dotfiles/system/hosts/adsb-antenna.nix

{ pkgs, ... }:

let
  secret = import ../../secret/hosts/adsb-antenna.nix;
  ssh-keys = import ../shared/ssh-keys.nix;
in
{
  imports = [
    ../../hardware/hosts/adsb-antenna.nix
    ../shared/show-update-changelog.nix
    ../nixos/raspberry.nix
    ../nixos/ssh.nix

    ../nixos/git.nix

    ../nixos/attic.nix

    ../nixos/container.nix
    ../../container/adsb
  ];

  system.stateVersion = "22.11";

  nix = {
    package = pkgs.nixVersions.stable;

    settings = {
      auto-optimise-store = true;

      substituters = [
        "https://attic.cache.daniel.sx/nifoc-systems?priority=1"
        "https://attic.cache.daniel.sx/nifoc-ci?priority=2"
        "https://nix-community.cachix.org?priority=3"
        "https://cache.garnix.io?priority=4"
      ];

      trusted-public-keys = [
        "nifoc-systems:eDDqVP5BFR6/1KvXbF9oUL8JahDdmbrsYtxlQ57LOTU="
        "nifoc-ci:JpD9zqVQi8JuS7B8htPDOQZh08rhInMnGFS9RVhiuwk="
        "nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs="
        "cache.garnix.io:CTFPyKSLcx5RMJKfLo5EEPUObbA78b0YQ2DTCJXqr9g="
      ];
    };

    gc = {
      automatic = true;
      dates = "weekly";
      options = "--delete-older-than 7d";
    };

    extraOptions = ''
      experimental-features = nix-command flakes
      keep-derivations = true
      keep-outputs = true
    '';
  };

  environment.etc."nix/netrc".source = ../../secret/shared/nix-netrc;

  boot = {
    loader = {
      grub.enable = false;
      generic-extlinux-compatible.enable = true;
    };

    tmp.cleanOnBoot = true;
  };

  networking = {
    hostName = "adsb-antenna";

    dhcpcd.denyInterfaces = [ "veth*" ];

    timeServers = [
      "ptbtime1.ptb.de"
      "ptbtime2.ptb.de"
      "ptbtime3.ptb.de"
    ];
  };

  services.journald.extraConfig = ''
    SystemMaxUse=512M
    MaxRetentionSec=7day
  '';

  security.sudo.enable = true;

  documentation = {
    nixos.enable = false;
    doc.enable = false;
  };

  programs.fish.enable = true;

  users.users = {
    root = {
      openssh.authorizedKeys.keys = [ ssh-keys.LAN ];
    };

    daniel = {
      inherit (secret.users.daniel) hashedPassword;
      isNormalUser = true;
      home = "/home/daniel";
      description = "Daniel";
      extraGroups = [ "wheel" ];
      shell = pkgs.fish;
      openssh.authorizedKeys.keys = [ ssh-keys.LAN ];
    };
  };
}
Introduce pre-commit-hooks.nix 2023-07-17 00:17:50 +02:00			`{ pkgs, ... }:`
WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00
			`let`
			`secret = import ../../secret/hosts/adsb-antenna.nix;`
			`ssh-keys = import ../shared/ssh-keys.nix;`
			`in`
			`{`
			`imports = [`
			`../../hardware/hosts/adsb-antenna.nix`
deploy-rs: Include changelog in output 2023-05-14 21:24:51 +02:00			`../shared/show-update-changelog.nix`
Add RaspberryPi specific programs 2022-08-24 00:05:38 +02:00			`../nixos/raspberry.nix`
WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00			`../nixos/ssh.nix`

			`../nixos/git.nix`
Update adsb configuration 2022-08-02 18:44:26 +02:00
adsb-antenna: Install attic cache 2023-04-07 18:25:41 +02:00			`../nixos/attic.nix`

Remove all references to arion 2023-03-19 15:51:22 +01:00			`../nixos/container.nix`
Update adsb configuration 2022-08-02 18:44:26 +02:00			`../../container/adsb`
WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00			`];`

