0f3f0933b1
mpv: sandbox with firejail
2024-01-22 03:50:28 +00:00
9ecd0adcbe
firefox: sandbox with firejail
...
TODO: get it so open-in-mpv launches an mpv that has access to ~/.config/mpv
i guess this is the 'firejail url problem'
2024-01-21 23:59:15 +00:00
ad92a2e158
programs: abort when no firejail profile is found for a program.
...
in the future, i can whitelist specific binaries to omit their firejail
profiles.
2024-01-21 04:32:49 +00:00
5f5891d241
programs: apply firejail profile to programs which are net isolated
2024-01-21 04:28:48 +00:00
992194a1f0
programs: achieve network sandboxing without "sane-vpn do"
2024-01-21 03:51:12 +00:00
bad6a7bfee
programs: implement "default vpn" with native nix code instead of sane-vpn
2024-01-21 01:04:31 +00:00
59187a0ec0
programs: allow running binaries in a netns-style firejail
2024-01-20 11:11:12 +00:00
008a6192d4
mpv: associate with https://youtube.com/ ...
2023-12-11 04:52:49 +00:00
91c2f6fc95
implement sane.programs.slowToBuild and {moby,desko,lappy}-light targets
...
i'm not sure this is the exact right abstraction, but it's a starting point
2023-11-18 22:06:42 +00:00
7bef6b4089
modules: users/programs: cleaner option passthrough
2023-09-12 05:44:53 +00:00
3e33313bf0
programs: add a "services" option which forwards into the user config
2023-09-12 04:44:07 +00:00
8dc568d52e
ship mate.engrampa as archive manager (after getting it to cross compile)
2023-08-07 03:43:37 +00:00
dcf97b70e1
programs: use the declPackageSet
helper
2023-08-02 21:20:50 +00:00
535bbd2c0b
sane.{programs,user}.fs: pass fs values onto sane.fs unmerged
...
notably, this allows ~/.config/zsh/.zshrc to be specified by more than one location, and for the values to not overwrite one another
2023-07-18 11:25:27 +00:00
088286d8f7
mime: support multiple implementors of the same association, with different priorities
2023-07-15 10:11:31 +00:00
55d64eb598
programs: factor out a sane.programs.<foo>.mime
schema
2023-07-15 08:44:18 +00:00
8b3521d08f
fixup sxmo persistence (prev two commits don't build
2023-07-13 07:17:09 +00:00
01b8a28a52
programs.fs: remove extraneous wantedBeforeBy
clause
...
it's provided by `sane.user.fs`
2023-07-08 02:06:44 +00:00
b42207882e
programs.persist: fix to allow any options that underlying persist allows
2023-07-08 02:06:18 +00:00
acf89a041e
modules/programs: cleanup with
statements
2023-07-03 07:55:05 +00:00
9340d5f391
programs: remove explicit default definitions
2023-07-03 07:49:44 +00:00
9f1d61c781
programs: remove quadratic behavior
2023-07-03 07:16:24 +00:00
83e48eabad
WIP: decrease quadratic operations in modules/programs.nix
2023-07-03 07:04:57 +00:00
9b9273b725
programs: call out some quadratic behavior; i can try to fix it in the future
2023-07-03 06:41:48 +00:00
3df165593c
web browser: set $BROWSER environment variable
...
this gets used as fallback by e.g. xdg-email
2023-06-30 08:50:58 +00:00
40ec4d6ce0
programs: allow programs to ship system-level environment variables
2023-06-27 10:24:48 +00:00
ec3a7067b6
modules/programs.nix: fix eval error when a program is suggestedBy multiple enabled packages
2023-06-23 02:05:26 +00:00
74ed7bff11
programs: remove wantedBy
from the fs, and make it implicit
2023-05-08 21:41:02 +00:00
f89f136041
sane.programs: allow per-program config (and port web-browser to use that)
2023-05-08 09:49:58 +00:00
44195a7d87
programs: ship /home secrets correctly
2023-04-26 03:46:18 +00:00
9c09d03e5c
programs: add per-program secrets
2023-04-26 00:19:33 +00:00
1f2c9a9a5e
refactor hosts/common/home to use sane.programs
API
2023-04-24 07:22:33 +00:00
337fb9e9d9
sane.programs: allow programs to define files, as per sane.fs
2023-04-24 06:49:56 +00:00
e7f02c057e
steam: integrate into sane.programs, and enable for lappy
2023-04-23 23:21:08 +00:00
e0a6f8ea4a
flake: add host-pkgs.<host>.<pkg>
output
...
this builds packages precisely as they are defined by the given host.
significant for testing whether a cross-compiled host builds things
correctly, for example.
2023-02-05 19:34:32 +00:00
7ce0c34f43
sway: specify dependent packages more idiomatically, and fix bug where phosh wasn't actually shipping its dependents
2023-02-04 00:43:00 +00:00
afb006f6ec
programs: port last users & remove the old packages.nix
2023-02-03 05:26:57 +00:00
736999eea6
programs: port console packages to new config system
2023-02-03 04:24:17 +00:00
979ed38506
programs: make system
be some type of meta-program/package
2023-02-03 04:03:22 +00:00
46285852d0
modules: add a sane.programs
interface which i can use going forward in place of sane.packages
2023-02-03 03:38:23 +00:00