nixos-config/hosts/phoenix/configuration.nix

{
  pkgs,
  lib,
  ...
}: {
  imports = [
    ./hardware-configuration.nix
    ../../common/default.nix
    ../../common/full-install.nix
    ../../common/allow-unfree.nix

    ../../common/locales/en.nix
    ../../common/locales/fr-keymap.nix
    ../../common/hardware/intelcpu.nix
    ../../common/hardware/amdgpu.nix

    ../../common/de/plasma6.nix
    ../../common/de/hyprland.nix

    ../../common/packages/syncthing.nix
    ../../common/packages/adguardhome.nix

    # If you want to use modules your own flake exports (from modules/nixos):
    # outputs.nixosModules.example

    ../../modules/nixos/vedirect-reader.nix

    # Or modules from other flakes (such as nixos-hardware):
    # inputs.hardware.nixosModules.common-cpu-amd
    # inputs.hardware.nixosModules.common-ssd
  ];

  boot = {
    kernelPackages = pkgs.linuxPackages_latest;
    # boot.kernelModules = [ "fuse" "kvm-intel" "coretemp" ];
  };

  networking = {
    hostName = "phoenix";

    firewall = {
      enable = true;
      allowedTCPPorts = [
        8080 # ?
        12345 # tildefriends
        13378 # audiobookshelf
      ];
      allowedUDPPorts = [
        8080 # ?
      ];
    };  
  };

  users.users.user = {
    isNormalUser = true;
    description = "User";
    extraGroups = ["networkmanager" "wheel" "syncthing"];
    initialPassword = "correcthorsebatterystaple";
    openssh.authorizedKeys.keys = [
      # TODO: Add your SSH public key(s) here, if you plan on using SSH to connect
    ];
  };

  services.btrfs.autoScrub = {
    enable = true;
    interval = "weekly";
    fileSystems = ["/" "/data"];
  };

  # services.vedirect-reader.enable = true;

  virtualisation.docker.enable = true;
  services.flatpak.enable = false;

  # Some programs need SUID wrappers, can be configured further or are
  # started in user sessions.
  programs.mtr.enable = true;
  programs.gnupg.agent = {
    enable = true;
    enableSSHSupport = true;
  };

  programs.steam = {
    enable = true;
    remotePlay.openFirewall = false; # Open ports in the firewall for Steam Remote Play
    dedicatedServer.openFirewall = false; # Open ports in the firewall for Source Dedicated Server
  };

  services.syncthing = {
    dataDir = lib.mkForce "/home/user";
    configDir = lib.mkForce "/data/sync/configuration/";
  };

  # Needed to build enry
  boot.binfmt.emulatedSystems = [ "aarch64-linux" ];

  environment.systemPackages = with pkgs; [
    bitwarden
    nextdns
    # android-tools
    gocryptfs
    #endless-sky
    #gnucash
    # obs-studio
    # kdenlive
    rustc
    cargo
    nodejs
    rpi-imager
    # wireshark
    # appimage-run
    #ssb-patchwork
    simplex-chat-desktop
    #android-studio
    #swig
    picard
    kleopatra
    qbittorrent
    tor-browser
    protonvpn-gui
    # radicle-cli
    # opensnitch-ui
    yarn
    nodePackages.node-gyp
    nodePackages.node-pre-gyp
    # superTuxKart
    openssl

    # qgis
    helix
    holehe
    smartmontools
    cheat
    lazygit
    ripgrep
    jq
    yq
    neofetch
    tldr
    bat
    dust
    powertop
    fzf
    atuin
    zellij
    eza
    lapce
    gotty
    gping
    yazi

    tildefriends
  ];

  # https://nixos.wiki/wiki/FAQ/When_do_I_update_stateVersion
  system.stateVersion = "23.05";
}
:3 2024-04-08 21:28:07 +02:00			`{`
			`pkgs,`
			`lib,`
			`...`
			`}: {`
Initial commit 2024-04-08 20:32:17 +02:00			`imports = [`
			`./hardware-configuration.nix`
			`../../common/default.nix`
blep :3 2024-04-17 20:39:12 +02:00			`../../common/full-install.nix`
			`../../common/allow-unfree.nix`
Initial commit 2024-04-08 20:32:17 +02:00
			`../../common/locales/en.nix`
			`../../common/locales/fr-keymap.nix`
			`../../common/hardware/intelcpu.nix`
			`../../common/hardware/amdgpu.nix`

			`../../common/de/plasma6.nix`
			`../../common/de/hyprland.nix`

:3 2024-04-08 21:28:07 +02:00			`../../common/packages/syncthing.nix`
			`../../common/packages/adguardhome.nix`
Initial commit 2024-04-08 20:32:17 +02:00
			`# If you want to use modules your own flake exports (from modules/nixos):`
			`# outputs.nixosModules.example`

blep :3 2024-04-17 20:39:12 +02:00			`../../modules/nixos/vedirect-reader.nix`

Initial commit 2024-04-08 20:32:17 +02:00			`# Or modules from other flakes (such as nixos-hardware):`
			`# inputs.hardware.nixosModules.common-cpu-amd`
			`# inputs.hardware.nixosModules.common-ssd`
			`];`

