2021-08-20 19:28:51 -06:00
|
|
|
{ config, pkgs, options, inputs, ... }:
|
2021-07-10 15:26:55 -06:00
|
|
|
{
|
|
|
|
|
imports = [
|
|
|
|
|
./users.nix
|
2021-07-12 16:45:00 -06:00
|
|
|
./fonts.nix
|
2021-07-11 04:19:34 -06:00
|
|
|
./essential.nix
|
2021-08-02 05:18:07 -06:00
|
|
|
./environment.nix
|
2021-07-10 15:26:55 -06:00
|
|
|
];
|
|
|
|
|
|
2022-10-07 14:22:03 -06:00
|
|
|
nix = {
|
|
|
|
|
extraOptions = ''
|
2022-10-07 17:22:45 -06:00
|
|
|
experimental-features = nix-command flakes
|
2022-10-07 14:22:03 -06:00
|
|
|
'';
|
|
|
|
|
registry.nixpkgs.flake = inputs.nixpkgs;
|
|
|
|
|
};
|
|
|
|
|
|
2021-08-20 19:28:51 -06:00
|
|
|
nixpkgs.overlays = with inputs; [
|
2022-10-07 18:42:34 -06:00
|
|
|
nix.overlays.default
|
2021-08-20 19:28:51 -06:00
|
|
|
(import ./overlay.nix)
|
2023-06-28 21:45:08 -06:00
|
|
|
];
|
2021-08-20 19:28:51 -06:00
|
|
|
|
2021-07-10 15:26:55 -06:00
|
|
|
# Allow all the things
|
|
|
|
|
nixpkgs.config.allowUnfree = true;
|
|
|
|
|
nixpkgs.config.permittedInsecurePackages = [
|
|
|
|
|
"openssl-1.0.2u"
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
# Disabling these waits disables the stuck on boot up issue
|
|
|
|
|
systemd.services.systemd-udev-settle.enable = false;
|
|
|
|
|
systemd.services.NetworkManager-wait-online.enable = false;
|
2022-05-30 14:25:07 -06:00
|
|
|
systemd.services.systemd-user-sessions.enable = false;
|
2021-07-10 15:26:55 -06:00
|
|
|
|
|
|
|
|
# Security
|
|
|
|
|
programs.gnupg.agent = { enable = true; enableSSHSupport = true; };
|
|
|
|
|
services.pcscd.enable = true;
|
|
|
|
|
|
|
|
|
|
# Networking
|
|
|
|
|
environment.etc."ipsec.secrets".text = ''
|
|
|
|
|
include ipsec.d/ipsec.nm-l2tp.secrets
|
|
|
|
|
'';
|
2021-07-14 20:42:35 -06:00
|
|
|
|
2021-07-25 16:03:59 -06:00
|
|
|
networking.firewall.enable = false;
|
2021-07-10 15:26:55 -06:00
|
|
|
networking.networkmanager = {
|
|
|
|
|
enable = true;
|
2021-07-10 17:12:39 -06:00
|
|
|
enableStrongSwan = true;
|
2023-05-14 15:16:03 -06:00
|
|
|
plugins = [ pkgs.networkmanager-l2tp pkgs.networkmanager-openvpn ];
|
2021-07-10 17:12:39 -06:00
|
|
|
extraConfig = ''
|
|
|
|
|
[main]
|
|
|
|
|
rc-manager=resolvconf
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
services.avahi = {
|
|
|
|
|
enable = true;
|
|
|
|
|
nssmdns = true;
|
|
|
|
|
publish = {
|
|
|
|
|
enable = true;
|
|
|
|
|
domain = true;
|
|
|
|
|
userServices = true;
|
|
|
|
|
};
|
2021-07-10 15:26:55 -06:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
# Audio
|
|
|
|
|
sound.enable = true;
|
|
|
|
|
hardware.pulseaudio.enable = true;
|
|
|
|
|
|
|
|
|
|
# Bluetooth
|
|
|
|
|
hardware.bluetooth.enable = true;
|
|
|
|
|
services.blueman.enable = true;
|
|
|
|
|
|
2022-09-16 16:31:28 -06:00
|
|
|
# Printing
|
2023-06-28 21:45:08 -06:00
|
|
|
services.printing.enable = true;
|
2022-09-16 16:31:28 -06:00
|
|
|
|
2021-07-19 22:01:28 -06:00
|
|
|
# Keyboard/Keymap
|
|
|
|
|
console.keyMap = "us";
|
|
|
|
|
|
2021-07-10 17:12:39 -06:00
|
|
|
i18n = {
|
|
|
|
|
defaultLocale = "en_US.UTF-8";
|
|
|
|
|
};
|
|
|
|
|
|
2021-07-10 15:26:55 -06:00
|
|
|
# Update timezone automatically
|
|
|
|
|
services.tzupdate.enable = true;
|
|
|
|
|
|
|
|
|
|
# TODO: Add a comment explaining what this does.
|
|
|
|
|
services.gnome.at-spi2-core.enable = true;
|
|
|
|
|
|
2022-09-16 16:31:28 -06:00
|
|
|
services.gnome.gnome-keyring.enable = true;
|
|
|
|
|
|
2021-07-10 17:12:39 -06:00
|
|
|
services.openssh.enable = true;
|
|
|
|
|
|
|
|
|
|
services.locate.enable = true;
|
|
|
|
|
|
|
|
|
|
virtualisation.docker.enable = true;
|
|
|
|
|
|
|
|
|
|
hardware.keyboard.zsa.enable = true;
|
|
|
|
|
|
2022-09-16 16:31:28 -06:00
|
|
|
services.logind.extraConfig = "RuntimeDirectorySize=5G";
|
|
|
|
|
|
|
|
|
|
services.dbus.packages = [ pkgs.gcr ];
|
2021-07-10 15:26:55 -06:00
|
|
|
}
|
