summaryrefslogtreecommitdiffstats
path: root/modules/nomic
diff options
context:
space:
mode:
Diffstat (limited to 'modules/nomic')
-rw-r--r--modules/nomic/default.nix105
-rw-r--r--modules/nomic/hardware-configuration.nix49
-rw-r--r--modules/nomic/paths.nix12
-rw-r--r--modules/nomic/users.nix42
4 files changed, 0 insertions, 208 deletions
diff --git a/modules/nomic/default.nix b/modules/nomic/default.nix
deleted file mode 100644
index f61f97a89..000000000
--- a/modules/nomic/default.nix
+++ /dev/null
@@ -1,105 +0,0 @@
-{ config, pkgs, ... }:
-
-let
- location = pkgs.lib.nameValuePair; # TODO this is also in modules/tv/git/cgit.nix
-in
-
-{
- imports = [
- ./hardware-configuration.nix
- ./users.nix
- ../tv/base.nix
- ../tv/config/consul-server.nix
- ../tv/environment.nix
- ../tv/exim-retiolum.nix
- ../tv/git/public.nix
- ../tv/sanitize.nix
- ../tv/smartd.nix
- {
- imports = [ ../tv/identity ];
- tv.identity = {
- enable = true;
- self = config.tv.identity.hosts.nomic;
- };
- }
- {
- imports = [ ../tv/iptables ];
- tv.iptables = {
- enable = true;
- input-internet-accept-new-tcp = [
- "ssh"
- "http"
- "tinc"
- "smtp"
- ];
- };
- }
- {
- imports = [ ../tv/nginx ];
- tv.nginx = {
- enable = true;
- retiolum-locations = [
- (location "~ ^/~(.+?)(/.*)?\$" ''
- alias /home/$1/public_html$2;
- '')
- ];
- };
- }
- {
- imports = [ ../tv/retiolum ];
- tv.retiolum = {
- enable = true;
- hosts = <retiolum-hosts>;
- connectTo = [
- "gum"
- "pigstarter"
- ];
- };
- }
- ];
-
- boot.kernel.sysctl = {
- # Enable IPv6 Privacy Extensions
- "net.ipv6.conf.all.use_tempaddr" = 2;
- "net.ipv6.conf.default.use_tempaddr" = 2;
- };
-
- boot.tmpOnTmpfs = true;
-
- environment.systemPackages = with pkgs; [
- (writeScriptBin "play" ''
- #! /bin/sh
- set -euf
- mpv() { exec ${mpv}/bin/mpv "$@"; }
- case $1 in
- deepmix) mpv http://deepmix.ru/deepmix128.pls;;
- groovesalad) mpv http://somafm.com/play/groovesalad;;
- ntslive) mpv http://listen2.ntslive.co.uk/listen.pls;;
- *)
- echo "$0: bad argument: $*" >&2
- exit 23
- esac
- '')
- rxvt_unicode.terminfo
- tmux
- ];
-
- networking = {
- hostName = "nomic";
- wireless.enable = true;
- };
-
- services.logind.extraConfig = ''
- HandleHibernateKey=ignore
- HandleLidSwitch=ignore
- HandlePowerKey=ignore
- HandleSuspendKey=ignore
- '';
-
- services.openssh = {
- enable = true;
- hostKeys = [
- { type = "ed25519"; path = "/etc/ssh/ssh_host_ed25519_key"; }
- ];
- };
-}
diff --git a/modules/nomic/hardware-configuration.nix b/modules/nomic/hardware-configuration.nix
deleted file mode 100644
index 8a00730f1..000000000
--- a/modules/nomic/hardware-configuration.nix
+++ /dev/null
@@ -1,49 +0,0 @@
-{ config, ... }:
-
-{
- boot.initrd.luks = {
- cryptoModules = [ "aes" "sha1" "xts" ];
- devices = [
- {
- name = "luks1";
- device = "/dev/disk/by-uuid/cac73902-1023-4906-8e95-3a8b245337d4";
- }
- ];
- };
-
- boot.initrd.availableKernelModules = [ "ahci" ];
- boot.kernelModules = [ "kvm-intel" "wl" ];
- boot.extraModulePackages = [ config.boot.kernelPackages.broadcom_sta ];
-
- boot.loader.grub = {
- device = "/dev/sda";
- splashImage = null;
- };
-
- fileSystems."/" =
- { device = "/dev/disk/by-uuid/de4780fc-0473-4708-81df-299b7383274c";
- fsType = "btrfs";
- };
-
- fileSystems."/boot" =
- { device = "/dev/disk/by-uuid/be3a1d80-3157-4d7c-86cc-ef01b64eff5e";
- fsType = "ext4";
- };
-
- fileSystems."/home" =
- { device = "/dev/disk/by-uuid/9db9c8ff-51da-4cbd-9f0a-0cd3333bbaff";
- fsType = "btrfs";
- };
-
- swapDevices = [ ];
-
- nix = {
- buildCores = 2;
- maxJobs = 2;
- daemonIONiceLevel = 1;
- daemonNiceLevel = 1;
- };
-
- # For config.boot.kernelPackages.broadcom_sta
- nixpkgs.config.allowUnfree = true;
-}
diff --git a/modules/nomic/paths.nix b/modules/nomic/paths.nix
deleted file mode 100644
index 0bcf1d36d..000000000
--- a/modules/nomic/paths.nix
+++ /dev/null
@@ -1,12 +0,0 @@
-{
- lib.file.url = ../../lib;
- modules.file.url = ../../modules;
- nixpkgs.git = {
- url = https://github.com/NixOS/nixpkgs;
- rev = "4e5e441";
- cache = ../../tmp/git-cache;
- };
- pubkeys.file.url = ../../pubkeys;
- retiolum-hosts.file.url = ../../hosts;
- secrets.file.url = ../../secrets/nomic/nix;
-}
diff --git a/modules/nomic/users.nix b/modules/nomic/users.nix
deleted file mode 100644
index 70e1d8dcd..000000000
--- a/modules/nomic/users.nix
+++ /dev/null
@@ -1,42 +0,0 @@
-{ pkgs, ... }:
-
-{
- imports = [
- { users = import <secrets/users.nix>; }
- {
- users.extraUsers = {
- root = {
- openssh.authorizedKeys.keys = [
- (pkgs.lib.readFile <pubkeys/tv_wu.ssh.pub>)
- ];
- };
- tv = {
- uid = 1337;
- group = "users";
- home = "/home/tv";
- createHome = true;
- useDefaultShell = true;
- extraGroups = [
- "audio"
- "video"
- "wheel"
- ];
- openssh.authorizedKeys.keys = [
- (pkgs.lib.readFile <pubkeys/tv_wu.ssh.pub>)
- ];
- };
- };
- }
- ];
-
- users.defaultUserShell = "/run/current-system/sw/bin/bash";
- users.mutableUsers = false;
-
- security.setuidPrograms = [
- "sendmail" # for sudo
- ];
-
- security.sudo.extraConfig = ''
- Defaults mailto="tv@wu.retiolum"
- '';
-}