nix/os-mods/common/default.nix

{ config
, pkgs
, ...
}: {
  nix = {
    gc = {
      automatic = true;
      dates = "weekly";
      options = "--delete-older-than 2w";
    };
    settings.auto-optimise-store = true;
    package = pkgs.nixFlakes;
    extraOptions = ''
      experimental-features = nix-command flakes
    '';
  };

  # locale
  time.timeZone = "Europe/Berlin";

  i18n = {
    defaultLocale = "en_US.UTF-8";

    extraLocaleSettings = {
      LANG = "en_US.UTF-8";
      LC_ADDRESS = "de_DE.UTF-8";
      LC_COLLATE = "de_DE.UTF-8";
      LC_CTYPE = "en_US.UTF-8";
      LC_IDENTIFICATION = "de_DE.UTF-8";
      LC_MEASUREMENT = "de_DE.UTF-8";
      LC_MESSAGES = "en_US.UTF-8";
      LC_MONETARY = "de_DE.UTF-8";
      LC_NAME = "de_DE.UTF-8";
      LC_NUMERIC = "de_DE.UTF-8";
      LC_PAPER = "de_DE.UTF-8";
      LC_TELEPHONE = "de_DE.UTF-8";
      LC_TIME = "de_DE.UTF-8";
    };
  };
  ####################

  security.rtkit.enable = true;
  security.sudo.wheelNeedsPassword = false;

  environment.sessionVariables = {
    EDITOR = "nvim";
  };

  environment.systemPackages = with pkgs; [
    neovim # editor
    veracrypt
    vim # fallback ed
  ];

  fileSystems."/etc/nixos" = {
    device = "/home/tristand/nix";
    fsType = "none";
    options = [ "bind" ];
  };

  programs = {
    nix-ld.dev.enable = true;
    command-not-found.enable = false;
    nix-index-database.comma.enable = true;

    fish.enable = true;
    gnupg.agent = {
      enable = true;
      enableSSHSupport = true;
    };
  };

  services = {
    fwupd.enable = true;

    envfs.enable = true;

    openssh = {
      enable = true;
      settings.PasswordAuthentication = false;
      settings.KbdInteractiveAuthentication = false;
    };

    gvfs.enable = true;
    avahi.enable = true;
    avahi.nssmdns = true;
  };

  networking.firewall.extraCommands = ''iptables -t raw -A OUTPUT -p udp -m udp --dport 137 -j CT --helper netbios-ns'';
}
Another reformatting & refactor - fix all statix lints - format with nixpkgs-fmt instead of alejandro 2023-10-17 14:12:26 +02:00			`{ config`
			`, pkgs`
			`, ...`
Refactor as prep for multiple hosts 2023-10-16 23:54:37 +02:00			`}: {`
			`nix = {`
			`gc = {`
			`automatic = true;`
			`dates = "weekly";`
			`options = "--delete-older-than 2w";`
			`};`
			`settings.auto-optimise-store = true;`
			`package = pkgs.nixFlakes;`
			`extraOptions = ''`
			`experimental-features = nix-command flakes`
			`'';`
			`};`

			`# locale`
			`time.timeZone = "Europe/Berlin";`

			`i18n = {`
			`defaultLocale = "en_US.UTF-8";`

			`extraLocaleSettings = {`
			`LANG = "en_US.UTF-8";`
			`LC_ADDRESS = "de_DE.UTF-8";`
			`LC_COLLATE = "de_DE.UTF-8";`
			`LC_CTYPE = "en_US.UTF-8";`
			`LC_IDENTIFICATION = "de_DE.UTF-8";`
			`LC_MEASUREMENT = "de_DE.UTF-8";`
			`LC_MESSAGES = "en_US.UTF-8";`
			`LC_MONETARY = "de_DE.UTF-8";`
			`LC_NAME = "de_DE.UTF-8";`
			`LC_NUMERIC = "de_DE.UTF-8";`
			`LC_PAPER = "de_DE.UTF-8";`
			`LC_TELEPHONE = "de_DE.UTF-8";`
			`LC_TIME = "de_DE.UTF-8";`
			`};`
			`};`
			`####################`

			`security.rtkit.enable = true;`
			`security.sudo.wheelNeedsPassword = false;`

			`environment.sessionVariables = {`
			`EDITOR = "nvim";`
			`};`

			`environment.systemPackages = with pkgs; [`
			`neovim # editor`
			`veracrypt`
			`vim # fallback ed`
			`];`

Add various small tweaks - utilized specialArgs - mount /home/tristand/nix at /etc/nixos - added work /etc/hosts - use ids instead of paths for disk mounting - and more 2023-11-04 00:02:01 +01:00			`fileSystems."/etc/nixos" = {`
			`device = "/home/tristand/nix";`
			`fsType = "none";`
			`options = [ "bind" ];`
			`};`

Another reformatting & refactor - fix all statix lints - format with nixpkgs-fmt instead of alejandro 2023-10-17 14:12:26 +02:00			`programs = {`
			`nix-ld.dev.enable = true;`
			`command-not-found.enable = false;`
			`nix-index-database.comma.enable = true;`
Refactor as prep for multiple hosts 2023-10-16 23:54:37 +02:00
Another reformatting & refactor - fix all statix lints - format with nixpkgs-fmt instead of alejandro 2023-10-17 14:12:26 +02:00			`fish.enable = true;`
			`gnupg.agent = {`
			`enable = true;`
			`enableSSHSupport = true;`
			`};`
Refactor as prep for multiple hosts 2023-10-16 23:54:37 +02:00			`};`

Another reformatting & refactor - fix all statix lints - format with nixpkgs-fmt instead of alejandro 2023-10-17 14:12:26 +02:00			`services = {`
			`fwupd.enable = true;`

			`envfs.enable = true;`
Refactor as prep for multiple hosts 2023-10-16 23:54:37 +02:00
Disable ssh password auth 2023-11-04 01:17:25 +01:00			`openssh = {`
			`enable = true;`
			`settings.PasswordAuthentication = false;`
			`settings.KbdInteractiveAuthentication = false;`
			`};`
Another reformatting & refactor - fix all statix lints - format with nixpkgs-fmt instead of alejandro 2023-10-17 14:12:26 +02:00
			`gvfs.enable = true;`
			`avahi.enable = true;`
			`avahi.nssmdns = true;`
			`};`
Refactor as prep for multiple hosts 2023-10-16 23:54:37 +02:00
			`networking.firewall.extraCommands = ''iptables -t raw -A OUTPUT -p udp -m udp --dport 137 -j CT --helper netbios-ns'';`
			`}`