nix-config/flake.nix

{
  inputs = {
    nixpkgs-unstable.url = "github:nixos/nixpkgs/nixos-unstable";
    nixpkgs.url = "github:NixOS/nixpkgs/nixos-24.11";

    flake-utils.url = "github:numtide/flake-utils";

    sops-nix = {
      url = "github:Mic92/sops-nix";
      inputs.nixpkgs.follows = "nixpkgs";
    };

    nixos-hardware.url = "github:NixOS/nixos-hardware/master";

    microvm = {
      url = "github:astro/microvm.nix/v0.5.0";
      inputs = {
        nixpkgs.follows = "nixpkgs";
        flake-utils.follows = "flake-utils";
      };
    };

    lanzaboote = {
      url = "github:nix-community/lanzaboote/v0.4.1";
      inputs.nixpkgs.follows = "nixpkgs";
    };

    authentik-nix = {
      url = "github:nix-community/authentik-nix";
      inputs.nixpkgs.follows = "nixpkgs";
    };

    lix = {
      url = "https://git.lix.systems/lix-project/lix/archive/main.tar.gz";
      flake = false;
    };

    lix-module = {
      url = "https://git.lix.systems/lix-project/nixos-module/archive/main.tar.gz";
      inputs.nixpkgs.follows = "nixpkgs";
      inputs.lix.follows = "lix";
    };

    website = {
      url = "git+https://git.oxapentane.com/0xa/website.git?ref=main";
      inputs.nixpkgs.follows = "nixpkgs";
      inputs.flake-utils.follows = "flake-utils";
    };

    tmux-yank = {
      url = "github:tmux-plugins/tmux-yank";
      flake = false;
    };
  };

  outputs =
    inputs@{
      authentik-nix,
      lanzaboote,
      lix-module,
      microvm,
      nixos-hardware,
      nixpkgs,
      sops-nix,
      ...
    }:

    {
      nixosConfigurations =
        let
          microvm-list = [
            "auth"
            "conduwuit"
            "forgejo"
            "immich"
            "miniflux"
            "radicale"
          ];

          microvms = builtins.listToAttrs (
            map (vm: {
              name = vm;
              value = nixpkgs.lib.nixosSystem {
                system = "x86_64-linux";
                specialArgs = { inherit inputs; };
                modules = [
                  sops-nix.nixosModules.sops
                  microvm.nixosModules.microvm

                  ./hosts/${vm}
                  ./modules/server
                  ./modules/wg
                ];
              };
            }) microvm-list
          );
        in
        microvms
        // {
          toaster = nixpkgs.lib.nixosSystem {
            system = "x86_64-linux";
            specialArgs = { inherit inputs; };
            modules = [
              sops-nix.nixosModules.sops
              lanzaboote.nixosModules.lanzaboote
              nixos-hardware.nixosModules.lenovo-thinkpad-t14-amd-gen3
              lix-module.nixosModules.default

              ./hosts/toaster

              ./modules/basic-tools
              ./modules/binary-caches.nix
              ./modules/devtools.nix
              ./modules/gnome.nix
              ./modules/gnupg.nix
              ./modules/radio.nix
              ./modules/science.nix
              ./modules/tlp.nix
              ./modules/virtualization.nix
              ./hosts/toaster/secure-boot.nix
              ./modules/chromium.nix
              ./modules/mail
              ./modules/wg
            ];
          };
          cloud = nixpkgs.lib.nixosSystem {
            system = "x86_64-linux";
            specialArgs = { inherit inputs; };
            modules = [
              sops-nix.nixosModules.sops
              lix-module.nixosModules.default

              ./hosts/cloud

              ./modules/basic-tools
              ./modules/server
              ./modules/binary-caches.nix
              ./modules/wg
            ];
          };
          minime = nixpkgs.lib.nixosSystem {
            system = "x86_64-linux";
            specialArgs = { inherit inputs; };
            modules = [
              sops-nix.nixosModules.sops
              microvm.nixosModules.host
              lix-module.nixosModules.default

              ./hosts/minime
              ./modules/basic-tools
              ./modules/server
              ./modules/binary-caches.nix
              ./modules/wg

