-repl-flakes, fix:homeConfiguration module

video10
video9
2024-11-25 09:46:43 +01:00 · 2024-09-26 14:45:59 +02:00 · 2024-09-23 14:30:14 +02:00 · 2024-09-21 16:59:39 +02:00 · 2024-09-17 14:28:40 +02:00 · 2024-09-10 13:59:56 +02:00
37 changed files with 1241 additions and 64 deletions
--- a/flake.lock
+++ b/flake.lock
@ -1,6 +1,106 @@
 {
  "nodes": {
+    "agenix": {
+      "inputs": {
+        "darwin": "darwin",
+        "home-manager": "home-manager",
+        "nixpkgs": "nixpkgs",
+        "systems": "systems"
+      },
+      "locked": {
+        "lastModified": 1723293904,
+        "narHash": "sha256-b+uqzj+Wa6xgMS9aNbX4I+sXeb5biPDi39VgvSFqFvU=",
+        "owner": "ryantm",
+        "repo": "agenix",
+        "rev": "f6291c5935fdc4e0bef208cfc0dcab7e3f7a1c41",
+        "type": "github"
+      },
+      "original": {
+        "owner": "ryantm",
+        "repo": "agenix",
+        "type": "github"
+      }
+    },
+    "darwin": {
+      "inputs": {
+        "nixpkgs": [
+          "agenix",
+          "nixpkgs"
+        ]
+      },
+      "locked": {
+        "lastModified": 1700795494,
+        "narHash": "sha256-gzGLZSiOhf155FW7262kdHo2YDeugp3VuIFb4/GGng0=",
+        "owner": "lnl7",
+        "repo": "nix-darwin",
+        "rev": "4b9b83d5a92e8c1fbfd8eb27eda375908c11ec4d",
+        "type": "github"
+      },
+      "original": {
+        "owner": "lnl7",
+        "ref": "master",
+        "repo": "nix-darwin",
+        "type": "github"
+      }
+    },
+    "disko": {
+      "inputs": {
+        "nixpkgs": [
+          "nixpkgs"
+        ]
+      },
+      "locked": {
+        "lastModified": 1726524467,
+        "narHash": "sha256-xkPPPvfHhHK7BNX5ZrQ9N6AIEixCmFzRZHduDf0zv30=",
+        "owner": "nix-community",
+        "repo": "disko",
+        "rev": "22ee467a54a3ab7fa9d637ccad5330c6c087e9dc",
+        "type": "github"
+      },
+      "original": {
+        "owner": "nix-community",
+        "repo": "disko",
+        "type": "github"
+      }
+    },
+    "dotfiles": {
+      "flake": false,
+      "locked": {
+        "lastModified": 1725956275,
+        "narHash": "sha256-4tHKP+PLpJKnFfOT6MY3p/NDBr/3NDyWljB8/iELVZs=",
+        "ref": "refs/heads/master",
+        "rev": "b1393f4b54b8e908b770450ccc49400713d8e457",
+        "revCount": 1,
+        "type": "git",
+        "url": "https://code.m3tam3re.com/m3tam3re/dotfiles-flake-demo.git"
+      },
+      "original": {
+        "type": "git",
+        "url": "https://code.m3tam3re.com/m3tam3re/dotfiles-flake-demo.git"
+      }
+    },
    "home-manager": {
+      "inputs": {
+        "nixpkgs": [
+          "agenix",
+          "nixpkgs"
+        ]
+      },
+      "locked": {
+        "lastModified": 1703113217,
+        "narHash": "sha256-7ulcXOk63TIT2lVDSExj7XzFx09LpdSAPtvgtM7yQPE=",
+        "owner": "nix-community",
+        "repo": "home-manager",
+        "rev": "3bfaacf46133c037bb356193bd2f1765d9dc82c1",
+        "type": "github"
+      },
+      "original": {
+        "owner": "nix-community",
+        "repo": "home-manager",
+        "type": "github"
+      }
+    },
+    "home-manager_2": {
      "inputs": {
        "nixpkgs": [
          "nixpkgs"
@ -21,6 +121,38 @@
      }
    },
    "nixpkgs": {
+      "locked": {
+        "lastModified": 1703013332,
+        "narHash": "sha256-+tFNwMvlXLbJZXiMHqYq77z/RfmpfpiI3yjL6o/Zo9M=",
+        "owner": "NixOS",
+        "repo": "nixpkgs",
+        "rev": "54aac082a4d9bb5bbc5c4e899603abfb76a3f6d6",
+        "type": "github"
+      },
+      "original": {
+        "owner": "NixOS",
+        "ref": "nixos-unstable",
+        "repo": "nixpkgs",
+        "type": "github"
+      }
+    },
+    "nixpkgs-stable": {
+      "locked": {
+        "lastModified": 1724531977,
+        "narHash": "sha256-XROVLf9ti4rrNCFLr+DmXRZtPjCQTW4cYy59owTEmxk=",
+        "owner": "nixos",
+        "repo": "nixpkgs",
+        "rev": "2527da1ef492c495d5391f3bcf9c1dd9f4514e32",
+        "type": "github"
+      },
+      "original": {
+        "owner": "nixos",
+        "ref": "nixos-24.05",
+        "repo": "nixpkgs",
+        "type": "github"
+      }
+    },
