nix-config/hosts/glotzbert/default.nix

{ lib, pkgs, ... }:

{
  imports = [ ./hardware-configuration.nix ];

  c3d2 = {
    baremetal = true;
    hq.interface = "enp0s25";
    k-ot.enable = true;
  };

  nix.settings = {
    cores = 4;
    max-jobs = 4;
  };

  boot.loader = {
    efi.canTouchEfiVariables = true;
    systemd-boot.enable = true;
  };

  disko.disks = [ {
    device = "/dev/disk/by-id/ata-SSD0240S00_20201124BC41037";
    name = "glotzbert";
    withCeph = false;
    withLuks = false;
  } ];

  networking = {
    domain = "hq.c3d2.de";
    firewall = {
      allowedTCPPorts = [
        5900 # vnc
      ];
    };
    hostId = "42424242";
    hostName = "glotzbert";
    interfaces.enp0s25.useDHCP = true;
  };

  console.keyMap = "de";

  environment.systemPackages = with pkgs; [
    chromium
    firefox
    mpv
    kodi
    # tracer-game
    bevy_julia
    bevy_mandelbrot
    allcolors
  ];

  systemd.user.services.x11vnc = {
    description = "X11 VNC server";
    wantedBy = [ "graphical-session.target" ];
    partOf = [ "graphical-session.target" ];
    serviceConfig = {
      ExecStart = "${lib.getExe pkgs.x11vnc} -forever -shared -passwd k-ot";
      RestartSec = 5;
      Restart = "always";
    };
  };

  sound.enable = true;

  hardware = {
    opengl = {
      extraPackages = with pkgs; [
        vaapiIntel
        libvdpau-va-gl
        intel-media-driver
      ];
      extraPackages32 = with pkgs.pkgsi686Linux; [
        vaapiIntel
        libvdpau-va-gl
        intel-media-driver
      ];
    };
    pulseaudio = {
      enable = true;
      systemWide = true;
      zeroconf = {
        discovery.enable = true;
        publish.enable = true;
      };
      tcp = {
        enable = true;
        anonymousClients.allowAll = true;
      };
      extraConfig = ''
        load-module module-tunnel-sink server=pipebert.hq.c3d2.de
      '';
      extraClientConf = ''
        default-server = pipebert.hq.c3d2.de
      '';
    };
  };

  services = {
    xserver = {
      enable = true;
      layout = "de";
      xkbOptions = "eurosign:e";

      displayManager = {
        lightdm = { enable = true; };
        autoLogin = {
          enable = true;
          user = "k-ot";
        };
        defaultSession = "gnome-xorg";
      };
      desktopManager = {
        gnome.enable = true;
        kodi.enable = true;
      };
    };
  };

  security.sudo = {
    enable = true;
    wheelNeedsPassword = false;
  };

  sops = {
    age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
    defaultSopsFile = ./secrets.yaml;
  };

  users = {
    groups."k-ot".gid = 1000;
    users."k-ot" = {
      group = "k-ot";
      extraGroups = [ "networkmanager" ];
    };
  };

  system.stateVersion = "22.11";
}
glotzbert: stop using disko otherwise when we do changes to it, things break 2023-12-28 22:14:18 +01:00			`{ lib, pkgs, ... }:`
import glotzbert 2019-01-06 16:50:26 +01:00
Add glotzbert to host registry, add static IPv6 address 2020-01-20 15:01:49 +01:00			`{`
Flakify glotzbert 2021-02-22 12:31:58 +01:00			`imports = [ ./hardware-configuration.nix ];`
Move hail into the c3d2 module 2020-01-20 14:24:31 +01:00
			`c3d2 = {`
Mark more machines as baremetal 2023-09-25 00:24:26 +02:00			`baremetal = true;`
glotzbert: fix interface name 2023-04-25 00:37:50 +02:00			`hq.interface = "enp0s25";`
Refactor k-ot user 2022-01-16 12:25:04 +01:00			`k-ot.enable = true;`
Move hail into the c3d2 module 2020-01-20 14:24:31 +01:00			`};`
import glotzbert 2019-01-06 16:50:26 +01:00
Migrate deprecated options 2022-12-16 21:56:22 +01:00			`nix.settings = {`
			`cores = 4;`
			`max-jobs = 4;`
Add glotzbert to host registry, add static IPv6 address 2020-01-20 15:01:49 +01:00			`};`

glotzbert: upgrade machine 2023-04-24 23:04:06 +02:00			`boot.loader = {`
			`efi.canTouchEfiVariables = true;`
			`systemd-boot.enable = true;`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`
import glotzbert 2019-01-06 16:50:26 +01:00
Add disko config for server10, add glotzbert back, don't configure fileSystems 2024-01-06 17:33:49 +01:00			`disko.disks = [ {`
			`device = "/dev/disk/by-id/ata-SSD0240S00_20201124BC41037";`
			`name = "glotzbert";`
			`withCeph = false;`
			`withLuks = false;`
			`} ];`

