2023-09-08 21:07:54 +03:00
|
|
|
{ config, pkgs, lib, ... }:
|
2023-07-16 16:43:13 +03:00
|
|
|
|
2023-10-03 17:15:14 +03:00
|
|
|
let
|
|
|
|
|
my = import ../.;
|
|
|
|
|
secrets = my.secrets { inherit config; };
|
|
|
|
|
in {
|
2023-07-16 16:43:13 +03:00
|
|
|
nix = {
|
|
|
|
|
package = pkgs.nixUnstable;
|
|
|
|
|
extraOptions = ''
|
|
|
|
|
experimental-features = nix-command flakes
|
|
|
|
|
'';
|
2023-07-16 19:02:49 +03:00
|
|
|
settings = {
|
2023-11-01 21:42:41 +03:00
|
|
|
sandbox = true;
|
2023-11-25 18:13:44 +03:00
|
|
|
trusted-users = [ "root" "ivabus" ];
|
|
|
|
|
allowed-users = [ "root" "ivabus" ];
|
2023-07-16 19:02:49 +03:00
|
|
|
};
|
|
|
|
|
gc = {
|
|
|
|
|
automatic = true;
|
|
|
|
|
options = "--delete-older-than 7d";
|
|
|
|
|
};
|
2023-07-16 16:43:13 +03:00
|
|
|
};
|
2023-07-16 19:00:44 +03:00
|
|
|
|
2023-08-19 11:06:28 +03:00
|
|
|
documentation = {
|
|
|
|
|
doc.enable = false;
|
|
|
|
|
info.enable = false;
|
|
|
|
|
man.enable = true;
|
2023-11-25 18:13:44 +03:00
|
|
|
nixos.enable = false;
|
2023-08-19 11:06:28 +03:00
|
|
|
};
|
|
|
|
|
|
2023-11-25 18:13:44 +03:00
|
|
|
environment.systemPackages = with pkgs; [
|
|
|
|
|
wget
|
|
|
|
|
curl
|
|
|
|
|
git
|
|
|
|
|
git-crypt
|
|
|
|
|
neovim
|
|
|
|
|
python3
|
|
|
|
|
usbutils
|
|
|
|
|
pciutils
|
|
|
|
|
coreutils
|
|
|
|
|
killall
|
|
|
|
|
];
|
2023-10-03 17:15:14 +03:00
|
|
|
# Inject secrets through module arguments while evaluating configs.
|
|
|
|
|
_module.args.secrets = secrets;
|
2023-08-31 18:28:25 +03:00
|
|
|
}
|