+    "nixpkgs_2": {
      "locked": {
        "lastModified": 1711703276,
        "narHash": "sha256-iMUFArF0WCatKK6RzfUJknjem0H9m4KgorO/p3Dopkk=",
@ -36,28 +168,30 @@
        "type": "github"
      }
    },
-    "nixpkgs-stable": {
+    "root": {
+      "inputs": {
+        "agenix": "agenix",
+        "disko": "disko",
+        "dotfiles": "dotfiles",
+        "home-manager": "home-manager_2",
+        "nixpkgs": "nixpkgs_2",
+        "nixpkgs-stable": "nixpkgs-stable"
+      }
+    },
+    "systems": {
      "locked": {
-        "lastModified": 1711668574,
-        "narHash": "sha256-u1dfs0ASQIEr1icTVrsKwg2xToIpn7ZXxW3RHfHxshg=",
-        "owner": "nixos",
-        "repo": "nixpkgs",
-        "rev": "219951b495fc2eac67b1456824cc1ec1fd2ee659",
+        "lastModified": 1681028828,
+        "narHash": "sha256-Vy1rq5AaRuLzOxct8nz4T6wlgyUR7zLU309k9mBC768=",
+        "owner": "nix-systems",
+        "repo": "default",
+        "rev": "da67096a3b9bf56a91d16901293e51ba5b49a27e",
        "type": "github"
      },
      "original": {
-        "owner": "nixos",
-        "ref": "nixos-23.11",
-        "repo": "nixpkgs",
+        "owner": "nix-systems",
+        "repo": "default",
        "type": "github"
      }
-    },
-    "root": {
-      "inputs": {
-        "home-manager": "home-manager",
-        "nixpkgs": "nixpkgs",
-        "nixpkgs-stable": "nixpkgs-stable"
-      }
    }
  },
  "root": "root",
--- a/flake.nix
+++ b/flake.nix
@ -17,10 +17,25 @@
    };
    nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";
    nixpkgs-stable.url = "github:nixos/nixpkgs/nixos-24.05";
+
+    agenix.url = "github:ryantm/agenix";
+
+    disko = {
+      url = "github:nix-community/disko";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
+
+    dotfiles = {
+      url = "git+https://code.m3tam3re.com/m3tam3re/dotfiles-flake-demo.git";
+      flake = false;
+    };
  };

  outputs = {
    self,
+    agenix,
+    disko,
+    dotfiles,
    home-manager,
    nixpkgs,
    ...
@ -39,16 +54,20 @@
      forAllSystems (system: import ./pkgs nixpkgs.legacyPackages.${system});
    overlays = import ./overlays {inherit inputs;};
    nixosConfigurations = {
-      m3-kratos = nixpkgs.lib.nixosSystem {
+      m3-kratos-vm = nixpkgs.lib.nixosSystem {
        specialArgs = {inherit inputs outputs;};
-        modules = [./hosts/m3-kratos];
+        modules = [
+          ./hosts/m3-kratos
+          inputs.disko.nixosModules.disko
+          agenix.nixosModules.default
+        ];
      };
    };
    homeConfigurations = {
-      "m3tam3re@m3tam3re" = home-manager.lib.homeManagerConfiguration {
+      "m3tam3re@m3-kratos-vm" = home-manager.lib.homeManagerConfiguration {
        pkgs = nixpkgs.legacyPackages."x86_64-linux";
        extraSpecialArgs = {inherit inputs outputs;};
-        modules = [./home/m3tam3re/m3tam3re.nix];
+        modules = [./home/m3tam3re/m3-kratos.nix];
      };
    };
  };
--- a/home/common/default.nix
+++ b/home/common/default.nix
@ -1,4 +1,10 @@
-{ config, lib, outputs, pkgs, ... }: {
+{
+  config,
+  lib,
+  outputs,
+  pkgs,
+  ...
+}: {
  nixpkgs = {
    # You can add overlays here
    overlays = [
@ -29,7 +35,7 @@
  nix = {
    package = lib.mkDefault pkgs.nix;
    settings = {
-      experimental-features = [ "nix-command" "flakes" "repl-flake" ];
+      experimental-features = ["nix-command" "flakes"];
      warn-dirty = false;
    };
  };
--- a/home/features/cli/default.nix
+++ b/home/features/cli/default.nix
@ -0,0 +1,33 @@
+{pkgs, ...}: {
+  imports = [
+    ./fish.nix
+    ./fzf.nix
+    ./neofetch.nix
+  ];
+
+  programs.zoxide = {
+    enable = true;
+    enableFishIntegration = true;
+  };
+
+  programs.eza = {
+    enable = true;
+    enableFishIntegration = true;
+    enableBashIntegration = true;
+    extraOptions = ["-l" "--icons" "--git" "-a"];
+  };
+
+  programs.bat = {enable = true;};
+
+  home.packages = with pkgs; [
+    coreutils
+    fd
+    htop
+    httpie
+    jq
+    procs
+    ripgrep
+    tldr
+    zip
+  ];
+}
--- a/home/features/cli/fish.nix
+++ b/home/features/cli/fish.nix
@ -0,0 +1,33 @@
+{
+  config,
+  lib,
+  ...
