blob: 6eef5ed4f93a9b99a64de000a159f41d8abcd58a (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
|
{
inputs,
self,
}: let
specialArgs = inputs // {inherit inputs;};
in {
personal = {
system = "x86_64-linux";
builder = inputs.nixpkgs.lib.nixosSystem;
inherit specialArgs;
modules = with inputs; [
ragenix.nixosModules.default
hm.nixosModules.home-manager
nur.nixosModules.nur
self.nixosModules.default
../users/seth
{
age = {
identityPaths = ["/etc/age/key"];
secrets = let
baseDir = "${self}/secrets/shared";
in {
rootPassword.file = "${baseDir}/rootPassword.age";
sethPassword.file = "${baseDir}/sethPassword.age";
};
};
base.enable = true;
system.stateVersion = "23.11";
}
];
};
personal-darwin = {
builder = inputs.darwin.lib.darwinSystem;
inherit specialArgs;
modules = with inputs; [
hm.darwinModules.home-manager
../users/seth
self.darwinModules.default
{
base.enable = true;
desktop.enable = true;
system.stateVersion = 4;
home-manager.users.seth = {
imports = [
../users/seth/darwin.nix
];
getchoo.desktop.enable = false;
};
}
];
};
server = {
builder = inputs.nixpkgs-stable.lib.nixosSystem;
inherit specialArgs;
modules = with inputs; [
ragenix.nixosModules.default
../modules/nixos/base
../modules/nixos/server
../modules/nixos/features/tailscale.nix
{
features.tailscale = {
enable = true;
ssh.enable = true;
};
server = {
enable = true;
secrets.enable = true;
services = {
hercules-ci = {
enable = true;
secrets.enable = true;
};
promtail = {
enable = true;
clients = [
{
url = "http://p-body:3030/loki/api/v1/push";
}
];
};
};
};
services.prometheus.exporters.node = {
enable = true;
enabledCollectors = ["systemd"];
};
nix.registry.n.flake = nixpkgs-stable;
system.stateVersion = "23.05";
}
];
};
}
|
