fix desktop to work with refactor

2024-09-19 21:44:46 +00:00 · 2023-01-21 09:29:03 -05:00 · 2023-01-21 09:29:03 -05:00 · e7bbee5da0
commit e7bbee5da0
parent 2dda6a31bd
11 changed files with 36 additions and 34 deletions
--- a/hosts/desktop/default.nix
+++ b/hosts/desktop/default.nix
@ -1,4 +1,4 @@
-{ inputs, globals, ... }:
+{ inputs, globals, overlays, ... }:

 with inputs;

@ -16,7 +16,7 @@ nixpkgs.lib.nixosSystem {
    {
      physical = true;
      networking.hostName = "desktop";
-      nixpkgs.overlays = [ nur.overlay ];
+      nixpkgs.overlays = [ nur.overlay ] ++ overlays;
      # Set registry to flake packages, used for nix X commands
      nix.registry.nixpkgs.flake = nixpkgs;
      identityFile = "/home/${globals.user}/.ssh/id_ed25519";
@ -29,7 +29,9 @@ nixpkgs.lib.nixosSystem {
      gtk.theme.name = nixpkgs.lib.mkDefault "Adwaita-dark";
      passwordHash = nixpkgs.lib.fileContents ../../private/password.sha512;
      wsl.enable = false;
+      publicKey = null;

+      neovim.enable = true;
      media.enable = true;
      firefox.enable = true;
      kitty.enable = true;
--- a/nixos/graphical/picom.nix
+++ b/nixos/graphical/picom.nix
@ -24,7 +24,6 @@
          # '';
        };
        fade = false;
-        experimentalBackends = true;
        inactiveOpacity = 1.0;
        menuOpacity = 1.0;
        opacityRules = [
--- a/nixos/hardware/wifi.nix
+++ b/nixos/hardware/wifi.nix
@ -1,6 +1,6 @@
 { config, pkgs, lib, ... }: {

-  config = lib.mkIf (config.physical && config.isLinux) {
+  config = lib.mkIf (config.physical && pkgs.stdenv.isLinux) {

    # Enables wireless support via wpa_supplicant.
    networking.wireless.enable = true;
--- a/nixos/services/backups.nix
+++ b/nixos/services/backups.nix
@ -4,17 +4,17 @@

    backup.s3 = {
      endpoint = lib.mkOption {
-        type = lib.types.str;
+        type = lib.types.nullOr lib.types.str;
        description = "S3 endpoint for backups";
        default = null;
      };
      bucket = lib.mkOption {
-        type = lib.types.str;
+        type = lib.types.nullOr lib.types.str;
        description = "S3 bucket for backups";
        default = null;
      };
      accessKeyId = lib.mkOption {
-        type = lib.types.str;
+        type = lib.types.nullOr lib.types.str;
        description = "S3 access key ID for backups";
        default = null;
      };
@ -22,7 +22,7 @@

  };

-  config = {
+  config = lib.mkIf (config.backup.s3.endpoint != null) {

    users.groups.backup = { };

--- a/nixos/services/calibre.nix
+++ b/nixos/services/calibre.nix
@ -2,7 +2,7 @@

  options = {
    bookServer = lib.mkOption {
-      type = lib.types.str;
+      type = lib.types.nullOr lib.types.str;
      description = "Hostname for Calibre library";
      default = null;
    };
--- a/nixos/services/gitea.nix
+++ b/nixos/services/gitea.nix
@ -8,7 +8,7 @@ in {

    giteaServer = lib.mkOption {
      description = "Hostname for Gitea.";
-      type = lib.types.str;
+      type = lib.types.nullOr lib.types.str;
      default = null;
    };

--- a/nixos/services/jellyfin.nix
+++ b/nixos/services/jellyfin.nix
@ -2,7 +2,7 @@

  options = {
    streamServer = lib.mkOption {
-      type = lib.types.str;
+      type = lib.types.nullOr lib.types.str;
      description = "Hostname for Jellyfin library";
      default = null;
    };
--- a/nixos/services/nextcloud.nix
+++ b/nixos/services/nextcloud.nix
@ -3,7 +3,7 @@
  options = {

    nextcloudServer = lib.mkOption {
-      type = lib.types.str;
+      type = lib.types.nullOr lib.types.str;
      description = "Hostname for Nextcloud";
      default = null;
    };
--- a/nixos/services/prometheus.nix
+++ b/nixos/services/prometheus.nix
@ -1,7 +1,7 @@
 { config, pkgs, lib, ... }: {

  options.metricsServer = lib.mkOption {
-    type = lib.types.str;
+    type = lib.types.nullOr lib.types.str;
    description = "Hostname of the Grafana server.";
    default = null;
  };
--- a/nixos/services/sshd.nix
+++ b/nixos/services/sshd.nix
@ -2,7 +2,7 @@

  options = {
    publicKey = lib.mkOption {
-      type = lib.types.str;
+      type = lib.types.nullOr lib.types.str;
      description = "Public SSH key authorized for this system.";
    };
    permitRootLogin = lib.mkOption {
@ -12,25 +12,26 @@
    };
  };

-  config = lib.mkIf (pkgs.stdenv.isLinux && !config.wsl.enable) {
-    services.openssh = {
-      enable = true;
-      ports = [ 22 ];
-      passwordAuthentication = false;
-      gatewayPorts = "no";
-      forwardX11 = false;
-      allowSFTP = true;
-      permitRootLogin = config.permitRootLogin;
+  config = lib.mkIf
+    (pkgs.stdenv.isLinux && !config.wsl.enable && config.publicKey != null) {
+      services.openssh = {
+        enable = true;
+        ports = [ 22 ];
+        passwordAuthentication = false;
+        gatewayPorts = "no";
+        forwardX11 = false;
+        allowSFTP = true;
+        permitRootLogin = config.permitRootLogin;
+      };
+
+      users.users.${config.user}.openssh.authorizedKeys.keys =
+        [ config.publicKey ];
+
+      # Implement a simple fail2ban service for sshd
+      services.sshguard.enable = true;
+
+      # Add terminfo for SSH from popular terminal emulators
+      environment.enableAllTerminfo = true;
    };

-    users.users.${config.user}.openssh.authorizedKeys.keys =
-      [ config.publicKey ];
-
-    # Implement a simple fail2ban service for sshd
-    services.sshguard.enable = true;
-
-    # Add terminfo for SSH from popular terminal emulators
-    environment.enableAllTerminfo = true;
-  };
-
 }
--- a/nixos/services/vaultwarden.nix
+++ b/nixos/services/vaultwarden.nix
@ -8,7 +8,7 @@ in {

    vaultwardenServer = lib.mkOption {
      description = "Hostname for Vaultwarden.";
-      type = lib.types.str;
+      type = lib.types.nullOr lib.types.str;
      default = null;
    };