feat: update flake and hosts for new structure

2026-03-26 23:23:52 +01:00
parent 8c6fefb95b
commit 404b6431ce
9 changed files with 173 additions and 199 deletions
--- a/hosts/ephvm/configuration.nix
+++ b/hosts/ephvm/configuration.nix
@@ -2,14 +2,9 @@
  pkgs,
  lib,
  inputs,
-  config,
  ...
 }:
 {
-  networking.hostName = "ephvm";
-
-  profiles.base.enable = true;
-
  # no hardware firmware needed in a VM
  hardware.enableRedistributableFirmware = lib.mkForce false;
  hardware.wirelessRegulatoryDatabase = lib.mkForce false;
@@ -33,27 +28,15 @@
      );
    };

-  vm-guest = {
-    enable = true;
-    headless = true;
-  };
+  vm-guest.headless = true;

-  vm-9p-automount = {
-    enable = true;
-    user = "matej";
-  };
+  vm-9p-automount.user = "matej";

  localisation = {
    timeZone = "UTC";
    defaultLocale = "en_US.UTF-8";
  };

-  virtualisation.docker = {
-    enable = true;
-    logDriver = "json-file";
-  };
-
-  # TODO:(@janezicmatej) move neovim dotfiles wiring to a cleaner place
  home-manager.users.matej = {
    neovim.dotfiles = inputs.nvim;
  };
--- a/hosts/fw16/configuration.nix
+++ b/hosts/fw16/configuration.nix
@@ -1,40 +1,21 @@
 {
-  config,
  lib,
  pkgs,
  inputs,
  options,
-  userKeys,
  ...
 }:

-let
-  packages = inputs.self.outputs.packages.${pkgs.stdenv.hostPlatform.system};
-in
-
 {
  imports = [
    inputs.nixos-hardware.nixosModules.framework-16-amd-ai-300-series
-    inputs.stylix.nixosModules.stylix
  ];

-  profiles.desktop.enable = true;
-
  localisation = {
    timeZone = "Europe/Ljubljana";
    defaultLocale = "en_US.UTF-8";
  };

-  stylix = {
-    enable = true;
-    polarity = "dark";
-    image = "${inputs.assets}/wallpaper.png";
-    base16Scheme = "${pkgs.base16-schemes}/share/themes/gruvbox-material-dark-medium.yaml";
-  };
-
-  # neovim manages its own theme
-  home-manager.users.matej.stylix.targets.neovim.enable = false;
-
  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;

@@ -53,26 +34,11 @@ in
    HibernateDelaySec=30min
  '';

-  # WARN:(@janezicmatej) nix-ld for running pip-installed binaries outside nix, probably want to drop this
-  programs.nix-ld.enable = true;
  programs.nix-ld.libraries = options.programs.nix-ld.libraries.default;

-  security.pki.certificateFiles = [ packages.ca-matheo-si ];
  services.gnome.gnome-keyring.enable = true;
-
  services.teamviewer.enable = true;

-  programs.thunderbird.enable = true;
-  programs._1password.enable = true;
-  programs._1password-gui.enable = true;
-  programs.firefox.enable = true;
-  programs.steam = {
-    enable = true;
-    remotePlay.openFirewall = true;
-    dedicatedServer.openFirewall = true;
-    localNetworkGameTransfers.openFirewall = true;
-  };
-
  services.hardware.bolt.enable = true;
  hardware.keyboard.zsa.enable = true;
  hardware.ledger.enable = true;
@@ -85,21 +51,7 @@ in
    SUBSYSTEM=="usb", DRIVERS=="usb", ATTRS{idVendor}=="32ac", ATTRS{idProduct}=="0014", ATTR{power/wakeup}="disabled"
  '';

-  programs.nm-applet.enable = true;
-
-  networking = {
-    hostName = "fw16";
-    networkmanager.enable = true;
-    firewall.enable = false;
-    nameservers = [
-      "1.1.1.1"
-      "8.8.8.8"
-    ];
-  };
-
-  xdg.mime.defaultApplications = {
-    "application/pdf" = "org.pwmt.zathura.desktop";
-  };
+  networking.firewall.enable = false;

  system.stateVersion = "24.11";
 }
--- a/hosts/iso/configuration.nix
+++ b/hosts/iso/configuration.nix
@@ -1,23 +1,12 @@
 {
-  pkgs,
-  lib,
-  inputs,
  userKeys,
  ...
 }:
 {
-  openssh.enable = true;
-
  image.modules.iso-installer = {
    isoImage.squashfsCompression = "zstd -Xcompression-level 6";
  };

-  fileSystems."/" = lib.mkDefault {
-    device = "/dev/disk/by-label/nixos";
-    fsType = "ext4";
-  };
-  boot.loader.grub.device = lib.mkDefault "/dev/sda";
-
  networking.firewall.allowedTCPPorts = [ 22 ];

  users = {
--- a/hosts/tower/configuration.nix
+++ b/hosts/tower/configuration.nix
@@ -1,42 +1,25 @@
 {
-  config,
  lib,
-  pkgs,
  inputs,
-  options,
  userKeys,
  ...
 }:

 {
  imports = [
-    inputs.stylix.nixosModules.stylix
    inputs.lanzaboote.nixosModules.lanzaboote
  ];

-  profiles.desktop.enable = true;
-
-  initrd-ssh = {
-    enable = true;
-    networkModule = "r8169";
-    authorizedKeys = userKeys.sshAuthorizedKeys;
-  };
-
  localisation = {
    timeZone = "Europe/Ljubljana";
    defaultLocale = "en_US.UTF-8";
  };

-  stylix = {
-    enable = true;
-    polarity = "dark";
-    image = "${inputs.assets}/wallpaper.png";
-    base16Scheme = "${pkgs.base16-schemes}/share/themes/gruvbox-material-dark-medium.yaml";
+  initrd-ssh = {
+    networkModule = "r8169";
+    authorizedKeys = userKeys.sshAuthorizedKeys;
  };

-  # neovim manages its own theme
-  home-manager.users.matej.stylix.targets.neovim.enable = false;
-
  # lanzaboote secure boot
  boot.kernelParams = [ "btusb.reset=1" ];
  boot.loader.efi.canTouchEfiVariables = true;
@@ -46,13 +29,8 @@
    pkiBundle = "/var/lib/sbctl";
  };

-  boot.binfmt.emulatedSystems = [ "aarch64-linux" ];
-
  services.udisks2.enable = true;

-  programs._1password.enable = true;
-  programs._1password-gui.enable = true;
-
  # higher sample rate for audio equipment
  services.pipewire.extraConfig.pipewire.adjust-sample-rate = {
    "context.properties" = {
@@ -61,15 +39,5 @@
    };
  };

-  environment.systemPackages = with pkgs; [
-    easyeffects
-  ];
-
-  networking.hostName = "tower";
-
-  xdg.mime.defaultApplications = {
-    "application/pdf" = "org.pwmt.zathura.desktop";
-  };
-
  system.stateVersion = "25.05";
 }