@ -76,6 +76,7 @@ in {
dates = " w e e k l y " ;
dates = " w e e k l y " ;
options = " - - d e l e t e - o l d e r - t h a n 3 0 d " ;
options = " - - d e l e t e - o l d e r - t h a n 3 0 d " ;
} ;
} ;
nix . settings . experimental-features = [ " n i x - c o m m a n d " " f l a k e s " ] ;
# This is probalby not gonna work, but is a rough analogue to what I did before
# This is probalby not gonna work, but is a rough analogue to what I did before
# pkgs.writeTextFile {
# pkgs.writeTextFile {
@ -116,8 +117,17 @@ in {
isNormalUser = true ;
isNormalUser = true ;
extraGroups =
extraGroups =
[ " w h e e l " " a u d i o " " s o u n d " " v i d e o " " d o c k e r " " v b o x u s e r s " " a d b u s e r s " ] ;
[ " w h e e l " " a u d i o " " s o u n d " " v i d e o " " d o c k e r " " v b o x u s e r s " " a d b u s e r s " ] ;
# My SSH keys.
openssh . authorizedKeys . keys = [
# Replace this with your SSH key!
" s s h - e d 2 5 5 1 9 A A A A C 3 N z a C 1 l Z D I 1 N T E 5 A A A A I P A Z h F D z l 1 l b h W J 7 M i T V 3 + Z 1 E Y 8 M 5 b 4 c H / + j u 4 u o 1 d 9 1 a d m i n "
] ;
} ;
} ;
# Use my SSH keys for logging in as root.
users . users . root . openssh . authorizedKeys . keys =
config . users . users . josiah . openssh . authorizedKeys . keys ;
nixpkgs . config . allowUnfree = true ;
nixpkgs . config . allowUnfree = true ;
# List packages installed in system profile. To search, run:
# List packages installed in system profile. To search, run:
@ -127,11 +137,16 @@ in {
packageOverrides = pkgs : {
packageOverrides = pkgs : {
unstable = import unstableTarball { config = config . nixpkgs . config ; } ;
unstable = import unstableTarball { config = config . nixpkgs . config ; } ;
} ;
} ;
permittedInsecurePackages = [
" p y t h o n 2 . 7 - c e r t i f i - 2 0 2 1 . 1 0 . 8 "
" p y t h o n 2 . 7 - p y j w t - 1 . 7 . 1 " ] ; # required for poetry
} ;
} ;
environment . systemPackages = with pkgs ; [
environment . systemPackages = with pkgs ; [
# build shit
# build shit
morph
morph # ultimately this seems not useful to me; weird errors.
nixops
deploy-rs
autoconf
autoconf
yarn
yarn
automake
automake
@ -253,6 +268,12 @@ in {
openssh . enable = true ;
openssh . enable = true ;
} ;
} ;
# Configure ssh auth for sudo/pam
security . sudo . enable = true ;
security . pam . enableSSHAgentAuth = true ;
security . pam . services . sudo . sshAgentAuth = true ;
security . sudo . wheelNeedsPassword = false ;
# this works properly
# this works properly
fileSystems . " / h o m e / j o s i a h / n e t w o r k - s h a r e / s y n - n a s / u s e n e t " = {
fileSystems . " / h o m e / j o s i a h / n e t w o r k - s h a r e / s y n - n a s / u s e n e t " = {
device = " 1 9 2 . 1 6 8 . 1 . 2 2 1 : / v o l u m e 1 / u s e n e t " ;
device = " 1 9 2 . 1 6 8 . 1 . 2 2 1 : / v o l u m e 1 / u s e n e t " ;
@ -291,3 +312,4 @@ in {
system . stateVersion = " 2 1 . 1 1 " ; # Did you read the comment?
system . stateVersion = " 2 1 . 1 1 " ; # Did you read the comment?
}
}