+}:
+with lib; let
+  cfg = config.features.cli.fish;
+in {
+  options.features.cli.fish.enable = mkEnableOption "enable extended fish configuration";
+
+  config = mkIf cfg.enable {
+    programs.fish = {
+      enable = true;
+      loginShellInit = ''
+        set -x NIX_PATH nixpkgs=channel:nixos-unstable
+        set -x NIX_LOG info
+        set -x TERMINAL kitty
+        source /run/agenix/${config.home.username}-secrets
+
+        if test (tty) = "/dev/tty1"
+          exec Hyprland &> /dev/null
+        end
+      '';
+      shellAbbrs = {
+        ".." = "cd ..";
+        "..." = "cd ../..";
+        ls = "eza";
+        grep = "rg";
+        ps = "procs";
+      };
+    };
+  };
+}
--- a/home/features/cli/fzf.nix
+++ b/home/features/cli/fzf.nix
@ -0,0 +1,38 @@
+{
+  config,
+  lib,
+  ...
+}:
+with lib; let
+  cfg = config.features.cli.fzf;
+in {
+  options.features.cli.fzf.enable = mkEnableOption "enable fuzzy finder";
+
+  config = mkIf cfg.enable {
+    programs.fzf = {
+      enable = true;
+      enableFishIntegration = true;
+
+      colors = {
+        "fg" = "#f8f8f2";
+        "bg" = "#282a36";
+        "hl" = "#bd93f9";
+        "fg+" = "#f8f8f2";
+        "bg+" = "#44475a";
+        "hl+" = "#bd93f9";
+        "info" = "#ffb86c";
+        "prompt" = "#50fa7b";
+        "pointer" = "#ff79c6";
+        "marker" = "#ff79c6";
+        "spinner" = "#ffb86c";
+        "header" = "#6272a4";
+      };
+      defaultOptions = [
+        "--preview='bat --color=always -n {}'"
+        "--bind 'ctrl-/:toggle-preview'"
+      ];
+      defaultCommand = "fd --type f --exclude .git --follow --hidden";
+      changeDirWidgetCommand = "fd --type d --exclude .git --follow --hidden";
+    };
+  };
+}
--- a/home/features/cli/neofetch.nix
+++ b/home/features/cli/neofetch.nix
@ -0,0 +1,15 @@
+{
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+with lib; let
+  cfg = config.features.cli.neofetch;
+in {
+  options.features.cli.neofetch.enable = mkEnableOption "enable neofetch";
+
+  config = mkIf cfg.enable {
+    home.packages = with pkgs; [neofetch];
+  };
+}
--- a/home/features/desktop/default.nix
+++ b/home/features/desktop/default.nix
@ -0,0 +1,10 @@
+{pkgs, ...}: {
+  imports = [
+    ./fonts.nix
+    ./hyprland.nix
+    ./wayland.nix
+  ];
+
+  home.packages = with pkgs; [
+  ];
+}
--- a/home/features/desktop/fonts.nix
+++ b/home/features/desktop/fonts.nix
@ -0,0 +1,23 @@
+{
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+with lib; let
+  cfg = config.features.desktop.fonts;
+in {
+  options.features.desktop.fonts.enable =
+    mkEnableOption "install additional fonts for desktop apps";
+
+  config = mkIf cfg.enable {
+    home.packages = with pkgs; [
+      fira-code
+      fira-code-symbols
+      fira-code-nerdfont
+      font-manager
+      font-awesome_5
+      noto-fonts
+    ];
+  };
+}
--- a/home/features/desktop/hyprland.nix
+++ b/home/features/desktop/hyprland.nix
@ -0,0 +1,188 @@
+{
+  config,
+  lib,
+  ...
