d

hosts/vulpecula/configuration.nix

@@ -0,0 +1,44 @@
+{
+  pkgs,
+  lib,
+  inputs,
+  ...
+}: let
+  sshKeys = import ../../crypto/ssh-keys.nix;
+in {
+  imports = [
+    ./hardware-configuration.nix
+    ../../common/base.nix
+  ];
+
+  networking = {
+    hostName = "vulpecula";
+
+    firewall = {
+      allowedTCPPorts = [
+        # 2342
+        # 8080 # ?
+        # 9000
+        # 9002
+      ];
+    };
+  };
+
+  # nix.settings.trusted-users = ["root" "@wheel"]; # TODO
+
+  users.users.tasia = {
+    isNormalUser = true;
+    description = "Tasia";
+    extraGroups = ["networkmanager" "wheel"];
+    initialPassword = "correcthorsebatterystaple";
+    openssh.authorizedKeys.keys = [
+      sshKeys.tasia.yaseen
+    ];
+  };
+
+  environment.systemPackages = with pkgs; [
+  ];
+
+  # https://nixos.wiki/wiki/FAQ/When_do_I_update_stateVersion
+  system.stateVersion = "24.05";
+}

hosts/yaseen/configuration.nix

@@ -21,8 +21,8 @@ in {
     ../../common/hardware/intel-cpu.nix
     ../../common/hardware/tpm2.nix
     ../../common/hardware/wireless.nix
-    ../../common/hardware/nvidia-gpu.nix
+    # ../../common/hardware/nvidia-gpu.nix
-    ../../common/hardware/nvidia-gpu-offload.nix
+    # ../../common/hardware/nvidia-gpu-offload.nix
     ../../common/hardware/ssd.nix
     ../../common/hardware/btrfs.nix
 
@@ -125,55 +125,116 @@ in {
 
   programs.adb.enable = true;
 
-  services.grafana = {
+  # services.grafana = {
-    enable = false;
+  #   enable = false;
-    settings.server = {
+  #   settings.server = {
-      domain = "grafana.enry";
+  #     domain = "grafana.enry";
-      http_port = 2342;
+  #     http_port = 2342;
-      http_addr = "0.0.0.0";
+  #     http_addr = "0.0.0.0";
-    };
+  #   };
-  };
+  # };
 
-  services.prometheus = {
+  # services.prometheus = {
-    enable = false;
+  #   enable = false;
-    port = 9000;
+  #   port = 9000;
-    retentionTime = "60d";
+  #   retentionTime = "60d";
 
-    exporters = {
+  #   exporters = {
-      node = {
+  #     node = {
-        enable = false;
+  #       enable = false;
-        enabledCollectors = ["systemd"];
+  #       enabledCollectors = ["systemd"];
-        port = 9002;
+  #       port = 9002;
-      };
+  #     };
-    };
+  #   };
 
-    scrapeConfigs = [
+  #   scrapeConfigs = [
-      {
+  #     {
-        job_name = "enry";
+  #       job_name = "enry";
-        static_configs = [
+  #       static_configs = [
-          {
+  #         {
-            targets = ["127.0.0.1:${toString config.services.prometheus.exporters.node.port}"];
+  #           targets = ["127.0.0.1:${toString config.services.prometheus.exporters.node.port}"];
-          }
+  #         }
-        ];
+  #       ];
-      }
+  #     }
 
-      {
+  #     {
-        job_name = "monitor";
+  #       job_name = "monitor";
-        static_configs = [
+  #       static_configs = [
-          {
+  #         {
-            targets = ["127.0.0.1:8080"];
+  #           targets = ["127.0.0.1:8080"];
-          }
+  #         }
-        ];
+  #       ];
-      }
+  #     }
-    ];
+  #   ];
-  };
+  # };
 
   services.printing.drivers = [pkgs.cnijfilter2];
 
-  services.ollama = {
+  # services.forgejo = {
-    enable = true;
+  #   enable = true;
-    # acceleration = "cuda";
+  #   database.type = "postgres";
-  };
+  #   # Enable support for Git Large File Storage
+  #   lfs.enable = true;
+  #   settings = {
+  #     server = {
+  #       DOMAIN = "git.example.com";
+  #       # You need to specify this to remove the port from URLs in the web UI.
+  #       ROOT_URL = "https://git.vulpecula.zone/"; 
+  #       HTTP_PORT = 3000;
+  #     };
+  #     # You can temporarily allow registration to create an admin user.
+  #     service.DISABLE_REGISTRATION = true; 
+  #     # Add support for actions, based on act: https://github.com/nektos/act
+  #     # actions = {
+  #     #   ENABLED = true;
+  #     #   DEFAULT_ACTIONS_URL = "github";
+  #     # };
+  #     # Sending emails is completely optional
+  #     # You can send a test email from the web UI at:
+  #     # Profile Picture > Site Administration > Configuration >  Mailer Configuration 
+  #     # mailer = {
+  #     #   ENABLED = true;
+  #     #   SMTP_ADDR = "mail.example.com";
+  #     #   FROM = "noreply@${srv.DOMAIN}";
+  #     #   USER = "noreply@${srv.DOMAIN}";
+  #     # };
+  #   };
+  #   # mailerPasswordFile = config.age.secrets.forgejo-mailer-password.path;
+  # };
+
+# services.uptime-kuma.enable = true;
+
+  # services.mattermost = {
+  #   enable = true;
+  #   siteUrl = "https://mattermost.example.com"; # Set this to the URL you will be hosting the site on.
+  # };
+
+# todo: ci runner
+
+  # services.ollama = {
+  #   enable = true;
+  #   # acceleration = "cuda";
+  # };
+
+  # services.gotosocial = {
+  #   enable = true;
+  #   setupPostgresqlDB = true;
+  #   settings = {
+  #     application-name = "My GoToSocial";
+  #     host = "gotosocial.example.com";
+  #     protocol = "http";
+  #     bind-address = "127.0.0.1";
+  #     port = 8080;
+  #   };
+  # };
+
+  # environment.etc."nextcloud-admin-pass".text = "Devdevdev10!";
+  # services.nextcloud = {
+  #   enable = true;
+  #   package = pkgs.nextcloud29;
+  #   hostName = "localhost";
+  #   config.adminpassFile = "/etc/nextcloud-admin-pass";
+  # };
 
   services.rustdesk-server = {
     enable = true;