diff options
Diffstat (limited to 'machines')
| -rw-r--r-- | machines/darwin/aarch64-darwin/HQ-KWNY2VH41P.nix | 25 | ||||
| -rw-r--r-- | machines/darwin/aarch64-darwin/mba-m2.nix | 29 | ||||
| -rw-r--r-- | machines/nixos/x86_64-linux/argonath.nix | 13 | ||||
| -rw-r--r-- | machines/nixos/x86_64-linux/bree.nix | 22 | ||||
| -rw-r--r-- | machines/nixos/x86_64-linux/iso.nix | 17 | ||||
| -rw-r--r-- | machines/nixos/x86_64-linux/rivendell.nix | 37 |
6 files changed, 55 insertions, 88 deletions
diff --git a/machines/darwin/aarch64-darwin/HQ-KWNY2VH41P.nix b/machines/darwin/aarch64-darwin/HQ-KWNY2VH41P.nix index 3207d2f..52dc522 100644 --- a/machines/darwin/aarch64-darwin/HQ-KWNY2VH41P.nix +++ b/machines/darwin/aarch64-darwin/HQ-KWNY2VH41P.nix @@ -1,19 +1,13 @@ -{ - adminUser, - pkgs, - ... -}: +{ pkgs, ... }: { imports = [ ../../../profiles/darwin.nix ../../../profiles/home-manager.nix ]; - users = { - users.${adminUser.name} = { - home = "/Users/${adminUser.name}"; - shell = pkgs.fish; - }; + users.users.fcuny = { + home = "/Users/fcuny"; + shell = pkgs.fish; }; environment.shells = [ pkgs.fish ]; @@ -27,14 +21,17 @@ # End Nix ''; - home-manager.users.${adminUser.name} = { + home-manager.users.fcuny = { home.stateVersion = "23.05"; - home.username = "${adminUser.name}"; - home.homeDirectory = "/Users/${adminUser.name}"; + home.username = "fcuny"; + home.homeDirectory = "/Users/fcuny"; imports = [ ../../../home/profiles/mac.nix ../../../home/profiles/work.nix ]; - inherit (adminUser) userinfo; + userinfo = { + email = "fcuny@roblox.com"; + fullName = "Franck Cuny"; + }; }; } diff --git a/machines/darwin/aarch64-darwin/mba-m2.nix b/machines/darwin/aarch64-darwin/mba-m2.nix index df56e99..08a27c1 100644 --- a/machines/darwin/aarch64-darwin/mba-m2.nix +++ b/machines/darwin/aarch64-darwin/mba-m2.nix @@ -1,11 +1,7 @@ -{ adminUser, pkgs, ... }: +{ pkgs, ... }: { - age = { - secrets = { - ssh-remote-builder = { - file = ../../../secrets/ssh-remote-builder.age; - }; - }; + age.secrets = { + ssh-remote-builder.file = ../../../secrets/ssh-remote-builder.age; }; imports = [ @@ -19,11 +15,9 @@ networking.hostName = "mba-m2"; - users = { - users.${adminUser.name} = { - home = "/Users/${adminUser.name}"; - shell = pkgs.fish; - }; + users.users.fcuny = { + home = "/Users/fcuny"; + shell = pkgs.fish; }; environment.shells = [ pkgs.fish ]; @@ -37,10 +31,10 @@ # End Nix ''; - home-manager.users.${adminUser.name} = { + home-manager.users.fcuny = { home.stateVersion = "23.05"; - home.username = "${adminUser.name}"; - home.homeDirectory = "/Users/${adminUser.name}"; + home.username = "fcuny"; + home.homeDirectory = "/Users/fcuny"; home.packages = with pkgs; [ element-desktop hledger @@ -50,6 +44,9 @@ ../../../home/profiles/media.nix ../../../home/profiles/security.nix ]; - inherit (adminUser) userinfo; + userinfo = { + email = "franck@fcuny.net"; + fullName = "Franck Cuny"; + }; }; } diff --git a/machines/nixos/x86_64-linux/argonath.nix b/machines/nixos/x86_64-linux/argonath.nix index 4b72ca9..3dda772 100644 --- a/machines/nixos/x86_64-linux/argonath.nix +++ b/machines/nixos/x86_64-linux/argonath.nix @@ -1,4 +1,4 @@ -{ adminUser, ... }: +{ ... }: { imports = [ ../../../profiles/acme.nix @@ -10,17 +10,16 @@ ../../../profiles/reverse-proxy.nix ../../../profiles/server.nix ../../../profiles/wireguard.nix + ../../../profiles/users/fcuny.nix ]; networking.hostName = "argonath"; system.stateVersion = "25.05"; # Did you read the comment? - home-manager = { - users.