+}:
+with lib; let
+  cfg = config.features.desktop.hyprland;
+in {
+  options.features.desktop.hyprland.enable = mkEnableOption "hyprland config";
+
+  config = mkIf cfg.enable {
+    wayland.windowManager.hyprland = {
+      enable = true;
+      settings = {
+        xwayland = {
+          force_zero_scaling = true;
+        };
+
+        exec-once = [
+          "waybar"
+          "hyprpaper"
+          "hypridle"
+          "wl-paste -p -t text --watch clipman store -P --histpath=\"~/.local/share/clipman-primary.json\""
+        ];
+
+        env = [
+          "XCURSOR_SIZE,32"
+          "WLR_NO_HARDWARE_CURSORS,1"
+          "GTK_THEME,Dracula"
+        ];
+
+        input = {
+          kb_layout = "us";
+          kb_variant = "";
+          kb_model = "";
+          kb_rules = "";
+          kb_options = "ctrl:nocaps";
+          follow_mouse = 1;
+
+          touchpad = {
+            natural_scroll = true;
+          };
+
+          sensitivity = 0;
+        };
+
+        general = {
+          gaps_in = 5;
+          gaps_out = 5;
+          border_size = 1;
+          "col.active_border" = "rgba(9742b5ee) rgba(9742b5ee) 45deg";
+          "col.inactive_border" = "rgba(595959aa)";
+          layout = "dwindle";
+        };
+
+        decoration = {
+          "col.shadow" = "rgba(1E202966)";
+          drop_shadow = true;
+          shadow_range = 60;
+          shadow_offset = "1 2";
+          shadow_render_power = 3;
+          shadow_scale = 0.97;
+          rounding = 8;
+          blur = {
+            enabled = true;
+            size = 3;
+            passes = 3;
+          };
+          active_opacity = 0.9;
+          inactive_opacity = 0.5;
+        };
+
+        animations = {
+          enabled = true;
+          bezier = "myBezier, 0.05, 0.9, 0.1, 1.05";
+          animation = [
+            "windows, 1, 7, myBezier"
+            "windowsOut, 1, 7, default, popin 80%"
+            "border, 1, 10, default"
+            "borderangle, 1, 8, default"
+            "fade, 1, 7, default"
+            "workspaces, 1, 6, default"
+          ];
+        };
+
+        dwindle = {
+          pseudotile = true;
+          preserve_split = true;
+        };
+
+        master = {};
+
+        gestures = {
+          workspace_swipe = false;
+        };
+
+        windowrule = [
+          "float, file_progress"
+          "float, confirm"
+          "float, dialog"
+          "float, download"
+          "float, notification"
+          "float, error"
+          "float, splash"
+          "float, confirmreset"
+          "float, title:Open File"
+          "float, title:branchdialog"
+          "float, Lxappearance"
+          "float, Wofi"
+          "float, dunst"
+          "animation none,Wofi"
+          "float,viewnior"
+          "float,feh"
+          "float, pavucontrol-qt"
+          "float, pavucontrol"
+          "float, file-roller"
+          "fullscreen, wlogout"
+          "float, title:wlogout"
+          "fullscreen, title:wlogout"
+          "idleinhibit focus, mpv"
+          "idleinhibit fullscreen, firefox"
+          "float, title:^(Media viewer)$"
+          "float, title:^(Volume Control)$"
+          "float, title:^(Picture-in-Picture)$"
+          "size 800 600, title:^(Volume Control)$"
+          "move 75 44%, title:^(Volume Control)$"
+        ];
+
+        "$mainMod" = "SUPER";
+
+        bind = [
+          "$mainMod, return, exec, kitty -e zellij-ps"
+          "$mainMod, t, exec, kitty -e fish -c 'neofetch; exec fish'"
+          "$mainMod SHIFT, e, exec, kitty -e zellij_nvim"
+          "$mainMod, o, exec, thunar"
+          "$mainMod, Escape, exec, wlogout -p layer-shell"
+          "$mainMod, Space, togglefloating"
+          "$mainMod, q, killactive"
+          "$mainMod, M, exit"
+          "$mainMod, F, fullscreen"
+          "$mainMod, V, togglefloating"
+          "$mainMod, D, exec, wofi --show drun --allow-images"
+          "$mainMod SHIFT, S, exec, bemoji"
+          "$mainMod, P, exec, wofi-pass"
+          "$mainMod SHIFT, P, pseudo"
+          "$mainMod, J, togglesplit"
+          "$mainMod, left, movefocus, l"
+          "$mainMod, right, movefocus, r"
+          "$mainMod, up, movefocus, u"
+          "$mainMod, down, movefocus, d"
+          "$mainMod, 1, workspace, 1"
+          "$mainMod, 2, workspace, 2"
+          "$mainMod, 3, workspace, 3"
+          "$mainMod, 4, workspace, 4"
+          "$mainMod, 5, workspace, 5"
+          "$mainMod, 6, workspace, 6"
+          "$mainMod, 7, workspace, 7"
+          "$mainMod, 8, workspace, 8"
+          "$mainMod, 9, workspace, 9"
+          "$mainMod, 0, workspace, 10"
+          "$mainMod SHIFT, 1, movetoworkspace, 1"
+          "$mainMod SHIFT, 2, movetoworkspace, 2"
+          "$mainMod SHIFT, 3, movetoworkspace, 3"
