41 lines
1.2 KiB
Nix
41 lines
1.2 KiB
Nix
{ config, pkgs, ... }:
|
|
{
|
|
imports = [
|
|
./fs.nix
|
|
];
|
|
|
|
sane.roles.client = true;
|
|
sane.services.wg-home.enable = true;
|
|
sane.services.wg-home.ip = config.sane.hosts.by-name."lappy".wg-home.ip;
|
|
|
|
# sane.packages.enableDevPkgs = true;
|
|
|
|
# sane.users.guest.enable = true;
|
|
sane.gui.sway.enable = true;
|
|
sane.persist.enable = true;
|
|
sane.nixcache.enable = true;
|
|
boot.loader.efi.canTouchEfiVariables = false;
|
|
sane.image.extraBootFiles = [ pkgs.bootpart-uefi-x86_64 ];
|
|
|
|
sops.secrets.colin-passwd = {
|
|
sopsFile = ../../../secrets/lappy.yaml;
|
|
neededForUsers = true;
|
|
};
|
|
|
|
# default config: https://man.archlinux.org/man/snapper-configs.5
|
|
# defaults to something like:
|
|
# - hourly snapshots
|
|
# - auto cleanup; keep the last 10 hourlies, last 10 daylies, last 10 monthlys.
|
|
services.snapper.configs.nix = {
|
|
# TODO: for the impermanent setup, we'd prefer to just do /nix/persist,
|
|
# but that also requires setting up the persist dir as a subvol
|
|
subvolume = "/nix";
|
|
};
|
|
|
|
# TODO: only here for debugging
|
|
# services.ipfs.enable = true;
|
|
|
|
# docs: https://nixos.org/manual/nixos/stable/options.html#opt-system.stateVersion
|
|
system.stateVersion = "21.05";
|
|
}
|