127 lines
3.8 KiB
Nix
127 lines
3.8 KiB
Nix
# Configuration common to all my servers
|
|
|
|
{ config, pkgs, lib, ... }:
|
|
|
|
{
|
|
|
|
imports = [
|
|
./tmux.nix
|
|
];
|
|
|
|
# Common boot settings
|
|
boot = {
|
|
cleanTmpDir = true; # Clean /tmp on reboot
|
|
};
|
|
|
|
# Select internationalisation properties.
|
|
i18n = {
|
|
defaultLocale = "en_AU.UTF-8"; # Set the default locale
|
|
};
|
|
|
|
# Set the defaul console properties
|
|
console = {
|
|
keyMap = "us"; # Set the default console key map
|
|
font = "ter-powerline-v16Rv"; # Set the default console font
|
|
};
|
|
|
|
time.timeZone = "Australia/Brisbane"; # Set your preferred timezone:
|
|
|
|
# Set security options:
|
|
security.sudo.enable = true;
|
|
security.sudo.wheelNeedsPassword = false;
|
|
|
|
# Configure and install required fonts
|
|
fonts.enableDefaultFonts = true;
|
|
fonts.enableFontDir = true;
|
|
fonts.fonts = with pkgs; [
|
|
powerline-fonts # Required for Powerline prompts
|
|
];
|
|
fonts.fontconfig.includeUserConf = false;
|
|
|
|
# Adapted from gchristensen and clever
|
|
nix = {
|
|
nixPath = [
|
|
# Ruin the config so we don't accidentally run
|
|
# nixos-rebuild switch on the host
|
|
(let
|
|
cfg = pkgs.writeText "configuration.nix"
|
|
''
|
|
assert builtins.trace "This system is managed by NixOps." false;
|
|
{}
|
|
'';
|
|
in "nixos-config=${cfg}")
|
|
|
|
# Copy the channel version from the deploy host to the target
|
|
"nixpkgs=/run/current-system/nixpkgs"
|
|
];
|
|
gc = {
|
|
automatic = true; # Enable Nix garbage collection:
|
|
dates = "weekly";
|
|
options = "--delete-older-than 90d";
|
|
};
|
|
autoOptimiseStore = true;
|
|
extraOptions = ''
|
|
show-trace = true # Enable --show-trace by default for nix
|
|
'';
|
|
trustedUsers = ["root" "craige"];
|
|
};
|
|
|
|
system.extraSystemBuilderCmds = ''
|
|
ln -sv ${pkgs.path} $out/nixpkgs
|
|
'';
|
|
environment.etc.host-nix-channel.source = pkgs.path;
|
|
|
|
# Set the system-wide environment
|
|
environment = {
|
|
systemPackages = with pkgs; [
|
|
byobu # text-based window manager and terminal multiplexer.
|
|
direnv # A shell extension that manages your environment
|
|
dnsutils # Bind DNS utilities
|
|
(if config.services.xserver.enable then gitAndTools.gitFull else git) # Distributed version control system
|
|
htop # interactive process viewer
|
|
hwinfo # Hardware detection tool
|
|
killall # kill processes by name
|
|
lshw # Detailed information on the hardware configuration
|
|
lsof # list open files
|
|
mosh # Mobile shell (ssh replacement)
|
|
ncdu # Disk usage analyzer with an ncurses interface
|
|
nix-index # A files database for nixpkgs
|
|
#openssl # A cryptographic library that implements the SSL and TLS protocols
|
|
ripgrep # Utility that provides usability of The Silver Searcher with the raw speed of grep
|
|
(
|
|
import ../roles/vim.nix
|
|
)
|
|
];
|
|
variables = {
|
|
EDITOR = [ "vim"]; # Set the default editor
|
|
};
|
|
};
|
|
|
|
# Program defaults for all hosts
|
|
programs.zsh = {
|
|
enable = true;
|
|
autosuggestions = {
|
|
enable = true;
|
|
};
|
|
interactiveShellInit = ''
|
|
export TERM="xterm-256color"
|
|
eval "$(direnv hook zsh)"
|
|
test -r ~/.dir_colors && eval $(dircolors ~/.dir_colors)
|
|
export GPG_TTY="$(tty)"
|
|
export SSH_AUTH_SOCK=$(gpgconf --list-dirs agent-ssh-socket)
|
|
gpgconf --launch gpg-agent
|
|
'';
|
|
ohMyZsh = {
|
|
enable = true;
|
|
plugins = [ "git" ];
|
|
};
|
|
promptInit = "source ${pkgs.zsh-powerlevel9k}/share/zsh-powerlevel9k/powerlevel9k.zsh-theme";
|
|
};
|
|
|
|
users.defaultUserShell = pkgs.zsh; # Set the default shell for all users
|
|
|
|
# Users common across MIO Ops:
|
|
users.mutableUsers = false; # Remove any users not defined in here
|
|
|
|
}
|