From 08df9b4acedd68c4f854e0acbcdc9ff4ff24f91f Mon Sep 17 00:00:00 2001 From: tulg Date: Mon, 20 Oct 2025 20:10:11 +0300 Subject: [PATCH] archangel setup --- flake.old | 60 ---------- hosts/archangel/configuration.nix | 141 ++++++++++++++++++++++++ hosts/virgil/hardware-configuration.nix | 4 +- 3 files changed, 143 insertions(+), 62 deletions(-) delete mode 100644 flake.old create mode 100644 hosts/archangel/configuration.nix diff --git a/flake.old b/flake.old deleted file mode 100644 index 87da32b..0000000 --- a/flake.old +++ /dev/null @@ -1,60 +0,0 @@ -{ - - description = "NixOS configuration"; - - inputs = { - nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable"; - spicetify-nix.url = "github:Gerg-L/spicetify-nix"; - home-manager = { - url = "github:nix-community/home-manager"; - inputs.nixpkgs.follows = "nixpkgs"; - }; - nix-colors.url = "github:misterio77/nix-colors"; - zen-browser = { - url = "github:0xc000022070/zen-browser-flake"; - inputs.nixpkgs.follows = "nixpkgs"; - }; - disko = { - url = "github:nix-community/disko"; - inputs.nixpkgs.follows = "nixpkgs"; - }; - }; - - - #}; -# }; - - outputs = { self, nixpkgs, home-manager, nix-colors, disko, ... } @ inputs: - let - system = "x86_64-linux"; - pkgs = import nixpkgs { - inherit system; - config.allowUnfree = true; - }; - in { - nixosConfigurations.virgil = nixpkgs.lib.nixosSystem { - inherit system; - specialArgs = { inherit inputs; }; - modules = [ - ./hosts/virgil/configuration.nix - home-manager.nixosModules.home-manager - inputs.disko.nixosModules.disko - { - home-manager = { - useGlobalPkgs = true; - useUserPackages = true; - - # Pass additional inputs to home-manager modules - extraSpecialArgs = { inherit inputs nix-colors; }; - - backupFileExtension = "backup"; - - users.tulg = { - imports = [ ./modules/home.nix ]; - }; - }; - } - ]; - }; - }; -} diff --git a/hosts/archangel/configuration.nix b/hosts/archangel/configuration.nix new file mode 100644 index 0000000..b6e6160 --- /dev/null +++ b/hosts/archangel/configuration.nix @@ -0,0 +1,141 @@ +# Edit this configuration file to define what should be installed on +# your system. Help is available in the configuration.nix(5) man page +# and in the NixOS manual (accessible by running ‘nixos-help’). + +{ config, pkgs, self, ... }: + +{ + imports = + [ # Include the results of the hardware scan. +# ./disko.nix + ./hardware-configuration.nix + ]; + + + + # Bootloader. + boot.loader.systemd-boot.enable = true; + boot.loader.efi.canTouchEfiVariables = true; + + networking = { + hostName = "archangel"; + nameservers = ["127.0.0.1" "::1"]; + }; + + services.dnscrypt-proxy2 = { + enable = true; + settings = { + listen_addresses = ["127.0.0.1:53" "[::1]:53"]; + }; + }; + + services.zapret = { + enable = true; + params = [ + "--dpi-desync=fake" + "--dpi-desync-ttl=8" + ]; + }; + + networking.wireless.enable = true; # Enables wireless support via wpa_supplicant. + + # Configure network proxy if necessary + # networking.proxy.default = "http://user:password@proxy:port/"; + # networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain"; + + # Enable networking + networking.networkmanager.enable = true; + + # Set your time zone. + time.timeZone = "Europe/Istanbul"; + + # Select internationalisation properties. + services.getty.autologinUser = "tulg"; + programs.hyprland = { + enable = true; + xwayland.enable = true; + }; + # Define a user account. Don't forget to set a password with ‘passwd’. + users.users.tulg = { + isNormalUser = true; + description = "Tulga"; + extraGroups = [ "networkmanager" "wheel" ]; + packages = with pkgs; []; + }; + + # Allow unfree packages + nixpkgs.config.allowUnfree = true; + # List packages installed in system profile. To search, run: + # $ nix search wget + environment.systemPackages = with pkgs; [ + # vim # Do not forget to add an editor to edit configuration.nix! The Nano editor is also installed by default. + # wget + git + rose-pine-gtk-theme + ]; + + # Some programs need SUID wrappers, can be configured further or are + # started in user sessions. + # programs.mtr.enable = true; + # programs.gnupg.agent = { + # enable = true; + # enableSSHSupport = true; + # }; + + # List services that you want to enable: + + # Enable the OpenSSH daemon. + services.openssh = { + enable = true; + settings = { + PasswordAuthentication = true; + PermitRootLogin = "yes"; + }; + }; + fonts = { + packages = with pkgs; [ + noto-fonts + noto-fonts-cjk-sans + noto-fonts-emoji + nerd-fonts.symbols-only + liberation_ttf + font-awesome + fira + fira-sans + fira-code + fira-code-symbols + ]; + + enableDefaultPackages = true; + fontconfig = { + enable = true; + defaultFonts = { + sansSerif = [ "Fira Sans Regular" ]; + serif = [ "Fira Sans Regular" ]; + monospace = [ "Fira Mono Regular" ]; + }; + }; + }; + + # Open ports in the firewall. + # networking.firewall.allowedTCPPorts = [ ... ]; + # networking.firewall.allowedUDPPorts = [ ... ]; + # Or disable the firewall altogether. + # networking.firewall.enable = false; + users.users."root".openssh.authorizedKeys.keys = [ + "ssh-rsa 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 tulg@highcommand" # content of authorized_keys file + ]; + users.users."tulg".openssh.authorizedKeys.keys = [ + "ssh-rsa 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 tulg@highcommand" # content of authorized_keys file + ]; + # This value determines the NixOS release from which the default + # settings for stateful data, like file locations and database versions + # on your system were taken. It‘s perfectly fine and recommended to leave + # this value at the release version of the first install of this system. + # Before changing this value read the documentation for this option + # (e.g. man configuration.nix or on https://nixos.org/nixos/options.html). + nix.settings.experimental-features = [ "nix-command" "flakes"]; + services.displayManager.ly.enable = true; + system.stateVersion = "25.05"; # Did you read the comment? + +} diff --git a/hosts/virgil/hardware-configuration.nix b/hosts/virgil/hardware-configuration.nix index 285c66a..644a67d 100644 --- a/hosts/virgil/hardware-configuration.nix +++ b/hosts/virgil/hardware-configuration.nix @@ -14,12 +14,12 @@ boot.extraModulePackages = [ ]; fileSystems."/" = - { device = "/dev/disk/by-uuid/10d6e759-3b2a-4593-b7c8-21b78352781d"; + { device = "/dev/disk/by-partlabel/disk-nixos-root"; fsType = "ext4"; }; fileSystems."/boot" = - { device = "/dev/disk/by-uuid/3639-959D"; + { device = "/dev/disk/by-partlabel/disk-nixos-ESP"; fsType = "vfat"; options = [ "fmask=0022" "dmask=0022" ]; };