stockholm/lass/1systems/helios/config.nix

108 lines
3.6 KiB
Nix
Raw Normal View History

2017-09-19 10:34:43 +00:00
with import <stockholm/lib>;
{ config, lib, pkgs, ... }:
{
imports = [
<stockholm/lass>
<stockholm/lass/2configs/baseX.nix>
<stockholm/lass/2configs/browsers.nix>
<stockholm/lass/2configs/mouse.nix>
<stockholm/lass/2configs/pass.nix>
<stockholm/lass/2configs/retiolum.nix>
<stockholm/lass/2configs/otp-ssh.nix>
2017-11-12 12:54:15 +00:00
# TODO fix krebs.git.rules.[definition 2-entry 2].lass not defined
#<stockholm/lass/2configs/git.nix>
2018-05-12 13:51:24 +00:00
#<stockholm/lass/2configs/dcso-vpn.nix>
2017-11-28 17:02:18 +00:00
<stockholm/lass/2configs/virtualbox.nix>
2017-11-29 15:22:10 +00:00
<stockholm/lass/2configs/dcso-dev.nix>
2017-12-03 21:29:40 +00:00
<stockholm/lass/2configs/steam.nix>
2018-02-13 16:13:55 +00:00
<stockholm/lass/2configs/rtl-sdr.nix>
2018-04-27 14:55:43 +00:00
<stockholm/lass/2configs/backup.nix>
2017-09-19 10:34:43 +00:00
{
services.xserver.dpi = 200;
fonts.fontconfig.dpi = 200;
2017-10-09 11:02:14 +00:00
lass.fonts.regular = "xft:Hack-Regular:pixelsize=22,xft:Symbola";
lass.fonts.bold = "xft:Hack-Bold:pixelsize=22,xft:Symbola";
lass.fonts.italic = "xft:Hack-RegularOblique:pixelsize=22,xft:Symbol";
2017-09-19 10:34:43 +00:00
}
2017-09-30 17:09:46 +00:00
{ #TAPIR, AGATIS, sentral, a3 - foo
services.redis.enable = true;
}
{
krebs.fetchWallpaper = {
enable = true;
url = "http://i.imgur.com/0ktqxSg.png";
maxTime = 9001;
};
}
2017-12-03 21:29:40 +00:00
{
#urban terror port
krebs.iptables.tables.filter.INPUT.rules = [
{ predicate = "-p tcp --dport 27960"; target = "ACCEPT"; }
{ predicate = "-p udp --dport 27960"; target = "ACCEPT"; }
];
}
2017-09-19 10:34:43 +00:00
];
krebs.build.host = config.krebs.hosts.helios;
krebs.git.rules = [
{
user = [ config.krebs.users.lass-helios ];
repo = [ config.krebs.git.repos.stockholm ];
perm = with git; push "refs/heads/*" [ fast-forward non-fast-forward create delete merge ];
}
2017-11-12 11:59:30 +00:00
{
lass.umts = {
enable = true;
modem = "/dev/serial/by-id/usb-Lenovo_F5521gw_2C7D8D7C35FC7040-if09";
initstrings = ''
Init1 = AT+CFUN=1
Init2 = AT+CGDCONT=1,"IP","pinternet.interkom.de","",0,0
'';
};
}
2017-09-19 10:34:43 +00:00
];
environment.systemPackages = with pkgs; [
2017-09-30 17:10:12 +00:00
ag
2017-09-19 10:34:43 +00:00
vim
git
rsync
hashPassword
thunderbird
dpass
];
users.users = {
root.openssh.authorizedKeys.keys = [
config.krebs.users.lass-helios.pubkey
];
};
2017-09-19 13:17:09 +00:00
services.tlp.enable = true;
2017-10-05 03:04:01 +00:00
2017-11-02 22:26:19 +00:00
networking.hostName = lib.mkForce "BLN02NB0162";
2017-10-05 03:04:31 +00:00
security.pki.certificateFiles = [
2018-05-02 13:53:09 +00:00
(pkgs.fetchurl { url = "http://pki.dcso.de/ca/PEM/DCSOCAROOTC1G1.pem"; sha256 = "006j61q2z44z6d92638iin6r46r4cj82ipwm37784h34i5x4mp0d"; })
(pkgs.fetchurl { url = "http://pki.dcso.de/ca/PEM/DCSOCAROOTC2G1.pem"; sha256 = "1nkd1rjcn02q9xxjg7sw79lbwy08i7hb4v4pn98djknvcmplpz5m"; })
(pkgs.fetchurl { url = "http://pki.dcso.de/ca/PEM/DCSOCAROOTC3G1.pem"; sha256 = "094m12npglnnv1nf1ijcv70p8l15l00id44qq7rwynhcgxi5539i"; })
(pkgs.fetchurl { url = "http://pki.dcso.de/ca/PEM/DCSOCACOMPC2G1.pem"; sha256 = "1anfncdf5xsp219kryncv21ra87flpzcjwcc85hzvlwbxhid3g4x"; })
(pkgs.fetchurl { url = "http://pki.dcso.de/ca/PEM/DCSOCACOMPC3G1.pem"; sha256 = "035kkfizyl5dndj7rhvmy91rr75lakqbqgjx4dpiw0kqq369mz8r"; })
(pkgs.fetchurl { url = "http://pki.dcso.de/ca/PEM/DCSOCAIDENC2G1.pem"; sha256 = "14fpzx1qjs9ws9sz0y7pb6j40336xlckkqcm2rc5j86yn7r22lp7"; })
(pkgs.fetchurl { url = "http://pki.dcso.de/ca/PEM/DCSOCAIDENC3G1.pem"; sha256 = "1yjl3kyw4chc8vw7bnqac2h9vn8dxryw7lr7i03lqi9sdvs4108s"; })
2017-10-05 03:04:31 +00:00
];
2017-10-19 16:42:09 +00:00
2017-11-02 22:26:19 +00:00
programs.adb.enable = true;
2018-02-12 09:41:19 +00:00
users.users.mainUser.extraGroups = [ "adbusers" "docker" ];
2017-11-02 22:26:19 +00:00
2017-11-12 12:00:03 +00:00
services.printing.drivers = [ pkgs.postscript-lexmark ];
2017-12-18 17:52:35 +00:00
services.logind.extraConfig = ''
HandleLidSwitch=ignore
'';
2018-02-12 09:41:19 +00:00
virtualisation.docker.enable = true;
2017-09-19 10:34:43 +00:00
}