-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathconfiguration.nix
101 lines (85 loc) · 2.15 KB
/
configuration.nix
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
# configuration in this file is shared by all hosts
{ pkgs, ... }: {
users.users = {
root = {
initialHashedPassword = "$6$5cnzOSUXr4kqB3fv$yYX0obtz4jhVWo0HFm963JpY0lhq8SUfzJ5092WV7mMI402Z7upb27h0aqrkmO9SV6OhwG2gd9zwANpkMG3CZ/";
openssh.authorizedKeys.keys = [ "sshKey_placeholder" ];
};
};
users.users.ejiek = {
initialHashedPassword = "!";
isNormalUser = true;
extraGroups = [
"libvirtd"
"networkmanager"
"wheel"
"wireshark"
];
shell = pkgs.zsh;
};
home-manager.users.ejiek = {
home.username = "ejiek";
home.stateVersion = "23.11";
};
programs.neovim = {
enable = true;
viAlias = true;
vimAlias = true;
};
services.openssh = {
enable = true;
settings = { PasswordAuthentication = false; };
};
boot.zfs.forceImportRoot = false;
nix.settings.experimental-features = [ "nix-command" "flakes" ];
programs.git.enable = true;
security = {
doas = {
enable = true;
extraRules = [{
users = ["ejiek"];
persist = true;
}];
};
sudo.enable = false;
};
environment.systemPackages = builtins.attrValues {
inherit (pkgs)
cryptsetup
;
};
fonts = {
packages = with pkgs; [
(nerdfonts.override { fonts = [ "FiraCode" "Hack" ]; })
noto-fonts-emoji
];
fontconfig = {
enable = true;
defaultFonts = {
serif = [ "Hack Nerd Font" ];
sansSerif = [ "Hack Nerd Font" ];
monospace = [ "FiraCode Nerd Font Mono" ];
emoji = [ "NotoColorEmoji" ];
};
};
};
i18n = {
defaultLocale = "en_GB.utf8";
extraLocaleSettings = {
LC_ADDRESS = "en_GB.utf8";
LC_IDENTIFICATION = "en_GB.utf8";
LC_MEASUREMENT = "en_GB.utf8";
LC_MONETARY = "en_GB.utf8";
LC_NAME = "en_GB.utf8";
LC_NUMERIC = "en_GB.utf8";
LC_PAPER = "en_GB.utf8";
LC_TELEPHONE = "en_GB.utf8";
LC_TIME = "en_GB.utf8";
};
};
#nixpkgs.config.allowUnfree = false;
networking.nftables.enable = true;
networking.firewall.enable = true;
virtualisation.libvirtd.enable = true;
virtualisation.spiceUSBRedirection.enable = true;
}