              {
                config.microvm.autostart = microvm-list;
              }
            ];
          };
        };
    };
}
init 2022-05-25 19:27:42 +02:00			`{`
			`inputs = {`
Revert "retire toaster, refactor a bit" This reverts commit 5b47cc39c1d94d52a791e681fa3152754b9818cd. 2024-12-31 14:00:49 +00:00			`nixpkgs-unstable.url = "github:nixos/nixpkgs/nixos-unstable";`
switch toaster to stable, add lix 2025-01-21 23:09:25 +01:00			`nixpkgs.url = "github:NixOS/nixpkgs/nixos-24.11";`
small fixes, nixpkgs-fmt 2022-09-28 21:42:37 +02:00
prepare for toaster 2023-01-09 18:23:59 +01:00			`flake-utils.url = "github:numtide/flake-utils";`
small fixes, nixpkgs-fmt 2022-09-28 21:42:37 +02:00
small fixes 2022-05-29 13:39:17 +02:00			`sops-nix = {`
prepare for toaster 2023-01-09 18:23:59 +01:00			`url = "github:Mic92/sops-nix";`
switch toaster to stable, add lix 2025-01-21 23:09:25 +01:00			`inputs.nixpkgs.follows = "nixpkgs";`
small fixes 2022-05-29 13:39:17 +02:00			`};`
small fixes, nixpkgs-fmt 2022-09-28 21:42:37 +02:00
bump lock 2025-01-01 16:37:23 +01:00			`nixos-hardware.url = "github:NixOS/nixos-hardware/master";`

toaster works 2025-01-02 16:29:05 +01:00			`microvm = {`
			`url = "github:astro/microvm.nix/v0.5.0";`
			`inputs = {`
switch toaster to stable, add lix 2025-01-21 23:09:25 +01:00			`nixpkgs.follows = "nixpkgs";`
toaster works 2025-01-02 16:29:05 +01:00			`flake-utils.follows = "flake-utils";`
			`};`
			`};`

			`lanzaboote = {`
			`url = "github:nix-community/lanzaboote/v0.4.1";`
switch toaster to stable, add lix 2025-01-21 23:09:25 +01:00			`inputs.nixpkgs.follows = "nixpkgs";`
some work 2025-01-12 13:45:55 +01:00			`};`

deploy authentik, cleanup 2025-01-21 00:14:24 +00:00			`authentik-nix = {`
			`url = "github:nix-community/authentik-nix";`
switch toaster to stable, add lix 2025-01-21 23:09:25 +01:00			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`

update lix to beta 2025-02-10 12:07:38 +01:00			`lix = {`
			`url = "https://git.lix.systems/lix-project/lix/archive/main.tar.gz";`
			`flake = false;`
			`};`

switch toaster to stable, add lix 2025-01-21 23:09:25 +01:00			`lix-module = {`
update lix to beta 2025-02-10 12:07:38 +01:00			`url = "https://git.lix.systems/lix-project/nixos-module/archive/main.tar.gz";`
switch toaster to stable, add lix 2025-01-21 23:09:25 +01:00			`inputs.nixpkgs.follows = "nixpkgs";`
update lix to beta 2025-02-10 12:07:38 +01:00			`inputs.lix.follows = "lix";`
deploy authentik, cleanup 2025-01-21 00:14:24 +00:00			`};`

add landing page 2025-02-02 20:50:39 +01:00			`website = {`
update website 2025-02-10 12:08:08 +01:00			`url = "git+https://git.oxapentane.com/0xa/website.git?ref=main";`
add landing page 2025-02-02 20:50:39 +01:00			`inputs.nixpkgs.follows = "nixpkgs";`
			`inputs.flake-utils.follows = "flake-utils";`
			`};`

move tmux config to nix 2023-02-14 22:13:52 +01:00			`tmux-yank = {`
			`url = "github:tmux-plugins/tmux-yank";`
			`flake = false;`
			`};`
init 2022-05-25 19:27:42 +02:00			`};`

