From cf0a10ece319a12b3c8cbae2accb02fdf74522be Mon Sep 17 00:00:00 2001 From: Tasia Iso Date: Tue, 28 Jan 2025 10:01:25 +0100 Subject: [PATCH] more stuff --- common/components/wifi-secrets.nix | 4 ++-- common/services/usbguard.nix | 3 +++ hosts/cave/configuration.nix | 10 ++++++++++ hosts/vulpecula-vps/cryptpad.nix | 7 +++++++ hosts/vulpecula-vps/vaultwarden.nix | 9 +++++++++ 5 files changed, 31 insertions(+), 2 deletions(-) create mode 100644 hosts/vulpecula-vps/cryptpad.nix create mode 100644 hosts/vulpecula-vps/vaultwarden.nix diff --git a/common/components/wifi-secrets.nix b/common/components/wifi-secrets.nix index 2cd9198..4707c21 100644 --- a/common/components/wifi-secrets.nix +++ b/common/components/wifi-secrets.nix @@ -37,7 +37,7 @@ Isopropyl = { connection = { - id = "Isopropyl"; + id = "Isopropyl_sec_notrack"; type = "wifi"; }; ipv4 = { @@ -49,7 +49,7 @@ }; wifi = { mode = "infrastructure"; - ssid = "Isopropyl_notrack"; + ssid = "Isopropyl_sec_notrack"; }; wifi-security = { key-mgmt = "wpa-psk"; diff --git a/common/services/usbguard.nix b/common/services/usbguard.nix index b12fc52..c9bd701 100644 --- a/common/services/usbguard.nix +++ b/common/services/usbguard.nix @@ -34,6 +34,9 @@ allow id 1050:0407 serial "" name "YubiKey OTP+FIDO+CCID" allow id 0bda:2838 serial "00000001" name "Blog V4" + + # cave bluetooth + allow id 8087:0029 serial "" name "" hash "ATK8pCmQtUYaUnwqUVuYssrOMkW8pdCSdZO4OC6zEtg=" ''; }; } diff --git a/hosts/cave/configuration.nix b/hosts/cave/configuration.nix index f9738f6..c04e555 100644 --- a/hosts/cave/configuration.nix +++ b/hosts/cave/configuration.nix @@ -168,6 +168,16 @@ in { wrapperFeatures.gtk = true; }; + # services.radicle.enable = true; + # services.radicle.privateKeyFile = /home/tasia/.radicle/keys/radicle; + # services.radicle.publicKey = /home/tasia/.radicle/keys/radicle.pub; + # services.radicle.settings = { + # web.pinned.repositories = [ + # "rad:z3gqcJUoA1n9HaHKufZs5FCSGazv5" # heartwood + # "rad:z3trNYnLWS11cJWC6BbxDs5niGo82" # rips + # ]; + # }; + hardware.rtl-sdr.enable = true; users.users.tasia.extraGroups = ["plugdev"]; diff --git a/hosts/vulpecula-vps/cryptpad.nix b/hosts/vulpecula-vps/cryptpad.nix new file mode 100644 index 0000000..f4a1992 --- /dev/null +++ b/hosts/vulpecula-vps/cryptpad.nix @@ -0,0 +1,7 @@ +{config, ...}: { + # services.nginx.virtualHosts."wallabag.vulpecula.zone" = { + # addSSL = true; + # enableACME = true; + # locations."/".proxyPass = "http://localhost:62106"; + # }; +} diff --git a/hosts/vulpecula-vps/vaultwarden.nix b/hosts/vulpecula-vps/vaultwarden.nix new file mode 100644 index 0000000..c00ce09 --- /dev/null +++ b/hosts/vulpecula-vps/vaultwarden.nix @@ -0,0 +1,9 @@ +{inputs, ...}: { + services.nginx.virtualHosts."vault.vulpecula.zone" = { + addSSL = true; + enableACME = true; + # root = ; + }; + + services.vaultwarden.enable = true; +}