nix-infra/configuration/common/default.nix

{ pkgs, ... }:
{
  imports = [
    ./prometheus-node-exporter.nix
    ./nginx.nix
    ../../users/colmena-deploy
    ../../users/yuri
  ];

  time.timeZone = "Europe/Berlin";

  i18n.defaultLocale = "en_US.UTF-8";
  console = {
    keyMap = "de-latin1";
  };

  security.sudo.wheelNeedsPassword = false;

  nix.settings = {
    trusted-users = [ "colmena-deploy" ];
    auto-optimise-store = true;
    experimental-features = [ "nix-command" "flakes" ];
  };

  nix.gc = {
    automatic = true;
    dates = "weekly";
    options = "--delete-older-than 30d";
  };

  environment.systemPackages = with pkgs; [
    htop
    parted
    tmux
    nano
  ];

  services.openssh = {
    enable = true;
    openFirewall = true;
    settings = {
      PasswordAuthentication = false;
      KbdInteractiveAuthentication = false;
      PermitRootLogin = "no";
    };
  };

  security.acme = {
    defaults.email = "acme@grzb.de";
    acceptTerms = true;
  };

  services.fstrim.enable = true;
}
Work on hydra config, fix tor relay config, prepare web-public-2 host 2023-07-18 17:23:46 +02:00			`{ pkgs, ... }:`
Initial commit 2023-07-10 15:30:51 +02:00			`{`
			`imports = [`
Add prometheus node exporter config 2023-07-15 21:34:33 +02:00			`./prometheus-node-exporter.nix`
Work on hydra config, fix tor relay config, prepare web-public-2 host 2023-07-18 17:23:46 +02:00			`./nginx.nix`
Add colmena apply stage 2023-07-13 20:56:30 +02:00			`../../users/colmena-deploy`
Initial commit 2023-07-10 15:30:51 +02:00			`../../users/yuri`
			`];`

			`time.timeZone = "Europe/Berlin";`

			`i18n.defaultLocale = "en_US.UTF-8";`
			`console = {`
			`keyMap = "de-latin1";`
			`};`

			`security.sudo.wheelNeedsPassword = false;`

			`nix.settings = {`
Add colmena apply stage 2023-07-13 20:56:30 +02:00			`trusted-users = [ "colmena-deploy" ];`
Initial commit 2023-07-10 15:30:51 +02:00			`auto-optimise-store = true;`
			`experimental-features = [ "nix-command" "flakes" ];`
			`};`

			`nix.gc = {`
			`automatic = true;`
			`dates = "weekly";`
			`options = "--delete-older-than 30d";`
			`};`

			`environment.systemPackages = with pkgs; [`
			`htop`
			`parted`
			`tmux`
			`nano`
			`];`

			`services.openssh = {`
			`enable = true;`
Work on hydra config, fix tor relay config, prepare web-public-2 host 2023-07-18 17:23:46 +02:00			`openFirewall = true;`
Initial commit 2023-07-10 15:30:51 +02:00			`settings = {`
			`PasswordAuthentication = false;`
			`KbdInteractiveAuthentication = false;`
			`PermitRootLogin = "no";`
			`};`
			`};`

Work on hydra config, fix tor relay config, prepare web-public-2 host 2023-07-18 17:23:46 +02:00			`security.acme = {`
			`defaults.email = "acme@grzb.de";`
			`acceptTerms = true;`
			`};`

Initial commit 2023-07-10 15:30:51 +02:00			`services.fstrim.enable = true;`
			`}`