Set stateVersion 2022-12-25 22:13:07 +01:00			`system.stateVersion = "22.11";`

WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00			`nix = {`
Update deps 2022-09-26 15:23:14 +02:00			`package = pkgs.nixVersions.stable;`
WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00
Update NixOS cache config 2022-08-05 11:37:45 +02:00			`settings = {`
			`auto-optimise-store = true;`
WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00
Update NixOS cache config 2022-08-05 11:37:45 +02:00			`substituters = [`
nix: specify cache priority 2023-12-14 18:29:26 +01:00			`"https://attic.cache.daniel.sx/nifoc-systems?priority=1"`
			`"https://attic.cache.daniel.sx/nifoc-ci?priority=2"`
			`"https://nix-community.cachix.org?priority=3"`
all: add garnix cache 2024-07-03 14:40:31 +02:00			`"https://cache.garnix.io?priority=4"`
Update NixOS cache config 2022-08-05 11:37:45 +02:00			`];`

			`trusted-public-keys = [`
adsb-antenna: Re-order caches 2023-04-12 20:04:08 +02:00			`"nifoc-systems:eDDqVP5BFR6/1KvXbF9oUL8JahDdmbrsYtxlQ57LOTU="`
Update deps 2023-10-01 12:56:38 +02:00			`"nifoc-ci:JpD9zqVQi8JuS7B8htPDOQZh08rhInMnGFS9RVhiuwk="`
Update NixOS cache config 2022-08-05 11:37:45 +02:00			`"nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs="`
all: add garnix cache 2024-07-03 14:40:31 +02:00			`"cache.garnix.io:CTFPyKSLcx5RMJKfLo5EEPUObbA78b0YQ2DTCJXqr9g="`
Update NixOS cache config 2022-08-05 11:37:45 +02:00			`];`
			`};`
WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00
Update nvim plugins 2022-08-18 23:12:16 +02:00			`gc = {`
			`automatic = true;`
			`dates = "weekly";`
weather-sdr: add system 2023-06-14 21:55:35 +02:00			`options = "--delete-older-than 7d";`
Update nvim plugins 2022-08-18 23:12:16 +02:00			`};`

WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00			`extraOptions = ''`
			`experimental-features = nix-command flakes`
			`keep-derivations = true`
			`keep-outputs = true`
			`'';`
			`};`

adsb-antenna: Setup cache 2023-04-07 17:33:50 +02:00			`environment.etc."nix/netrc".source = ../../secret/shared/nix-netrc;`

WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00			`boot = {`
			`loader = {`
			`grub.enable = false;`
			`generic-extlinux-compatible.enable = true;`
			`};`

Fix deprecated options 2023-04-17 17:11:07 +02:00			`tmp.cleanOnBoot = true;`
WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00			`};`

			`networking = {`
			`hostName = "adsb-antenna";`

			`dhcpcd.denyInterfaces = [ "veth*" ];`

			`timeServers = [`
argon: init system 2023-06-07 20:40:27 +02:00			`"ptbtime1.ptb.de"`
			`"ptbtime2.ptb.de"`
			`"ptbtime3.ptb.de"`
WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00			`];`
			`};`

Keep less data on disk 2022-12-01 22:48:43 +01:00			`services.journald.extraConfig = ''`
			`SystemMaxUse=512M`
journald: set MaxRetentionSec 2023-10-11 14:41:14 +02:00			`MaxRetentionSec=7day`
Keep less data on disk 2022-12-01 22:48:43 +01:00			`'';`

Update deps 2023-11-12 22:40:40 +01:00			`security.sudo.enable = true;`

sail/adsb-antenna: Install less docs 2023-02-23 21:41:41 +01:00			`documentation = {`
			`nixos.enable = false;`
			`doc.enable = false;`
			`};`
Update deps 2022-10-24 13:19:23 +02:00
WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00			`programs.fish.enable = true;`

			`users.users = {`
			`root = {`
			`openssh.authorizedKeys.keys = [ ssh-keys.LAN ];`
			`};`

			`daniel = {`
Introduce pre-commit-hooks.nix 2023-07-17 00:17:50 +02:00			`inherit (secret.users.daniel) hashedPassword;`
WIP: adsb-antenna system 2022-08-01 22:39:14 +02:00			`isNormalUser = true;`
			`home = "/home/daniel";`
			`description = "Daniel";`
			`extraGroups = [ "wheel" ];`
			`shell = pkgs.fish;`
			`openssh.authorizedKeys.keys = [ ssh-keys.LAN ];`
			`};`
			`};`
			`}`