blob: f20d612a4224b908b9c27474c5c56e305a027c29 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
|
{
adminUser,
lib,
config,
...
}:
{
imports = [
../profiles/core-metrics.nix
../profiles/defaults.nix
../profiles/disk/basic-vm.nix
../profiles/hardware/synology-vm.nix
../profiles/home-manager.nix
../profiles/server.nix
../profiles/users/admin-user.nix
../profiles/users/home-manager.nix
../profiles/wireguard.nix
];
networking.hostName = "bree";
networking.useDHCP = lib.mkDefault true;
systemd.network.wait-online.anyInterface = lib.mkDefault config.networking.useDHCP;
wgPublicKey = "bJZyQoemudGJQox8Iegebm23c4BNVIxRPy1kmI2l904=";
age.secrets.disk-unlock-key.file = ../secrets/bree/disk-unlock-key.age;
age.secrets.disk-passphrase.file = ../secrets/bree/disk-passphrase.age;
services.remoteDiskUnlock = {
enable = true;
hosts = [
"192.168.1.114"
];
sshKeyPath = config.age.secrets.disk-unlock-key.path;
passphrasePath = config.age.secrets.disk-passphrase.path;
};
system.stateVersion = "23.11"; # Did you read the comment?
home-manager.users.${adminUser.name} = {
home.homeDirectory = "/home/${adminUser.name}";
imports = [
../home/profiles/minimal.nix
];
};
}
|