+          "$mainMod SHIFT, 4, movetoworkspace, 4"
+          "$mainMod SHIFT, 5, movetoworkspace, 5"
+          "$mainMod SHIFT, 6, movetoworkspace, 6"
+          "$mainMod SHIFT, 7, movetoworkspace, 7"
+          "$mainMod SHIFT, 8, movetoworkspace, 8"
+          "$mainMod SHIFT, 9, movetoworkspace, 9"
+          "$mainMod SHIFT, 0, movetoworkspace, 10"
+          "$mainMod, mouse_down, workspace, e+1"
+          "$mainMod, mouse_up, workspace, e-1"
+        ];
+
+        bindm = [
+          "$mainMod, mouse:272, movewindow"
+          "$mainMod, mouse:273, resizewindow"
+        ];
+
+        windowrulev2 = [
+          "workspace 1,class:(Emacs)"
+          "workspace 3,opacity 1.0, class:(brave-browser)"
+          "workspace 4,class:(com.obsproject.Studio)"
+        ];
+      };
+    };
+  };
+}
--- a/home/features/desktop/wayland.nix
+++ b/home/features/desktop/wayland.nix
@ -0,0 +1,251 @@
+{
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+with lib; let
+  cfg = config.features.desktop.wayland;
+in {
+  options.features.desktop.wayland.enable = mkEnableOption "wayland extra tools and config";
+
+  config = mkIf cfg.enable {
+    programs.waybar = {
+      enable = true;
+      style = ''
+        @define-color background-darker rgba(30, 31, 41, 230);
+        @define-color background #282a36;
+        @define-color selection #44475a;
+        @define-color foreground #f8f8f2;
+        @define-color comment #6272a4;
+        @define-color cyan #8be9fd;
+        @define-color green #50fa7b;
+        @define-color orange #ffb86c;
+        @define-color pink #ff79c6;
+        @define-color purple #bd93f9;
+        @define-color red #ff5555;
+        @define-color yellow #f1fa8c;
+
+        * {
+            border: none;
+            border-radius: 0;
+            font-family: FiraCode Nerd Font;
+            font-weight: bold;
+            font-size: 14px;
+            min-height: 0;
+        }
+
+        window#waybar {
+            background: rgba(21, 18, 27, 0);
+            color: #cdd6f4;
+        }
+
+        tooltip {
+            background: #1e1e2e;
+            border-radius: 10px;
+            border-width: 2px;
+            border-style: solid;
+            border-color: #11111b;
+        }
+
+        #workspaces button {
+            padding: 5px;
+            color: #313244;
+            margin-right: 5px;
+        }
+
+        #workspaces button.active {
+            color: #11111b;
+            background: #a6e3a1;
+            border-radius: 10px;
+        }
+
+        #workspaces button.focused {
+            color: #a6adc8;
+            background: #eba0ac;
+            border-radius: 10px;
+        }
+
+        #workspaces button.urgent {
+            color: #11111b;
+            background: #a6e3a1;
+            border-radius: 10px;
+        }
+
+        #workspaces button:hover {
+            background: #11111b;
+            color: #cdd6f4;
+            border-radius: 10px;
+        }
+
+        #custom-language,
+        #custom-updates,
+        #custom-caffeine,
+        #custom-weather,
+        #window,
+        #clock,
+        #battery,
+        #pulseaudio,
+        #network,
+        #workspaces,
+        #tray,
+        #backlight {
+            background: #1e1e2e;
+            padding: 0px 10px;
+            margin: 3px 0px;
+            margin-top: 10px;
+            border: 1px solid #181825;
+        }
+
+        #tray {
+            border-radius: 10px;
+            margin-right: 10px;
+        }
+
+        #workspaces {
+            background: #1e1e2e;
+            border-radius: 10px;
+            margin-left: 10px;
+            padding-right: 0px;
+            padding-left: 5px;
+        }
+
+        #custom-caffeine {
+            color: #89dceb;
+            border-radius: 10px 0px 0px 10px;
+            border-right: 0px;
+            margin-left: 10px;
+        }
+
+        #custom-language {
+            color: #f38ba8;
+            border-left: 0px;
+            border-right: 0px;
+        }
+
+        #custom-updates {
+            color: #f5c2e7;
+            border-left: 0px;
+            border-right: 0px;
+        }
+
+        #window {
+            border-radius: 10px;
+            margin-left: 60px;
+            margin-right: 60px;
+        }
+
+        #clock {
+            color: #fab387;
+            border-radius: 10px 0px 0px 10px;
+            margin-left: 0px;
+            border-right: 0px;
+        }
+
+        #network {
+            color: #f9e2af;
+            border-left: 0px;
+            border-right: 0px;
+        }
+
+        #pulseaudio {
+            color: #89b4fa;
+            border-left: 0px;
+            border-right: 0px;
+        }
+
+        #pulseaudio.microphone {
+            color: #cba6f7;
+            border-left: 0px;
+            border-right: 0px;
+        }