Cleanup 2022-06-13 20:35:37 +02:00			`networking = {`
Drop c3d2.isInHq 2022-12-21 19:43:47 +01:00			`domain = "hq.c3d2.de";`
glotzbert: enable firewall 2023-04-29 23:36:13 +02:00			`firewall = {`
			`allowedTCPPorts = [`
			`5900 # vnc`
			`];`
			`};`
glotzbert: upgrade machine 2023-04-24 23:04:06 +02:00			`hostId = "42424242";`
Cleanup 2022-06-13 20:35:37 +02:00			`hostName = "glotzbert";`
glotzbert: upgrade machine 2023-04-24 23:04:06 +02:00			`interfaces.enp0s25.useDHCP = true;`
Cleanup 2022-06-13 20:35:37 +02:00			`};`
import glotzbert 2019-01-06 16:50:26 +01:00
Don't explizit set console font This is now done by the kernel by default 2023-05-06 15:15:49 +02:00			`console.keyMap = "de";`
The big format and cleanup 2022-06-12 17:26:32 +02:00
glotzbert: setup 2020-06-19 19:32:53 +02:00			`environment.systemPackages = with pkgs; [`
Nixfmt everything 2021-02-22 11:45:12 +01:00			`chromium`
			`firefox`
			`mpv`
			`kodi`
overlay: remove tracer-game for now 2022-09-28 23:59:34 +02:00			`# tracer-game`
dacbert, glotzbert, rpi-netboot: add bevy_julia 2022-09-17 01:27:35 +02:00			`bevy_julia`
dacbert, glotzbert: add tracer, bevy_mandelbrot, allcolors 2022-09-16 22:15:43 +02:00			`bevy_mandelbrot`
			`allcolors`
glotzbert: setup 2020-06-19 19:32:53 +02:00			`];`
import glotzbert 2019-01-06 16:50:26 +01:00
			`systemd.user.services.x11vnc = {`
			`description = "X11 VNC server";`
			`wantedBy = [ "graphical-session.target" ];`
			`partOf = [ "graphical-session.target" ];`
			`serviceConfig = {`
glotzbert: fix shitty x11vnc 2024-01-14 17:45:31 +01:00			`ExecStart = "${lib.getExe pkgs.x11vnc} -forever -shared -passwd k-ot";`
			`RestartSec = 5;`
import glotzbert 2019-01-06 16:50:26 +01:00			`Restart = "always";`
			`};`
			`};`

			`sound.enable = true;`
Cleanup 2022-06-13 20:35:37 +02:00
glotzbert: enable hardware accelerated video decoding in chromium 2022-08-21 00:13:29 +02:00			`hardware = {`
			`opengl = {`
			`extraPackages = with pkgs; [`
			`vaapiIntel`
			`libvdpau-va-gl`
			`intel-media-driver`
			`];`
			`extraPackages32 = with pkgs.pkgsi686Linux; [`
			`vaapiIntel`
			`libvdpau-va-gl`
			`intel-media-driver`
			`];`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`
glotzbert: enable hardware accelerated video decoding in chromium 2022-08-21 00:13:29 +02:00			`pulseaudio = {`
import glotzbert 2019-01-06 16:50:26 +01:00			`enable = true;`
glotzbert: enable hardware accelerated video decoding in chromium 2022-08-21 00:13:29 +02:00			`systemWide = true;`
			`zeroconf = {`
			`discovery.enable = true;`
			`publish.enable = true;`
			`};`
			`tcp = {`
			`enable = true;`
			`anonymousClients.allowAll = true;`
			`};`
			`extraConfig = ''`
glotzbert: Fix default source, cleanup 32 bit 2023-05-06 15:17:49 +02:00			`load-module module-tunnel-sink server=pipebert.hq.c3d2.de`
glotzbert: enable hardware accelerated video decoding in chromium 2022-08-21 00:13:29 +02:00			`'';`
			`extraClientConf = ''`
glotzbert: Fix default source, cleanup 32 bit 2023-05-06 15:17:49 +02:00			`default-server = pipebert.hq.c3d2.de`
glotzbert: enable hardware accelerated video decoding in chromium 2022-08-21 00:13:29 +02:00			`'';`
import glotzbert 2019-01-06 16:50:26 +01:00			`};`
			`};`

Cleanup 2022-06-13 20:35:37 +02:00			`services = {`
			`xserver = {`
			`enable = true;`
			`layout = "de";`
			`xkbOptions = "eurosign:e";`

			`displayManager = {`
			`lightdm = { enable = true; };`
			`autoLogin = {`
			`enable = true;`
			`user = "k-ot";`
			`};`
			`defaultSession = "gnome-xorg";`
			`};`
			`desktopManager = {`
			`gnome.enable = true;`
			`kodi.enable = true;`
The big format and cleanup 2022-06-12 17:26:32 +02:00			`};`
import glotzbert 2019-01-06 16:50:26 +01:00			`};`
			`};`

			`security.sudo = {`
			`enable = true;`
			`wheelNeedsPassword = false;`
			`};`

glotzbert: format 2024-01-03 19:30:29 +01:00			`sops = {`
			`age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];`
			`defaultSopsFile = ./secrets.yaml;`
			`};`

			`users = {`
			`groups."k-ot".gid = 1000;`
			`users."k-ot" = {`
			`group = "k-ot";`
			`extraGroups = [ "networkmanager" ];`
			`};`
import glotzbert 2019-01-06 16:50:26 +01:00			`};`

Cleanup 2023-06-16 20:28:00 +02:00			`system.stateVersion = "22.11";`
import glotzbert 2019-01-06 16:50:26 +01:00			`}`