nixfiles/hosts/raspberry/raspberry.nix

{
  tree,
  modulesPath,
  config,
  pkgs,
  lib,
  ...
}: let
  secrets = config.services.secrets.secrets;
in {
  networking.firewall.enable = true;
  networking.firewall.allowPing = true;

  imports = with tree;
    [
      users.root
      users.chaos

      profiles.base
      profiles.sshd
      profiles.nginx
      profiles.nginx-firewall

      profiles.connectivity.network_manager
      profiles.connectivity.bluetooth
      profiles.connectivity.ios

      ./secrets.nix

      ./boot.nix
      (modulesPath + "/installer/sd-card/sd-image.nix")
    ]
    ++ (with hosts.raspberry.profiles; [
      external-drive
      wireguard
      cockroachdb
      piped
      auto-storage-backups
      rclone
    ]);

  environment.systemPackages = [
    (pkgs.writeShellScriptBin "vault-login" ''
      ${pkgs.vault-bin}/bin/vault login -method=userpass username=raspberry password=$(cat ${secrets.vault_login_password.path})
    '')
  ];

  home-manager.users.root = {
    imports = with tree; [home.base home.dev.small];
    home.stateVersion = "23.05";
  };

  home-manager.users.chaos = {
    imports = with tree; [home.base home.dev.small];
    home.stateVersion = "23.05";
  };

  boot.supportedFilesystems = lib.mkForce ["vfat"];
  boot.kernelPackages = pkgs.linuxPackages_latest;

  networking.hostName = "raspberry";
  time.timeZone = "Europe/London";

  sdImage.compressImage = lib.mkForce false;

  system.stateVersion = "21.11";
}
add raspberry pi, add home.dev.small, add cross to lappy 2022-01-03 16:50:22 +00:00			`{`
tidy files, switch to alejandra for formatting, add private aliases to mailserver 2022-12-04 13:45:43 +00:00			`tree,`
			`modulesPath,`
more work on raspberry's drive 2023-09-13 19:26:50 +01:00			`config,`
tidy files, switch to alejandra for formatting, add private aliases to mailserver 2022-12-04 13:45:43 +00:00			`pkgs,`
			`lib,`
			`...`
more work on raspberry's drive 2023-09-13 19:26:50 +01:00			`}: let`
			`secrets = config.services.secrets.secrets;`
			`in {`
lots of misc changes with wireguard and whatever 2023-09-16 16:06:16 +01:00			`networking.firewall.enable = true;`
			`networking.firewall.allowPing = true;`

more work on raspberry's drive 2023-09-13 19:26:50 +01:00			`imports = with tree;`
			`[`
			`users.root`
			`users.chaos`

			`profiles.base`
			`profiles.sshd`
piped-proxy on raspberry 2023-09-14 19:44:27 +01:00			`profiles.nginx`
			`profiles.nginx-firewall`
more work on raspberry's drive 2023-09-13 19:26:50 +01:00
			`profiles.connectivity.network_manager`
			`profiles.connectivity.bluetooth`
			`profiles.connectivity.ios`

			`./secrets.nix`

			`./boot.nix`
			`(modulesPath + "/installer/sd-card/sd-image.nix")`
			`]`
			`++ (with hosts.raspberry.profiles; [`
			`external-drive`
piped-proxy on raspberry 2023-09-14 19:44:27 +01:00			`wireguard`
lots of misc changes with wireguard and whatever 2023-09-16 16:06:16 +01:00			`cockroachdb`
			`piped`
piped-proxy on raspberry 2023-09-14 19:44:27 +01:00			`auto-storage-backups`
lots of misc changes with wireguard and whatever 2023-09-16 16:06:16 +01:00			`rclone`
more work on raspberry's drive 2023-09-13 19:26:50 +01:00			`]);`

			`environment.systemPackages = [`
			`(pkgs.writeShellScriptBin "vault-login" ''`
			`${pkgs.vault-bin}/bin/vault login -method=userpass username=raspberry password=$(cat ${secrets.vault_login_password.path})`
			`'')`
add test wifi 2022-01-04 12:31:29 +00:00			`];`
add raspberry pi, add home.dev.small, add cross to lappy 2022-01-03 16:50:22 +00:00
seporate gaming and gui environments 2022-01-16 11:22:44 +00:00			`home-manager.users.root = {`
tidy files, switch to alejandra for formatting, add private aliases to mailserver 2022-12-04 13:45:43 +00:00			`imports = with tree; [home.base home.dev.small];`
add vaultui flake, minor tidying, start work on raspberry machine 2023-09-13 16:21:54 +01:00			`home.stateVersion = "23.05";`
seporate gaming and gui environments 2022-01-16 11:22:44 +00:00			`};`
add vaultui flake, minor tidying, start work on raspberry machine 2023-09-13 16:21:54 +01:00
encrypted laptop root and better setup guide 2022-01-29 21:44:38 +00:00			`home-manager.users.chaos = {`
tidy files, switch to alejandra for formatting, add private aliases to mailserver 2022-12-04 13:45:43 +00:00			`imports = with tree; [home.base home.dev.small];`
add vaultui flake, minor tidying, start work on raspberry machine 2023-09-13 16:21:54 +01:00			`home.stateVersion = "23.05";`
seporate gaming and gui environments 2022-01-16 11:22:44 +00:00			`};`
add raspberry pi, add home.dev.small, add cross to lappy 2022-01-03 16:50:22 +00:00
tidy files, switch to alejandra for formatting, add private aliases to mailserver 2022-12-04 13:45:43 +00:00			`boot.supportedFilesystems = lib.mkForce ["vfat"];`
steam 2022-01-24 21:18:03 +00:00			`boot.kernelPackages = pkgs.linuxPackages_latest;`
e 2022-01-24 16:50:53 +00:00
add raspberry pi, add home.dev.small, add cross to lappy 2022-01-03 16:50:22 +00:00			`networking.hostName = "raspberry";`
			`time.timeZone = "Europe/London";`

			`sdImage.compressImage = lib.mkForce false;`

			`system.stateVersion = "21.11";`
			`}`