			`boot = {`
			`kernelPackages = pkgs.linuxPackages_latest;`
			`# boot.kernelModules = [ "fuse" "kvm-intel" "coretemp" ];`
			`};`

			`networking = {`
			`hostName = "phoenix";`

blep :3 2024-04-17 20:39:12 +02:00			`firewall = {`
			`enable = true;`
			`allowedTCPPorts = [`
			`8080 # ?`
			`12345 # tildefriends`
			`13378 # audiobookshelf`
			`];`
			`allowedUDPPorts = [`
			`8080 # ?`
			`];`
			`};`
Initial commit 2024-04-08 20:32:17 +02:00			`};`

			`users.users.user = {`
			`isNormalUser = true;`
			`description = "User";`
blep :3 2024-04-17 20:39:12 +02:00			`extraGroups = ["networkmanager" "wheel" "syncthing"];`
Initial commit 2024-04-08 20:32:17 +02:00			`initialPassword = "correcthorsebatterystaple";`
			`openssh.authorizedKeys.keys = [`
			`# TODO: Add your SSH public key(s) here, if you plan on using SSH to connect`
			`];`
			`};`

			`services.btrfs.autoScrub = {`
			`enable = true;`
			`interval = "weekly";`
			`fileSystems = ["/" "/data"];`
			`};`

blep :3 2024-04-17 20:39:12 +02:00			`# services.vedirect-reader.enable = true;`

Initial commit 2024-04-08 20:32:17 +02:00			`virtualisation.docker.enable = true;`
blep :3 2024-04-17 20:39:12 +02:00			`services.flatpak.enable = false;`
Initial commit 2024-04-08 20:32:17 +02:00
			`# Some programs need SUID wrappers, can be configured further or are`
			`# started in user sessions.`
			`programs.mtr.enable = true;`
			`programs.gnupg.agent = {`
			`enable = true;`
			`enableSSHSupport = true;`
			`};`

			`programs.steam = {`
			`enable = true;`
			`remotePlay.openFirewall = false; # Open ports in the firewall for Steam Remote Play`
			`dedicatedServer.openFirewall = false; # Open ports in the firewall for Source Dedicated Server`
			`};`

:3 2024-04-08 21:28:07 +02:00			`services.syncthing = {`
			`dataDir = lib.mkForce "/home/user";`
			`configDir = lib.mkForce "/data/sync/configuration/";`
			`};`

blep :3 2024-04-17 20:39:12 +02:00			`# Needed to build enry`
:3 2024-04-13 21:42:05 +02:00			`boot.binfmt.emulatedSystems = [ "aarch64-linux" ];`

Initial commit 2024-04-08 20:32:17 +02:00			`environment.systemPackages = with pkgs; [`
			`bitwarden`
			`nextdns`
blep :3 2024-04-17 20:39:12 +02:00			`# android-tools`
Initial commit 2024-04-08 20:32:17 +02:00			`gocryptfs`
			`#endless-sky`
			`#gnucash`
blep :3 2024-04-17 20:39:12 +02:00			`# obs-studio`
			`# kdenlive`
Initial commit 2024-04-08 20:32:17 +02:00			`rustc`
			`cargo`
			`nodejs`
			`rpi-imager`
blep :3 2024-04-17 20:39:12 +02:00			`# wireshark`
			`# appimage-run`
Initial commit 2024-04-08 20:32:17 +02:00			`#ssb-patchwork`
			`simplex-chat-desktop`
			`#android-studio`
			`#swig`
			`picard`
			`kleopatra`
			`qbittorrent`
			`tor-browser`
			`protonvpn-gui`
			`# radicle-cli`
			`# opensnitch-ui`
			`yarn`
			`nodePackages.node-gyp`
			`nodePackages.node-pre-gyp`
blep :3 2024-04-17 20:39:12 +02:00			`# superTuxKart`
Initial commit 2024-04-08 20:32:17 +02:00			`openssl`

			`# qgis`
			`helix`
			`holehe`
			`smartmontools`
			`cheat`
			`lazygit`
			`ripgrep`
			`jq`
			`yq`
			`neofetch`
			`tldr`
			`bat`
			`dust`
			`powertop`
			`fzf`
			`atuin`
			`zellij`
			`eza`
			`lapce`
			`gotty`
			`gping`
			`yazi`

			`tildefriends`
			`];`

			`# https://nixos.wiki/wiki/FAQ/When_do_I_update_stateVersion`
			`system.stateVersion = "23.05";`
			`}`