Violet db40411529 Never mind that 2024-02-06 15:13:04 +01:00
Lillian Violet 4216c05919 Test removing podman and using devshell 2024-02-06 14:59:49 +01:00
Lillian Violet 43928ac555 Replace docker with podman 2024-02-06 14:47:32 +01:00
Lillian Violet 34a0d0609d Set socket variable too 2024-02-06 14:31:35 +01:00
Lillian Violet 80d59778cb Add lillian to docker group 2024-02-06 14:29:39 +01:00
Lillian Violet 2a73851e2a Let's just add a rootless docker 2024-02-06 13:31:04 +01:00
Lillian Violet bd83e851f4 Remove docker group too 2024-02-06 10:39:24 +01:00
Lillian Violet b593b07ab8 Remove podman and docker 2024-02-06 10:34:58 +01:00
Lillian Violet 5fb3e5ed7a Update configs to fix updates, and some minor tweaks 2024-02-05 18:23:09 +01:00
Lillian Violet 613807c83f Update steam deck configs with small tweaks like enabling decky & update flake lock 2024-02-05 17:44:05 +01:00
Lillian Violet 8598323c75 That didn't work, maybe now? 2024-02-04 00:36:42 +01:00
Lillian Violet 60291499a3 This is how we do that maybe? 2024-02-04 00:22:52 +01:00
Lillian Violet 6ac3db7171 Add encrypted swap as well 2024-02-04 00:05:02 +01:00
Lillian Violet c57d206aab I think I somehow forgot bcachefs support for EDI 2024-02-03 20:41:54 +01:00
Lillian Violet fca55ba34f Update boot for EDI, put the boot for GLaDOS in her own file now 2024-02-03 18:10:52 +01:00
Lillian Violet 33736dc99a Merge branch 'main' of git.lillianviolet.dev:Lillian-Violet/NixOS-Config 2024-02-03 17:51:12 +01:00
Lillian Violet 17eca8a394 Update for secure boot 2024-02-03 17:50:32 +01:00
Lillian Violet c19879ca69 Make /boot inacessible by default 2024-02-03 17:19:23 +01:00
Lillian Violet 49ced5acf5 Update nixos/hosts/EDI/hardware-configuration.nix
Changed the hardware configuration to the new encrypted disk setup
2024-02-03 17:04:30 +01:00
Lillian Violet 0b70a2976b remove this not needed dependency 2024-02-03 14:21:13 +01:00
Lillian Violet 9744a39bcf Renew gladtherescake.eu's mail cert 2024-02-03 14:18:35 +01:00
Lillian Violet 44d646adc0 Add bchacefs support, set up the first luks and bcachefs settings, and update plasma-manager config 2024-02-01 14:35:46 +01:00
Lillian Violet 711e24bed2 Lanzaboot initial setup 2024-02-01 13:05:09 +01:00
Lillian Violet 3da0adad71 Added spacevim 2024-02-01 11:31:36 +01:00
Lillian Violet 6d8b789c71 Add alejandra to shared packages 2024-01-30 14:10:27 +01:00
Lillian Violet a0ff903ee1 Let's do it this way instead 2024-01-30 12:07:57 +01:00
Lillian Violet bc660ef7d2 Right location for desktop to import shared 2024-01-30 12:05:25 +01:00
Lillian Violet 62df0d1cd4 Refactor a bit by adding globally shared packages in one file 2024-01-30 12:03:29 +01:00
Lillian Violet 0c1da18e13 Turning waydroid off because my laptop wants to take off 2024-01-29 20:23:45 +01:00
Lillian Violet 8333f0468b Add xwaylandvideobridge to enable screen sharing to discord etc. 2024-01-29 18:10:37 +01:00
Lillian Violet 61aff3b929 Not in home manager though 2024-01-29 17:59:34 +01:00
Lillian Violet d5d6717875 Fix for dovecot update (flake lock update should work again hopefully) 2024-01-28 23:07:30 +01:00
Lillian Violet 41c68ed662 Comment this out, the output doesn't exist 2024-01-23 10:52:23 +01:00
Lillian Violet c99362747f Enable conduit again for testing 2024-01-22 17:09:55 +01:00
Lillian Violet 6cb90643af Let's try this, it won't work probably but to build on and get the cert 2024-01-22 17:08:52 +01:00
Lillian Violet 3f142fdbd7 Disable conduit for now 2024-01-22 14:25:16 +01:00
Lillian Violet d15abd39b8 Remove the acme things too 2024-01-22 14:20:16 +01:00
Lillian Violet b70b946a37 Try simplifying it? 2024-01-22 14:15:30 +01:00
Lillian Violet cc25326fa5 Let's just remove this "upstreams" block whatever 2024-01-21 23:43:05 +01:00
Lillian Violet 8ea883be85 Change localhost to the IP of the host 2024-01-21 23:41:16 +01:00
Lillian Violet bf6dd3d7eb Remove ipv6 shit 2024-01-21 23:38:51 +01:00
Lillian Violet 98f15912a8 Wrong package name and add the right inputs to flake lock 2024-01-21 23:08:09 +01:00