${adminUser.name} = { - imports = [ - ../../../home/profiles/minimal.nix - ]; - }; + home-manager.users.fcuny = { + imports = [ + ../../../home/profiles/minimal.nix + ]; }; } diff --git a/machines/nixos/x86_64-linux/bree.nix b/machines/nixos/x86_64-linux/bree.nix index f91bf4f..9c9177d 100644 --- a/machines/nixos/x86_64-linux/bree.nix +++ b/machines/nixos/x86_64-linux/bree.nix @@ -1,9 +1,4 @@ -{ - lib, - adminUser, - config, - ... -}: +{ lib, config, ... }: { imports = [ ../../../profiles/cgroups.nix @@ -12,6 +7,7 @@ ../../../profiles/hardware/synology-vm.nix ../../../profiles/home-manager.nix ../../../profiles/server.nix + ../../../profiles/users/fcuny.nix ../../../profiles/wireguard.nix ]; @@ -19,14 +15,6 @@ networking.useDHCP = lib.mkDefault true; systemd.network.wait-online.anyInterface = lib.mkDefault config.networking.useDHCP; - home-manager = { - users.${adminUser.name} = { - imports = [ - ../../../home/profiles/minimal.nix - ]; - }; - }; - age.secrets.disk-unlock-key.file = ../../../secrets/bree/disk-unlock-key.age; age.secrets.disk-passphrase.file = ../../../secrets/bree/disk-passphrase.age; @@ -40,4 +28,10 @@ }; system.stateVersion = "23.11"; # Did you read the comment? + + home-manager.users.fcuny = { + imports = [ + ../../../home/profiles/minimal.nix + ]; + }; } diff --git a/machines/nixos/x86_64-linux/iso.nix b/machines/nixos/x86_64-linux/iso.nix index 89acbf7..c2ecd74 100644 --- a/machines/nixos/x86_64-linux/iso.nix +++ b/machines/nixos/x86_64-linux/iso.nix @@ -1,23 +1,22 @@ -{ adminUser, modulesPath, ... }: +{ modulesPath, ... }: { # run `nix build .#nixosConfigurations.iso.config.system.build.isoImage` to build the image imports = [ "${modulesPath}/installer/cd-dvd/channel.nix" "${modulesPath}/installer/cd-dvd/installation-cd-minimal.nix" ../../../profiles/home-manager.nix + ../../../profiles/users/fcuny.nix ]; boot.loader.grub.efiSupport = true; boot.loader.grub.efiInstallAsRemovable = true; boot.loader.grub.device = "nodev"; - home-manager = { - users.${adminUser.name} = { - imports = [ - ../../../home/profiles/minimal.nix - ]; - }; - }; - system.stateVersion = "25.05"; # Did you read the comment? + + home-manager.users.fcuny = { + imports = [ + ../../../home/profiles/minimal.nix + ]; + }; } diff --git a/machines/nixos/x86_64-linux/rivendell.nix b/machines/nixos/x86_64-linux/rivendell.nix index f106f83..0bd799c 100644 --- a/machines/nixos/x86_64-linux/rivendell.nix +++ b/machines/nixos/x86_64-linux/rivendell.nix @@ -1,9 +1,4 @@ -{ - lib, - config, - adminUser, - ... -}: +{ lib, config, ... }: { imports = [ ../../../profiles/authelia.nix @@ -18,6 +13,8 @@ ../../../profiles/remote-unlock.nix ../../../profiles/restic-backup.nix ../../../profiles/server.nix + ../../../profiles/users/builder.nix + ../../../profiles/users/fcuny.nix ../../../profiles/wireguard.nix ]; @@ -26,19 +23,6 @@ networking.useDHCP = lib.mkDefault true; systemd.network.wait-online.anyInterface = lib.mkDefault config.networking.useDHCP; - users.users.builder = { - openssh.authorizedKeys.keys = [ - # my personal key - "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINBkozy+X96u5ciX766bJ/AyQ3xm1tXZTIr5+4PVFZFi" - # remote builder ssh key - "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGFGxdplt9WwGjdhoYkmPe2opZMJShtpqnGCI+swrgvw" - ]; - isNormalUser = true; - group = "nogroup"; - }; - - nix.settings.trusted-users = [ "builder" ]; - services.website = { enable = true; openFirewall = true; @@ -84,14 +68,11 @@ openFirewall = true; }; - home-manager = { - users.${adminUser.name} = { - imports = [ - ../../../home/profiles/minimal.nix - ]; - inherit (adminUser) userinfo; - }; - }; - system.stateVersion = "23.11"; # Did you read the comment? + + home-manager.users.fcuny = { + imports = [ + ../../../home/profiles/minimal.nix + ]; + }; } |