nettika/nixos
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: nettika:samba
Branches Tags
nettika:master nettika:samba nettika:memos nettika:mautrix-telegram nettika:romraider nettika:file-server
...
compare: nettika:0ebe8d112120f2e68342f9ab54bcc3cba1428522
Branches Tags
nettika:samba nettika:memos nettika:master nettika:mautrix-telegram nettika:romraider nettika:file-server

7 Commits
samba ... 0ebe8d1121

Author SHA1 Message Date
Nettika
0ebe8d1121 Serve Synapse Admin from quasar 2024-09-27 21:01:31 -07:00
Nettika
d80ae92464 Add system-control-printer to marauder 2024-09-27 21:01:31 -07:00
Nettika
883204e90e Set synapse secrets 2024-09-27 21:01:31 -07:00
Nettika
0172e6af2b Configure synapse on quasar 2024-09-26 00:40:56 -07:00
Nettika
66786c2455 Move zerotier out of the common module 2024-09-25 21:05:05 -07:00
Nettika
e30a5830ef Add quasar host 2024-09-25 19:44:47 -07:00
Nettika
572cca2dd9 Configure printing on marauder 2024-09-25 16:20:21 -07:00
8 changed files with 87 additions and 6 deletions
Expand all files Collapse all files

6
flake.nix
View File

@@ -15,6 +15,7 @@
common = import ./modules/common.nix;
prompt = import ./modules/prompt.nix;
server = import ./modules/server.nix;
zerotier = import ./modules/zerotier.nix;
};
nixosConfigurations = {
@@ -28,6 +29,11 @@
modules = [ ./hosts/monolith ];
specialArgs = { inherit self inputs secrets; };
};
quasar = nixpkgs.lib.nixosSystem {
system = "x86_64-linux";
modules = [ ./hosts/quasar ];
specialArgs = { inherit self inputs secrets; };
};
};
};
}

2
hosts/marauder/default.nix
View File

@@ -3,8 +3,10 @@
imports = [
self.nixosModules.common
self.nixosModules.prompt
self.nixosModules.zerotier
./backup.nix
./dev.nix
./printing.nix
];
networking.hostName = "marauder";

16
hosts/marauder/printing.nix Normal file
View File

@@ -0,0 +1,16 @@
{ pkgs, ... }:
{
environment.systemPackages = with pkgs; [
system-config-printer
];
services.printing = {
enable = true;
};
services.avahi = {
enable = true;
nssmdns4 = true;
openFirewall = true;
};
}

1
hosts/monolith/default.nix
View File

@@ -4,6 +4,7 @@
self.nixosModules.common
self.nixosModules.prompt
self.nixosModules.server
self.nixosModules.zerotier
./dns.nix
];

54
hosts/quasar/default.nix Normal file
View File

@@ -0,0 +1,54 @@
{ self, modulesPath, pkgs, config, secrets, ... }:
{
imports = [
"${modulesPath}/virtualisation/amazon-image.nix"
self.nixosModules.common
self.nixosModules.prompt
self.nixosModules.server
];
networking = {
hostName = "quasar";
domain = "consortium.chat";
firewall.allowedTCPPorts = [ 80 443 ];
};
services.postgresql = {
enable = true;
};
services.caddy = {
enable = true;
virtualHosts = {
"${config.networking.domain}".extraConfig = ''
reverse_proxy localhost:8008
header Strict-Transport-Security "max-age=63072000; includeSubDomains;"
'';
"matrix.${config.networking.domain}".extraConfig = ''
reverse_proxy /_matrix/* localhost:8008
reverse_proxy /_synapse/client/* localhost:8008
'';
"admin.${config.networking.domain}".extraConfig = ''
root * ${pkgs.synapse-admin}
file_server
'';
};
};
services.matrix-synapse = {
enable = true;
settings = {
server_name = config.networking.domain;
serve_server_wellknown = true;
registration_shared_secret = secrets.synapse."consortium.chat".registration-shared-secret;
macaroon_secret_key = secrets.synapse."consortium.chat".macaroon-secret-key;
form_secret = secrets.synapse."consortium.chat".form-secret;
};
};
promptEmoji = "🌟";
time.timeZone = "America/Los_Angeles";
system.stateVersion = "24.05";
}

7
modules/common.nix
View File

@@ -1,4 +1,4 @@
{ pkgs, secrets, ... }:
{ pkgs, ... }:
{
nixpkgs.config.allowUnfree = true;
@@ -41,11 +41,6 @@
'';
};
services.zerotierone = {
enable = true;
joinNetworks = secrets.zerotier.networks;
};
environment.systemPackages = with pkgs; [
git-crypt
jq

7
modules/zerotier.nix Normal file
View File

@@ -0,0 +1,7 @@
{ secrets, ... }:
{
services.zerotierone = {
enable = true;
joinNetworks = secrets.zerotier.networks;
};
}

BIN
secrets.json
View File

Binary file not shown.