dotfiles/system/hosts/adsb-antenna.nix

111 lines
2.3 KiB
Nix
Raw Normal View History

2023-07-16 22:17:50 +00:00
{ pkgs, ... }:
2022-08-01 20:39:14 +00:00
let
secret = import ../../secret/hosts/adsb-antenna.nix;
ssh-keys = import ../shared/ssh-keys.nix;
in
{
imports = [
../../hardware/hosts/adsb-antenna.nix
2023-05-14 19:24:51 +00:00
../shared/show-update-changelog.nix
2022-08-23 22:05:38 +00:00
../nixos/raspberry.nix
2022-08-01 20:39:14 +00:00
../nixos/ssh.nix
../nixos/git.nix
2022-08-02 16:44:26 +00:00
2023-04-07 16:25:41 +00:00
../nixos/attic.nix
2023-03-19 14:51:22 +00:00
../nixos/container.nix
2022-08-02 16:44:26 +00:00
../../container/adsb
2022-08-01 20:39:14 +00:00
];
2022-12-25 21:13:07 +00:00
system.stateVersion = "22.11";
2022-08-01 20:39:14 +00:00
nix = {
2022-09-26 13:23:14 +00:00
package = pkgs.nixVersions.stable;
2022-08-01 20:39:14 +00:00
2022-08-05 09:37:45 +00:00
settings = {
auto-optimise-store = true;
2022-08-01 20:39:14 +00:00
2022-08-05 09:37:45 +00:00
substituters = [
2023-12-14 17:29:26 +00:00
"https://attic.cache.daniel.sx/nifoc-systems?priority=1"
"https://attic.cache.daniel.sx/nifoc-ci?priority=2"
"https://nix-community.cachix.org?priority=3"
2024-07-03 12:40:31 +00:00
"https://cache.garnix.io?priority=4"
2022-08-05 09:37:45 +00:00
];
trusted-public-keys = [
2023-04-12 18:04:08 +00:00
"nifoc-systems:eDDqVP5BFR6/1KvXbF9oUL8JahDdmbrsYtxlQ57LOTU="
2023-10-01 10:56:38 +00:00
"nifoc-ci:JpD9zqVQi8JuS7B8htPDOQZh08rhInMnGFS9RVhiuwk="
2022-08-05 09:37:45 +00:00
"nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs="
2024-07-03 12:40:31 +00:00
"cache.garnix.io:CTFPyKSLcx5RMJKfLo5EEPUObbA78b0YQ2DTCJXqr9g="
2022-08-05 09:37:45 +00:00
];
};
2022-08-01 20:39:14 +00:00
2022-08-18 21:12:16 +00:00
gc = {
automatic = true;
dates = "weekly";
2023-06-14 19:55:35 +00:00
options = "--delete-older-than 7d";
2022-08-18 21:12:16 +00:00
};
2022-08-01 20:39:14 +00:00
extraOptions = ''
experimental-features = nix-command flakes
keep-derivations = true
keep-outputs = true
'';
};
2023-04-07 15:33:50 +00:00
environment.etc."nix/netrc".source = ../../secret/shared/nix-netrc;
2022-08-01 20:39:14 +00:00
boot = {
loader = {
grub.enable = false;
generic-extlinux-compatible.enable = true;
};
2023-04-17 15:11:07 +00:00
tmp.cleanOnBoot = true;
2022-08-01 20:39:14 +00:00
};
networking = {
hostName = "adsb-antenna";
dhcpcd.denyInterfaces = [ "veth*" ];
timeServers = [
2023-06-07 18:40:27 +00:00
"ptbtime1.ptb.de"
"ptbtime2.ptb.de"
"ptbtime3.ptb.de"
2022-08-01 20:39:14 +00:00
];
};
2022-12-01 21:48:43 +00:00
services.journald.extraConfig = ''
SystemMaxUse=512M
2023-10-11 12:41:14 +00:00
MaxRetentionSec=7day
2022-12-01 21:48:43 +00:00
'';
2023-11-12 21:40:40 +00:00
security.sudo.enable = true;
2023-02-23 20:41:41 +00:00
documentation = {
nixos.enable = false;
doc.enable = false;
};
2022-10-24 11:19:23 +00:00
2022-08-01 20:39:14 +00:00
programs.fish.enable = true;
users.users = {
root = {
openssh.authorizedKeys.keys = [ ssh-keys.LAN ];
};
daniel = {
2023-07-16 22:17:50 +00:00
inherit (secret.users.daniel) hashedPassword;
2022-08-01 20:39:14 +00:00
isNormalUser = true;
home = "/home/daniel";
description = "Daniel";
extraGroups = [ "wheel" ];
shell = pkgs.fish;
openssh.authorizedKeys.keys = [ ssh-keys.LAN ];
};
};
}