+
+        #battery {
+            color: #a6e3a1;
+            border-radius: 0 10px 10px 0;
+            margin-right: 10px;
+            border-left: 0px;
+        }
+
+        #custom-weather {
+            border-radius: 0px 10px 10px 0px;
+            border-right: 0px;
+            margin-left: 0px;
+        }
+      '';
+      settings = {
+        mainbar = {
+          layer = "top";
+          position = "top";
+          mod = "dock";
+          exclusive = true;
+          passthrough = false;
+          gtk-layer-shell = true;
+          height = 0;
+          modules-left = ["clock" "custom/weather" "hyprland/workspaces"];
+          modules-center = ["hyprland/window"];
+          modules-right = [
+            "tray"
+          ];
+
+          "hyprland/window" = {
+            format = "👉 {}";
+            seperate-outputs = true;
+          };
+          "hyprland/workspaces" = {
+            disable-scroll = true;
+            all-outputs = true;
+            on-click = "activate";
+            format = " {name} {icon} ";
+            on-scroll-up = "hyprctl dispatch workspace e+1";
+            on-scroll-down = "hyprctl dispatch workspace e-1";
+            format-icons = {
+              "1" = "";
+              "2" = "";
+              "3" = "";
+              "4" = "";
+              "5" = "";
+              "6" = "";
+              "7" = "";
+            };
+            persistent_workspaces = {
+              "1" = [];
+              "2" = [];
+              "3" = [];
+              "4" = [];
+            };
+          };
+          "custom/weather" = {
+            format = "{}°C";
+            tooltip = true;
+            interval = 3600;
+            exec = "wttrbar --location Pockau-Lengefeld";
+            return-type = "json";
+          };
+          tray = {
+            icon-size = 13;
+            spacing = 10;
+          };
+          clock = {
+            format = " {:%R   %d/%m}";
+            tooltip-format = "<big>{:%Y %B}</big>\n<tt><small>{calendar}</small></tt>";
+          };
+        };
+      };
+    };
+
+    home.packages = with pkgs; [
+      grim
+      hyprlock
+      qt6.qtwayland
+      slurp
+      waypipe
+      wf-recorder
+      wl-mirror
+      wl-clipboard
+      wlogout
+      wtype
+      ydotool
+    ];
+  };
+}
--- a/home/m3tam3re/dotfiles/bat.nix
+++ b/home/m3tam3re/dotfiles/bat.nix
@ -0,0 +1,8 @@
+{
+  home.file.".config/bat/config".text = ''
+    --theme="Dracula"
+
+    # Show line numbers, Git modifications and file header (but no grid)
+    --style="numbers,changes,header"
+  '';
+}
--- a/home/m3tam3re/dotfiles/default.nix
+++ b/home/m3tam3re/dotfiles/default.nix
@ -0,0 +1,10 @@
+{inputs, ...}: {
+  imports = [
+    ./bat.nix
+  ];
+
+  home.file.".config/nvim" = {
+    source = "${inputs.dotfiles}/nvim";
+    recursive = true;
+  };
+}
--- a/home/m3tam3re/home.nix
+++ b/home/m3tam3re/home.nix
@ -1,10 +1,12 @@
 # This is a default home.nix generated by the follwing hone-manager command
-# 
+#
 # home-manager init ./
-
-{ config, lib, pkgs, ... }:
-
 {
+  config,
+  lib,
+  pkgs,
+  ...
+}: {
  # Home Manager needs a bit of information about you and the paths it should
  # manage.
  home.username = lib.mkDefault "your-name";
@ -21,7 +23,9 @@

  # The home.packages option allows you to install Nix packages into your
  # environment.
-  home.packages = [
+  home.packages = with pkgs; [
+    kitty
+    wofi
    # # Adds the 'hello' command to your environment. It prints a friendly
    # # "Hello, world!" when run.
    # pkgs.hello
--- a/home/m3tam3re/m3-kratos.nix
+++ b/home/m3tam3re/m3-kratos.nix
@ -1 +1,50 @@
-{ config, ... }: { imports = [ ./home.nix ../common ]; }
+{
+  imports = [
+    ../common
+    ./dotfiles
+    ../features/cli
+    ../features/desktop
+    ./home.nix
+  ];
+
+  features = {
+    cli = {
+      fish.enable = true;
+      fzf.enable = true;
+      neofetch.enable = true;
+    };
+    desktop = {
+      fonts.enable = true;
+      hyprland.enable = true;
+      wayland.enable = true;
+    };
+  };
+
+  wayland.windowManager.hyprland = {
+    settings = {
+      device = [
+        {
+          name = "keyboard";
+          kb_layout = "us";
+        }
+        {
+          name = "mouse";
+          sensitivity = -0.5;
+        }
+      ];
+      monitor = [
+        "DP-1,2560x1440@144,0x0,1"
+        "DP-2,2560x1440@144,2560x0,1"
+      ];
+      workspace = [
+        "1, monitor:DP-1, default:true"
+        "2, monitor:DP-1"
+        "3, monitor:DP-1"
+        "4, monitor:DP-2"
+        "5, monitor:DP-1"
+        "6, monitor:DP-2"
+        "7, monitor:DP-2"
+      ];
+    };
+  };
+}
--- a/hosts/common/default.nix
+++ b/hosts/common/default.nix
@ -1,10 +1,20 @@
 # Common configuration for all hosts
 {
+  pkgs,
  lib,
  inputs,
  outputs,
  ...
