chore: fix format
This commit is contained in:
parent
5da958c996
commit
55473f78ad
4 changed files with 60 additions and 47 deletions
24
flake.nix
24
flake.nix
|
|
@ -102,7 +102,17 @@
|
||||||
|
|
||||||
homeConfigurations = builtins.listToAttrs [ (mkHomeConfiguration "xin" "calcite") ];
|
homeConfigurations = builtins.listToAttrs [ (mkHomeConfiguration "xin" "calcite") ];
|
||||||
|
|
||||||
colmenaHive = colmena.lib.makeHive {
|
colmenaHive =
|
||||||
|
let
|
||||||
|
deploymentModule = {
|
||||||
|
deployment.targetUser = "xin";
|
||||||
|
};
|
||||||
|
sharedModules = [
|
||||||
|
self.nixosModules.default
|
||||||
|
deploymentModule
|
||||||
|
];
|
||||||
|
in
|
||||||
|
colmena.lib.makeHive {
|
||||||
meta = {
|
meta = {
|
||||||
nixpkgs = import nixpkgs {
|
nixpkgs = import nixpkgs {
|
||||||
system = "x86_64-linux";
|
system = "x86_64-linux";
|
||||||
|
|
@ -115,19 +125,18 @@
|
||||||
|
|
||||||
massicot = { name, nodes, pkgs, ... }: with inputs; {
|
massicot = { name, nodes, pkgs, ... }: with inputs; {
|
||||||
deployment.targetHost = "49.13.13.122";
|
deployment.targetHost = "49.13.13.122";
|
||||||
|
deployment.buildOnTarget = true;
|
||||||
|
|
||||||
imports = [
|
imports = [
|
||||||
{ nixpkgs.system = "aarch64-linux"; }
|
{ nixpkgs.system = "aarch64-linux"; }
|
||||||
self.nixosModules.default
|
|
||||||
machines/massicot
|
machines/massicot
|
||||||
];
|
] ++ sharedModules;
|
||||||
};
|
};
|
||||||
|
|
||||||
sgp-00 = { name, nodes, pkgs, ... }: with inputs; {
|
sgp-00 = { name, nodes, pkgs, ... }: with inputs; {
|
||||||
imports = [
|
imports = [
|
||||||
self.nixosModules.default
|
|
||||||
machines/dolomite
|
machines/dolomite
|
||||||
];
|
] ++ sharedModules;
|
||||||
nixpkgs.system = "x86_64-linux";
|
nixpkgs.system = "x86_64-linux";
|
||||||
networking.hostName = "sgp-00";
|
networking.hostName = "sgp-00";
|
||||||
system.stateVersion = "23.11";
|
system.stateVersion = "23.11";
|
||||||
|
|
@ -140,9 +149,8 @@
|
||||||
|
|
||||||
tok-00 = { name, nodes, pkgs, ... }: with inputs; {
|
tok-00 = { name, nodes, pkgs, ... }: with inputs; {
|
||||||
imports = [
|
imports = [
|
||||||
self.nixosModules.default
|
|
||||||
machines/dolomite
|
machines/dolomite
|
||||||
];
|
] ++ sharedModules;
|
||||||
nixpkgs.system = "x86_64-linux";
|
nixpkgs.system = "x86_64-linux";
|
||||||
networking.hostName = "tok-00";
|
networking.hostName = "tok-00";
|
||||||
system.stateVersion = "23.11";
|
system.stateVersion = "23.11";
|
||||||
|
|
@ -191,7 +199,7 @@
|
||||||
{
|
{
|
||||||
devShells = {
|
devShells = {
|
||||||
default = pkgs.mkShell {
|
default = pkgs.mkShell {
|
||||||
packages = with pkgs; [ git colmena sops nix-output-monitor ];
|
packages = with pkgs; [ git colmena sops nix-output-monitor rnix-lsp ];
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -66,12 +66,17 @@
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
services.fail2ban.enable = true;
|
services.fail2ban.enable = true;
|
||||||
|
programs.mosh.enable = true;
|
||||||
|
|
||||||
security.sudo = {
|
security.sudo = {
|
||||||
execWheelOnly = true;
|
execWheelOnly = true;
|
||||||
wheelNeedsPassword = false;
|
wheelNeedsPassword = false;
|
||||||
};
|
};
|
||||||
|
|
||||||
|
nix.settings = {
|
||||||
|
trusted-users = config.users.groups.wheel.members;
|
||||||
|
};
|
||||||
|
|
||||||
services.sing-box = let
|
services.sing-box = let
|
||||||
singTls = {
|
singTls = {
|
||||||
enabled = true;
|
enabled = true;
|
||||||
|
|
|
||||||
|
|
@ -87,8 +87,8 @@
|
||||||
KerberosAuthentication = "no";
|
KerberosAuthentication = "no";
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
services.fail2ban.enable = true;
|
services.fail2ban.enable = true;
|
||||||
|
programs.mosh.enable = true;
|
||||||
|
|
||||||
systemd.services.sshd.wantedBy = pkgs.lib.mkForce [ "multi-user.target" ];
|
systemd.services.sshd.wantedBy = pkgs.lib.mkForce [ "multi-user.target" ];
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue