2022-07-15 06:58:27 +00:00
|
|
|
{ config, pkgs, ... }:
|
2022-05-22 08:27:02 +00:00
|
|
|
{
|
2022-05-22 08:59:04 +00:00
|
|
|
imports = [
|
2022-05-22 09:03:25 +00:00
|
|
|
./fs.nix
|
2022-05-22 08:59:04 +00:00
|
|
|
];
|
2022-05-23 07:07:08 +00:00
|
|
|
|
2022-08-01 07:23:49 +00:00
|
|
|
sane.gui.sway.enable = true;
|
|
|
|
sane.services.duplicity.enable = true;
|
2022-09-14 21:45:07 +00:00
|
|
|
sane.services.nixserve.enable = true;
|
|
|
|
sane.services.nixserve.sopsFile = ../../secrets/desko.yaml;
|
2022-08-01 07:23:49 +00:00
|
|
|
sane.impermanence.enable = true;
|
2022-06-24 09:07:40 +00:00
|
|
|
|
|
|
|
boot.loader.efi.canTouchEfiVariables = false;
|
2022-08-01 07:23:49 +00:00
|
|
|
sane.image.extraBootFiles = [ pkgs.bootpart-uefi-x86_64 ];
|
2022-06-10 08:43:48 +00:00
|
|
|
|
2022-06-16 00:22:27 +00:00
|
|
|
# needed to use libimobiledevice/ifuse, for iphone sync
|
|
|
|
services.usbmuxd.enable = true;
|
2022-08-01 07:23:49 +00:00
|
|
|
users.users.usbmux.uid = config.sane.allocations.usbmux-uid;
|
|
|
|
users.groups.usbmux.gid = config.sane.allocations.usbmux-gid;
|
2022-06-16 00:22:27 +00:00
|
|
|
|
2022-06-29 10:58:11 +00:00
|
|
|
# default config: https://man.archlinux.org/man/snapper-configs.5
|
|
|
|
# defaults to something like:
|
|
|
|
# - hourly snapshots
|
|
|
|
# - auto cleanup; keep the last 10 hourlies, last 10 daylies, last 10 monthlys.
|
|
|
|
services.snapper.configs.nix = {
|
|
|
|
# TODO: for the impermanent setup, we'd prefer to just do /nix/persist,
|
|
|
|
# but that also requires setting up the persist dir as a subvol
|
|
|
|
subvolume = "/nix";
|
|
|
|
# TODO: ALLOW_USERS doesn't seem to work. still need `sudo snapper -c nix list`
|
|
|
|
extraConfig = ''
|
|
|
|
ALLOW_USERS = "colin";
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
2022-06-10 08:43:48 +00:00
|
|
|
sops.secrets.duplicity_passphrase = {
|
|
|
|
sopsFile = ../../secrets/desko.yaml;
|
|
|
|
};
|
2022-06-07 00:35:28 +00:00
|
|
|
|
2022-07-16 10:10:57 +00:00
|
|
|
programs.steam = {
|
|
|
|
enable = true;
|
|
|
|
# not sure if needed: stole this whole snippet from the wiki
|
|
|
|
remotePlay.openFirewall = true; # Open ports in the firewall for Steam Remote Play
|
|
|
|
dedicatedServer.openFirewall = true; # Open ports in the firewall for Source Dedicated Server
|
|
|
|
};
|
2022-08-01 07:23:49 +00:00
|
|
|
sane.impermanence.home-dirs = [
|
2022-07-16 10:10:57 +00:00
|
|
|
".steam"
|
|
|
|
".local/share/Steam"
|
|
|
|
];
|
|
|
|
|
2022-05-28 20:14:48 +00:00
|
|
|
# docs: https://nixos.org/manual/nixos/stable/options.html#opt-system.stateVersion
|
|
|
|
system.stateVersion = "21.05";
|
2022-05-22 08:27:02 +00:00
|
|
|
}
|