nixos-config/common/default.nix

{
  inputs,
  outputs,
  lib,
  config,
  pkgs,
  ...
}: {
  imports = [
    ./locales/paris.nix

    ./packages/sshd.nix
    ./packages/neovim.nix
    ./packages/zsh.nix
    ./packages/git.nix
  ];

  nixpkgs = {
    overlays = [
      outputs.overlays.additions
      outputs.overlays.modifications
      outputs.overlays.unstable-packages
    ];
  };

  # This will add each flake input as a registry
  # To make nix3 commands consistent with your flake
  nix.registry = (lib.mapAttrs (_: flake: {inherit flake;})) ((lib.filterAttrs (_: lib.isType "flake")) inputs);

  # This will additionally add your inputs to the system's legacy channels
  # Making legacy nix commands consistent as well, awesome!
  nix.nixPath = ["/etc/nix/path"];
  environment.etc =
    lib.mapAttrs'
    (name: value: {
      name = "nix/path/${name}";
      value.source = value.flake;
    })
    config.nix.registry;

  nix.settings = {
    # Enable flakes and new 'nix' command
    experimental-features = "nix-command flakes";
    # Deduplicate and optimize nix store
    auto-optimise-store = true;
  };

  # Unfree packages that can be installe even if "allow-unfree.nix" isn't imported
  nixpkgs.config.allowUnfreePredicate = pkg:
    builtins.elem (lib.getName pkg) [
      # Steam
      "steam"
      "steam-original"
      "steam-run"

      # Nvidia drivers
      "nvidia-x11"
      "nvidia-settings"
    ];

  boot.loader = {
    systemd-boot.enable = true;
    efi.canTouchEfiVariables = true;
  };

  networking = {
    networkmanager.enable = true;

    firewall = {
      enable = true;
      trustedInterfaces = ["tailscale0"];
    };
  };

  # sudo and nix can only be used by the wheel group
  nix.settings.allowed-users = ["@wheel"];
  security.sudo.execWheelOnly = true;

  # Some programs need SUID wrappers, can be configured further or are
  # started in user sessions.
  programs.mtr.enable = true;
  programs.gnupg.agent = {
    enable = true;
    enableSSHSupport = true;
  };

  environment.systemPackages = with pkgs; [
    wget
    dig
    nmap
    btop
    gitFull
    smartmontools
    lm_sensors
    pciutils
    gcc
    gnumake
    sysstat
    file
    ffmpeg
  ];

  services = {
    fwupd.enable = true;
    tailscale.enable = true;
  };
}
Initial commit 2024-04-08 20:32:17 +02:00			`{`
			`inputs,`
			`outputs,`
			`lib,`
			`config,`
			`pkgs,`
			`...`
			`}: {`
			`imports = [`
unfree packages no awawa 2024-04-22 06:39:13 +02:00			`./locales/paris.nix`

			`./packages/sshd.nix`
:3 2024-04-08 21:28:07 +02:00			`./packages/neovim.nix`
something 2024-04-17 22:28:27 +02:00			`./packages/zsh.nix`
5 am 2024-04-22 04:57:27 +02:00			`./packages/git.nix`
Initial commit 2024-04-08 20:32:17 +02:00			`];`

			`nixpkgs = {`
			`overlays = [`
			`outputs.overlays.additions`
			`outputs.overlays.modifications`
			`outputs.overlays.unstable-packages`
			`];`
			`};`

			`# This will add each flake input as a registry`
			`# To make nix3 commands consistent with your flake`
			`nix.registry = (lib.mapAttrs (_: flake: {inherit flake;})) ((lib.filterAttrs (_: lib.isType "flake")) inputs);`

			`# This will additionally add your inputs to the system's legacy channels`
			`# Making legacy nix commands consistent as well, awesome!`
			`nix.nixPath = ["/etc/nix/path"];`
			`environment.etc =`
			`lib.mapAttrs'`
			`(name: value: {`
			`name = "nix/path/${name}";`
			`value.source = value.flake;`
			`})`
			`config.nix.registry;`

			`nix.settings = {`
			`# Enable flakes and new 'nix' command`
			`experimental-features = "nix-command flakes";`
			`# Deduplicate and optimize nix store`
			`auto-optimise-store = true;`
			`};`

unfree packages no awawa 2024-04-22 06:39:13 +02:00			`# Unfree packages that can be installe even if "allow-unfree.nix" isn't imported`
			`nixpkgs.config.allowUnfreePredicate = pkg:`
			`builtins.elem (lib.getName pkg) [`
			`# Steam`
			`"steam"`
			`"steam-original"`
			`"steam-run"`

			`# Nvidia drivers`
			`"nvidia-x11"`
			`"nvidia-settings"`
			`];`

:3 2024-04-08 21:28:07 +02:00			`boot.loader = {`
blep :3 2024-04-17 20:39:12 +02:00			`systemd-boot.enable = true;`
:3 2024-04-08 21:28:07 +02:00			`efi.canTouchEfiVariables = true;`
Initial commit 2024-04-08 20:32:17 +02:00			`};`

			`networking = {`
			`networkmanager.enable = true;`

update 2024-04-22 04:21:07 +02:00			`firewall = {`
			`enable = true;`
			`trustedInterfaces = ["tailscale0"];`
			`};`
Initial commit 2024-04-08 20:32:17 +02:00			`};`

5 am 2024-04-22 04:57:27 +02:00			`# sudo and nix can only be used by the wheel group`
Initial commit 2024-04-08 20:32:17 +02:00			`nix.settings.allowed-users = ["@wheel"];`
:3 2024-04-08 21:28:07 +02:00			`security.sudo.execWheelOnly = true;`
Initial commit 2024-04-08 20:32:17 +02:00
5 am 2024-04-22 04:57:27 +02:00			`# Some programs need SUID wrappers, can be configured further or are`
			`# started in user sessions.`
			`programs.mtr.enable = true;`
			`programs.gnupg.agent = {`
pc update 2024-04-11 17:08:50 +02:00			`enable = true;`
5 am 2024-04-22 04:57:27 +02:00			`enableSSHSupport = true;`
pc update 2024-04-11 17:08:50 +02:00			`};`

Initial commit 2024-04-08 20:32:17 +02:00			`environment.systemPackages = with pkgs; [`
			`wget`
			`dig`
			`nmap`
			`btop`
blep :3 2024-04-17 20:39:12 +02:00			`gitFull`
Initial commit 2024-04-08 20:32:17 +02:00			`smartmontools`
			`lm_sensors`
			`pciutils`
			`gcc`
			`gnumake`
			`sysstat`
			`file`
			`ffmpeg`
			`];`
5 am 2024-04-22 04:57:27 +02:00
			`services = {`
			`fwupd.enable = true;`
			`tailscale.enable = true;`
			`};`
Initial commit 2024-04-08 20:32:17 +02:00			`}`