Lillian Violet 8627274c7b Let's try this then 2024-01-21 23:04:36 +01:00
Lillian Violet e1a2b772b2 Don't use the flake! 2024-01-21 23:02:09 +01:00
Lillian Violet 56e27ec5f8 Add conduit 2024-01-21 22:58:18 +01:00
Lillian Violet e26af96491 Let's retain the unstable state version 2024-01-19 15:33:18 +01:00
Lillian Violet f7a69135d0 Change mailserver to pull request fix 2024-01-19 15:25:52 +01:00
Lillian Violet 25fedc1cc4 Let's try this instead... 2024-01-19 01:53:05 +01:00
Lillian Violet f55a7a7477 Try and use stable packages for the server 2024-01-19 01:31:01 +01:00
Lillian Violet 322370de41 Changing to 23.11 might fix the mail server 2024-01-19 01:23:26 +01:00
Lillian Violet 4ba4ff66e6 Forgot the state dir, that was a hassle to change 2024-01-19 01:08:56 +01:00
Lillian Violet 9cf4e12c67 Also disable mail for gotosocial for now 2024-01-19 01:04:02 +01:00
Lillian Violet 0bf37bb0c1 Also remove the mailer password file definition again 2024-01-19 01:03:09 +01:00
Lillian Violet 2761496399 And remove the other gitea user definitions (I think the old db dump might have caused this?) 2024-01-19 01:00:20 +01:00
Lillian Violet ebc58c560e Let's try that again (change db and user db to forgejo) 2024-01-19 00:59:24 +01:00
Lillian Violet d34bbc934c Let's see if forgejo can manage the user on its own 2024-01-19 00:12:52 +01:00
Lillian Violet 3b67806659 Add the ssh keys 2024-01-18 23:58:13 +01:00
Lillian Violet aac8215e02 We don't need this, just an ssh key for the gitea user (I think) 2024-01-18 23:56:38 +01:00
Lillian Violet 376c587f0b Maybe host ssh on a different port than the website huh 2024-01-18 23:45:54 +01:00
Lillian Violet 1e9e85b15b Enable ssh services? 2024-01-18 23:36:48 +01:00
Lillian Violet bf4d442df3 Open ssh port for forgejo 2024-01-18 23:33:22 +01:00
Lillian Violet c7d6449d95 Should probably make that a string 2024-01-18 23:18:40 +01:00
Lillian Violet 09257256ee Added ssh domain to forgejo 2024-01-18 23:09:29 +01:00
Lillian Violet 2524cb0f81 Let's try adding it again? 2024-01-18 12:46:31 +01:00
Lillian Violet ec324876f5 That shouldn't go there I guess 2024-01-18 12:06:31 +01:00
Lillian Violet 127dc51075 Alright that was some drafts that I don't need 2024-01-18 12:05:44 +01:00
Lillian Violet e376176dc3 Did that not commit everything? Weird 2024-01-18 11:59:33 +01:00
Lillian Violet 66a1fd45d3 Install them this way? 2024-01-17 15:25:52 +01:00
Lillian Violet 45914cf7ea Try and add devshell commands to desktop 2024-01-17 15:02:27 +01:00
Lillian Violet 40896d86fd Limit boot entries to 5 in wheatley (revert this if the build fails!) 2024-01-16 12:29:40 +01:00
Lillian Violet f402261f20 Remove sqlfluff 2024-01-16 10:01:46 +01:00
Lillian Violet d8389c5d89 Add htop to all hosts 2024-01-16 09:56:38 +01:00
Lillian Violet 2c58de2b86 Changed the swap by accident, and removed the boot folder, that's clearly not the issue 2024-01-15 17:01:30 +01:00
Lillian Violet f29244c12e It's WPA-PSK not WPA 2024-01-15 16:49:22 +01:00
Lillian Violet ed5c92b3b9 Wrong location for that file 2024-01-15 16:30:57 +01:00
Lillian Violet 049ab1f01f Add armv7l kernel patch 2024-01-15 16:29:44 +01:00
Lillian Violet 19580f878c Option has been renamed 2024-01-14 16:07:44 +01:00
Lillian Violet c9ac78a81a Small refactor, try and mount the other drive on /boot for wheatley 2024-01-14 15:58:21 +01:00
Lillian Violet 15b6b81816 Add wifi connection to wheatley 2024-01-12 17:21:29 +01:00
Lillian Violet ed61829532 Change the pihole config to a flake that hopefully works 2024-01-12 16:58:45 +01:00
Lillian Violet d90ba55a21 Network manager fails to build on wheatley, let's ignore it 2024-01-12 16:03:10 +01:00
Lillian Violet d9de262a67 Updated hardware config for wheatley 2024-01-12 14:56:22 +01:00
Lillian Violet 7d4d52aead Some realtek driver, might not need this 2024-01-12 00:15:08 +01:00
Lillian Violet be9ab88e27 That's the wrong place for that 2024-01-12 00:10:09 +01:00