kalipso
d1afbe9f14
Networking still needs to be done but the vm boots using ```nix run .\#nixosConfigurations.durruti.config.microvm.declaredRunner```
77 lines
1.5 KiB
Nix
77 lines
1.5 KiB
Nix
{ config, lib, pkgs, inputs, ... }:
|
|
|
|
with lib;
|
|
|
|
{
|
|
sops.defaultSopsFile = ./secrets.yaml;
|
|
|
|
networking = {
|
|
hostName = mkDefault "durruti";
|
|
useDHCP = false;
|
|
nameservers = [ "1.1.1.1" ];
|
|
};
|
|
|
|
networking.firewall.allowedTCPPorts = [ 8080 ];
|
|
|
|
environment.systemPackages = with pkgs; [
|
|
go
|
|
gcc
|
|
tmux
|
|
];
|
|
|
|
imports = [
|
|
inputs.ep3-bs.nixosModules.ep3-bs
|
|
inputs.tasklist.nixosModules.malobeo-tasklist
|
|
../modules/malobeo_user.nix
|
|
../modules/sshd.nix
|
|
../modules/minimal_tools.nix
|
|
../modules/autoupdate.nix
|
|
];
|
|
|
|
malobeo.autoUpdate = {
|
|
enable = true;
|
|
url = "https://hydra.dynamicdiscord.de";
|
|
project = "malobeo";
|
|
jobset = "infrastructure";
|
|
cacheurl = "https://cache.dynamicdiscord.de";
|
|
};
|
|
|
|
services.malobeo-tasklist.enable = true;
|
|
|
|
services.ep3-bs = {
|
|
enable = true;
|
|
in_production = true;
|
|
favicon = ./circle-a.png;
|
|
logo = ./malobeo.png;
|
|
|
|
mail = {
|
|
type = "smtp-tls";
|
|
address = "dynamicdiscorddresden@systemli.org";
|
|
host = "mail.systemli.org";
|
|
user = "dynamicdiscorddresden@systemli.org";
|
|
passwordFile = config.sops.secrets.ep3bsMail.path;
|
|
auth = "plain";
|
|
};
|
|
|
|
|
|
database = {
|
|
user = "malodbuser";
|
|
passwordFile = config.sops.secrets.ep3bsDb.path;
|
|
};
|
|
};
|
|
|
|
sops.secrets.ep3bsDb = {
|
|
owner = config.services.ep3-bs.user;
|
|
key = "ep3bsDb";
|
|
};
|
|
|
|
sops.secrets.ep3bsMail = {
|
|
owner = config.services.ep3-bs.user;
|
|
key = "ep3bsMail";
|
|
};
|
|
|
|
|
|
system.stateVersion = "22.11"; # Did you read the comment?
|
|
}
|
|
|