nix-sops
This commit is contained in:
mjallen18
@@ -12,7 +12,7 @@
|
||||
}:
|
||||
let
|
||||
user = "admin";
|
||||
password = "$y$j9T$EkPXmsmIMFFZ.WRrBYCxS1$P0kwo6e4.WM5DsqUcEqWC3MrZp5KfCjxffraMFZWu06";
|
||||
passwordFile = config.sops.secrets."jallen-nas/admin_password".path;
|
||||
in
|
||||
{
|
||||
imports = [
|
||||
@@ -25,9 +25,15 @@ in
|
||||
./ups.nix
|
||||
./samba.nix
|
||||
./services.nix
|
||||
./sops.nix
|
||||
../default.nix
|
||||
];
|
||||
|
||||
nix.settings.experimental-features = [
|
||||
"nix-command"
|
||||
"flakes"
|
||||
];
|
||||
|
||||
# Cockpit
|
||||
services.cockpit = {
|
||||
enable = true;
|
||||
@@ -78,42 +84,39 @@ in
|
||||
};
|
||||
|
||||
systemPackages = with pkgs; [
|
||||
vim
|
||||
wget
|
||||
nano
|
||||
efibootmgr
|
||||
sbctl
|
||||
pciutils
|
||||
vulkan-tools
|
||||
clinfo
|
||||
glances
|
||||
python3
|
||||
nix-ld
|
||||
authentik
|
||||
binutils
|
||||
gcc
|
||||
cryptsetup
|
||||
clinfo
|
||||
cmake
|
||||
duperemove
|
||||
efibootmgr
|
||||
ffmpeg
|
||||
gcc
|
||||
glances
|
||||
htop
|
||||
lm_sensors
|
||||
nano
|
||||
ninja
|
||||
nix-inspect
|
||||
nix-ld
|
||||
nmon
|
||||
nodejs-18_x
|
||||
nut
|
||||
nmon
|
||||
pass
|
||||
protonvpn-cli
|
||||
protonmail-bridge
|
||||
pass
|
||||
cockpit
|
||||
packagekit
|
||||
# gnome.gnome-packagekit
|
||||
unstable.nix-inspect
|
||||
unstable.gpt4all
|
||||
lm_sensors
|
||||
htop
|
||||
pass
|
||||
pciutils
|
||||
protonmail-bridge
|
||||
protonvpn-cli
|
||||
python3
|
||||
sbctl
|
||||
speedtest-cli
|
||||
tailscale
|
||||
tpm2-tools
|
||||
tpm2-tss
|
||||
cryptsetup
|
||||
duperemove
|
||||
speedtest-cli
|
||||
vim
|
||||
vulkan-tools
|
||||
wget
|
||||
];
|
||||
};
|
||||
|
||||
@@ -158,7 +161,7 @@ in
|
||||
"nix-apps"
|
||||
"jallen-nas"
|
||||
]; # Enable ‘sudo’ for the user.
|
||||
initialHashedPassword = password;
|
||||
hashedPasswordFile = passwordFile;
|
||||
shell = pkgs.zsh;
|
||||
openssh.authorizedKeys.keys = [
|
||||
# macBook
|
||||
@@ -192,7 +195,7 @@ in
|
||||
"docker"
|
||||
"podman"
|
||||
]; # Enable ‘sudo’ for the user.
|
||||
hashedPassword = password;
|
||||
hashedPasswordFile = passwordFile;
|
||||
};
|
||||
|
||||
groups.nut.name = "nut";
|
||||
@@ -202,7 +205,7 @@ in
|
||||
isSystemUser = true;
|
||||
createHome = true;
|
||||
home = "/var/lib/nut";
|
||||
hashedPassword = password;
|
||||
hashedPasswordFile = passwordFile;
|
||||
};
|
||||
};
|
||||
|
||||
|
||||
Reference in New Issue
Block a user