 }: {
+  imports = [
+    ./extraServices
+    ./users
+    inputs.home-manager.nixosModules.home-manager
+  ];
+  home-manager = {
+    useUserPackages = true;
+    extraSpecialArgs = {inherit inputs outputs;};
+  };
  nixpkgs = {
    # You can add overlays here
    overlays = [
@ -30,7 +40,9 @@
    };
  };

-  nix = {
+  nix = let
+    flakeInputs = lib.filterAttrs (_: lib.isType "flake") inputs;
+  in {
    settings = {
      experimental-features = "nix-command flakes";
      trusted-users = [
@ -43,9 +55,8 @@
      options = "--delete-older-than 30d";
    };
    optimise.automatic = true;
-    registry =
-      (lib.mapAttrs (_: flake: {inherit flake;}))
-      ((lib.filterAttrs (_: lib.isType "flake")) inputs);
-    nixPath = ["/etc/nix/path"];
+    registry = lib.mapAttrs (_: flake: {inherit flake;}) flakeInputs;
+    nixPath = ["/etc/nix/path"] ++ lib.mapAttrsToList (flakeName: _: "${flakeName}=flake:${flakeName}") flakeInputs;
  };
+  users.defaultUserShell = pkgs.fish;
 }
--- a/hosts/common/extraServices/default.nix
+++ b/hosts/common/extraServices/default.nix
@ -0,0 +1,5 @@
+{
+  imports = [
+    ./podman.nix
+  ];
+}
--- a/hosts/common/extraServices/extraServices/default.nix
+++ b/hosts/common/extraServices/extraServices/default.nix
@ -0,0 +1,5 @@
+{
+  imports = [
+    ./podman.nix
+  ];
+}
--- a/hosts/common/extraServices/extraServices/extraServices/extraServices/podman.nix
+++ b/hosts/common/extraServices/extraServices/extraServices/extraServices/podman.nix
@ -0,0 +1,32 @@
+{
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+with lib; let
+  cfg = config.extraServices.podman;
+in {
+  options.extraServices.podman.enable = mkEnableOption "enable podman";
+
+  config = mkIf cfg.enable {
+    virtualisation = {
+      podman = {
+        enable = true;
+        dockerCompat = true;
+        autoPrune = {
+          enable = true;
+          dates = "weekly";
+          flags = [
+            "--filter=until=24h"
+            "--filter=label!=important"
+          ];
+        };
+        defaultNetwork.settings.dns_enabled = true;
+      };
+    };
+    environment.systemPackages = with pkgs; [
+      podman-compose
+    ];
+  };
+}
--- a/hosts/common/extraServices/extraServices/extraServices/podman.nix
+++ b/hosts/common/extraServices/extraServices/extraServices/podman.nix
@ -0,0 +1,32 @@
+{
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+with lib; let
+  cfg = config.extraServices.podman;
+in {
+  options.extraServices.podman.enable = mkEnableOption "enable podman";
+
+  config = mkIf cfg.enable {
+    virtualisation = {
+      podman = {
+        enable = true;
+        dockerCompat = true;
+        autoPrune = {
+          enable = true;
+          dates = "weekly";
+          flags = [
+            "--filter=until=24h"
+            "--filter=label!=important"
+          ];
+        };
+        defaultNetwork.settings.dns_enabled = true;
+      };
+    };
+    environment.systemPackages = with pkgs; [
+      podman-compose
+    ];
+  };
+}
--- a/hosts/common/extraServices/extraServices/podman.nix
+++ b/hosts/common/extraServices/extraServices/podman.nix
@ -0,0 +1,32 @@
+{
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+with lib; let
+  cfg = config.extraServices.podman;
+in {
+  options.extraServices.podman.enable = mkEnableOption "enable podman";
+
+  config = mkIf cfg.enable {
+    virtualisation = {
+      podman = {
+        enable = true;
+        dockerCompat = true;
+        autoPrune = {
+          enable = true;
+          dates = "weekly";
+          flags = [
+            "--filter=until=24h"
+            "--filter=label!=important"
+          ];
+        };
+        defaultNetwork.settings.dns_enabled = true;
+      };
+    };
+    environment.systemPackages = with pkgs; [
+      podman-compose
+    ];
+  };
+}
--- a/hosts/common/extraServices/podman.nix
+++ b/hosts/common/extraServices/podman.nix
@ -0,0 +1,32 @@
+{
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+with lib; let
+  cfg = config.extraServices.podman;
+in {
+  options.extraServices.podman.enable = mkEnableOption "enable podman";
+
+  config = mkIf cfg.enable {
+    virtualisation = {
+      podman = {
+        enable = true;
+        dockerCompat = true;
+        autoPrune = {
+          enable = true;
+          dates = "weekly";
+          flags = [
+            "--filter=until=24h"
+            "--filter=label!=important"
+          ];
+        };
+        defaultNetwork.settings.dns_enabled = true;
+      };
+    };
+    environment.systemPackages = with pkgs; [
+      podman-compose
+    ];
+  };
+}
--- a/hosts/common/users/default.nix
+++ b/hosts/common/users/default.nix
@ -0,0 +1,3 @@
+{
+  imports = [./m3tam3re.nix];
+}
--- a/hosts/common/users/m3tam3re.nix
+++ b/hosts/common/users/m3tam3re.nix
@ -0,0 +1,30 @@
+{
+  config,
+  pkgs,
+  inputs,
+  ...
+}: {
+  users.users.m3tam3re = {
+    initialHashedPassword = "$y$j9T$IoChbWGYRh.rKfmm0G86X0$bYgsWqDRkvX.EBzJTX.Z0RsTlwspADpvEF3QErNyCMC";
+    isNormalUser = true;
+    description = "m3tam3re";
+    extraGroups = [
+      "wheel"
+      "networkmanager"
+      "libvirtd"
+      "flatpak"
+      "audio"
+      "video"
+      "plugdev"
+      "input"
+      "kvm"
+      "qemu-libvirtd"
+    ];
+    openssh.authorizedKeys.keys = [
+      "ssh-rsa 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 m3tam3re@m3-nix"
+    ];
+    packages = [inputs.home-manager.packages.${pkgs.system}.default];
+  };
+  home-manager.users.m3tam3re =
+    import ../../../home/m3tam3re/${config.networking.hostName}.nix;
+}
--- a/hosts/m3-kratos/configuration.nix
+++ b/hosts/m3-kratos/configuration.nix
@ -4,13 +4,13 @@
 {pkgs, ...}: {
  imports = [
    # Include the results of the hardware scan.
+    ./disko-config.nix
    ./hardware-configuration.nix
  ];

  # Bootloader.
-  boot.loader.grub.enable = true;
-  boot.loader.grub.device = "/dev/vda";
-  boot.loader.grub.useOSProber = true;
+  boot.loader.systemd-boot.enable = true;
+  boot.loader.efi.canTouchEfiVariables = true;

  networking.hostName = "m3-kratos"; # Define your hostname.
