nixos-config/machines/raspite/configuration.nix

{
  config,
  lib,
  pkgs,
  ...
}:

{
  imports = [ ./hass.nix ];

  commonSettings.nix.enableMirrors = true;

  nixpkgs.overlays = [
    # Workaround https://github.com/NixOS/nixpkgs/issues/126755#issuecomment-869149243
    (final: super: {
      makeModulesClosure = x: super.makeModulesClosure (x // { allowMissing = true; });
    })
  ];

  environment.systemPackages = with pkgs; [
    git
    libraspberrypi
    raspberrypi-eeprom
  ];

  system.stateVersion = "24.05";

  networking = {
    hostName = "raspite";
    useDHCP = false;
    interfaces.eth0.useDHCP = true;
  };

  # boot.kernelPackages = pkgs.linuxPackages_stable;

  custom.kanidm-client = {
    enable = true;
    uri = "https://auth.xinyang.life";
    asSSHAuth = {
      enable = true;
      allowedGroups = [ "linux_users" ];
      hardening = true;
    };
    sudoers = [ "xin@auth.xinyang.life" ];
  };

  security.sudo = {
    execWheelOnly = true;
    wheelNeedsPassword = false;
  };

  # fileSystems."/".fsType = lib.mkForce "btrfs";
  boot.supportedFilesystems.zfs = lib.mkForce false;

  services.dae.enable = false;
  services.dae.configFile = "/var/lib/dae/config.dae";
}
treewide: apply the new rfc nixfmt 2024-08-25 09:45:58 +00:00			`{`
			`config,`
			`lib,`
			`pkgs,`
			`...`
			`}:`
rpi4: add new device 2023-04-16 05:18:23 +00:00
			`{`
treewide: apply the new rfc nixfmt 2024-08-25 09:45:58 +00:00			`imports = [ ./hass.nix ];`
feat(modules): move nix settings to a seperate module 2024-07-17 07:52:30 +00:00
			`commonSettings.nix.enableMirrors = true;`

rpi4: add new device 2023-04-16 05:18:23 +00:00			`nixpkgs.overlays = [`
			`# Workaround https://github.com/NixOS/nixpkgs/issues/126755#issuecomment-869149243`
			`(final: super: {`
treewide: apply the new rfc nixfmt 2024-08-25 09:45:58 +00:00			`makeModulesClosure = x: super.makeModulesClosure (x // { allowMissing = true; });`
rpi4: add new device 2023-04-16 05:18:23 +00:00			`})`
			`];`
rpi4: rename to raspite, add password 2023-04-23 03:06:57 +00:00
			`environment.systemPackages = with pkgs; [`
			`git`
raspite: rewrite 2024-06-11 10:24:22 +00:00			`libraspberrypi`
			`raspberrypi-eeprom`
rpi4: rename to raspite, add password 2023-04-23 03:06:57 +00:00			`];`

raspite: rewrite 2024-06-11 10:24:22 +00:00			`system.stateVersion = "24.05";`
treewide: apply the new rfc nixfmt 2024-08-25 09:45:58 +00:00
rpi4: add new device 2023-04-16 05:18:23 +00:00			`networking = {`
rpi4: rename to raspite, add password 2023-04-23 03:06:57 +00:00			`hostName = "raspite";`
rpi4: add new device 2023-04-16 05:18:23 +00:00			`useDHCP = false;`
			`interfaces.eth0.useDHCP = true;`
			`};`

raspite: rewrite 2024-06-11 10:24:22 +00:00			`# boot.kernelPackages = pkgs.linuxPackages_stable;`
Bump version 2023-05-27 01:39:16 +00:00
raspite: rewrite 2024-06-11 10:24:22 +00:00			`custom.kanidm-client = {`
rpi4: add new device 2023-04-16 05:18:23 +00:00			`enable = true;`
raspite: rewrite 2024-06-11 10:24:22 +00:00			`uri = "https://auth.xinyang.life";`
			`asSSHAuth = {`
			`enable = true;`
			`allowedGroups = [ "linux_users" ];`
			`hardening = true;`
			`};`
			`sudoers = [ "xin@auth.xinyang.life" ];`
rpi4: add new device 2023-04-16 05:18:23 +00:00			`};`
raspite: rewrite 2024-06-11 10:24:22 +00:00
			`security.sudo = {`
			`execWheelOnly = true;`
			`wheelNeedsPassword = false;`
rpi4: add new device 2023-04-16 05:18:23 +00:00			`};`
raspite: rewrite 2024-06-11 10:24:22 +00:00
			`# fileSystems."/".fsType = lib.mkForce "btrfs";`
			`boot.supportedFilesystems.zfs = lib.mkForce false;`

			`services.dae.enable = false;`
			`services.dae.configFile = "/var/lib/dae/config.dae";`
bump version 2023-11-15 07:50:26 +00:00			`}`