flake update, nixpkgs-fmt, add extra redirect to dd-ix.net 2022-07-10 03:00:29 +02:00			`outputs =`
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`inputs@{`
deploy authentik, cleanup 2025-01-21 00:14:24 +00:00			`authentik-nix,`
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`lanzaboote,`
switch toaster to stable, add lix 2025-01-21 23:09:25 +01:00			`lix-module,`
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`microvm,`
			`nixos-hardware,`
switch toaster to stable, add lix 2025-01-21 23:09:25 +01:00			`nixpkgs,`
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`sops-nix,`
			`...`
			`}:`
small fixes, nixpkgs-fmt 2022-09-28 21:42:37 +02:00
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`{`
less microvm boilerplate 2025-02-02 23:18:19 +00:00			`nixosConfigurations =`
			`let`
			`microvm-list = [`
			`"auth"`
add conduwuit matrix server 2025-02-05 18:11:49 +00:00			`"conduwuit"`
add forgejo microvm 2025-02-03 17:12:11 +00:00			`"forgejo"`
less microvm boilerplate 2025-02-02 23:18:19 +00:00			`"immich"`
			`"miniflux"`
			`"radicale"`
Revert "retire toaster, refactor a bit" This reverts commit 5b47cc39c1d94d52a791e681fa3152754b9818cd. 2024-12-31 14:00:49 +00:00			`];`
some work 2025-01-12 13:45:55 +01:00
less microvm boilerplate 2025-02-02 23:18:19 +00:00			`microvms = builtins.listToAttrs (`
			`map (vm: {`
			`name = vm;`
			`value = nixpkgs.lib.nixosSystem {`
			`system = "x86_64-linux";`
			`specialArgs = { inherit inputs; };`
			`modules = [`
			`sops-nix.nixosModules.sops`
			`microvm.nixosModules.microvm`

			`./hosts/${vm}`
			`./modules/server`
			`./modules/wg`
			`];`
			`};`
			`}) microvm-list`
			`);`
			`in`
			`microvms`
			`// {`
			`toaster = nixpkgs.lib.nixosSystem {`
			`system = "x86_64-linux";`
			`specialArgs = { inherit inputs; };`
			`modules = [`
			`sops-nix.nixosModules.sops`
			`lanzaboote.nixosModules.lanzaboote`
			`nixos-hardware.nixosModules.lenovo-thinkpad-t14-amd-gen3`
			`lix-module.nixosModules.default`

			`./hosts/toaster`

			`./modules/basic-tools`
			`./modules/binary-caches.nix`
			`./modules/devtools.nix`
Revert "sway config" This reverts commit 73df58ccb08aeb44ff7f2b5324762533d5be9ec0. 2025-02-19 01:57:32 +01:00			`./modules/gnome.nix`
less microvm boilerplate 2025-02-02 23:18:19 +00:00			`./modules/gnupg.nix`
			`./modules/radio.nix`
			`./modules/science.nix`
			`./modules/tlp.nix`
			`./modules/virtualization.nix`
			`./hosts/toaster/secure-boot.nix`
			`./modules/chromium.nix`
			`./modules/mail`
			`./modules/wg`
			`];`
			`};`
			`cloud = nixpkgs.lib.nixosSystem {`
			`system = "x86_64-linux";`
			`specialArgs = { inherit inputs; };`
			`modules = [`
			`sops-nix.nixosModules.sops`
			`lix-module.nixosModules.default`

			`./hosts/cloud`

			`./modules/basic-tools`
			`./modules/server`
			`./modules/binary-caches.nix`
			`./modules/wg`
			`];`
			`};`
			`minime = nixpkgs.lib.nixosSystem {`
			`system = "x86_64-linux";`
			`specialArgs = { inherit inputs; };`
			`modules = [`
			`sops-nix.nixosModules.sops`
			`microvm.nixosModules.host`
			`lix-module.nixosModules.default`

			`./hosts/minime`
			`./modules/basic-tools`
			`./modules/server`
			`./modules/binary-caches.nix`
			`./modules/wg`

			`{`
			`config.microvm.autostart = microvm-list;`
			`}`
			`];`
			`};`
immich: init 2025-01-21 17:39:25 +00:00			`};`
delete legacy stuff and reformat 2025-01-11 03:55:19 +01:00			`};`
			`}`