  # networking.wireless.enable = true; # Enables wireless support via wpa_supplicant.
@ -21,7 +21,7 @@

  # Enable networking
  networking.networkmanager.enable = true;
-
+  networking.networkmanager.unmanaged = ["interface-name:ve-*"];
  # Set your time zone.
  time.timeZone = "Europe/Berlin";

@ -46,14 +46,6 @@
    variant = "";
  };

-  # Define a user account. Don't forget to set a password with ‘passwd’.
-  users.users.m3tam3re = {
-    isNormalUser = true;
-    description = "m3tam3re";
-    extraGroups = ["networkmanager" "wheel"];
-    packages = with pkgs; [];
-  };
-
  # Allow unfree packages
  nixpkgs.config.allowUnfree = true;

@ -87,12 +79,17 @@
    enable = true;
    xwayland.enable = true;
  };
+
+  programs.fish.enable = true;
+
  # Open ports in the firewall.
  # networking.firewall.allowedTCPPorts = [ ... ];
  # networking.firewall.allowedUDPPorts = [ ... ];
  # Or disable the firewall altogether.
+  networking.nat.enable = true;
+  networking.nat.internalInterfaces = ["ve-+"];
+  networking.nat.externalInterface = "enp1s0";
  # networking.firewall.enable = false;
-
  # This value determines the NixOS release from which the default
  # settings for stateful data, like file locations and database versions
  # on your system were taken. It‘s perfectly fine and recommended to leave
--- a/hosts/m3-kratos/default.nix
+++ b/hosts/m3-kratos/default.nix
@ -33,5 +33,12 @@
 #:w
 # networking.hostName = "nixos"; # Define your hostname.
 {
-  imports = [../common ./configuration.nix];
+  imports = [
+    ../common
+    ./configuration.nix
+    ./secrets.nix
+    ./services
+  ];
+
+  extraServices.podman.enable = true;
 }
--- a/hosts/m3-kratos/disko-config.nix
+++ b/hosts/m3-kratos/disko-config.nix
@ -0,0 +1,36 @@
+{
+  disko.devices = {
+    disk = {
+      nixos = {
+        type = "disk";
+        device = "/dev/vda";
+        content = {
+          type = "gpt";
+          partitions = {
+            boot = {
+              size = "1M";
+              type = "EF02"; # for grub MBR
+            };
+            ESP = {
+              size = "512M";
+              type = "EF00";
+              content = {
+                type = "filesystem";
+                format = "vfat";
+                mountpoint = "/boot";
+              };
+            };
+            root = {
+              size = "100%";
+              content = {
+                type = "filesystem";
+                format = "ext4";
+                mountpoint = "/";
+              };
+            };
+          };
+        };
+      };
+    };
+  };
+}
--- a/hosts/m3-kratos/hardware-configuration.nix
+++ b/hosts/m3-kratos/hardware-configuration.nix
@ -1,24 +1,21 @@
 # Do not modify this file!  It was generated by ‘nixos-generate-config’
 # and may be overwritten by future invocations.  Please make changes
 # to /etc/nixos/configuration.nix instead.
-{ config, lib, pkgs, modulesPath, ... }:
-
 {
-  imports =
-    [ (modulesPath + "/profiles/qemu-guest.nix")
-    ];
+  config,
+  lib,
+  pkgs,
+  modulesPath,
+  ...
+}: {
+  imports = [
+    (modulesPath + "/profiles/qemu-guest.nix")
+  ];

-  boot.initrd.availableKernelModules = [ "ahci" "xhci_pci" "virtio_pci" "sr_mod" "virtio_blk" ];
-  boot.initrd.kernelModules = [ ];
-  boot.kernelModules = [ "kvm-intel" ];
-  boot.extraModulePackages = [ ];
-
-  fileSystems."/" =
-    { device = "/dev/disk/by-uuid/b3fbba01-1206-44d9-9b15-72e6313b4f72";
-      fsType = "ext4";
-    };
-
-  swapDevices = [ ];
+  boot.initrd.availableKernelModules = ["ahci" "xhci_pci" "virtio_pci" "sr_mod" "virtio_blk"];
+  boot.initrd.kernelModules = [];
+  boot.kernelModules = ["kvm-intel"];
+  boot.extraModulePackages = [];

  # Enables DHCP on each ethernet and wireless interface. In case of scripted networking
  # (the default) this is the recommended approach. When using systemd-networkd it's
@ -29,4 +26,3 @@

  nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
 }
-
--- a/hosts/m3-kratos/secrets.nix
+++ b/hosts/m3-kratos/secrets.nix
@ -0,0 +1,13 @@
+{
+  age = {
+    secrets = {
+      secret1 = {
+        file = ../../secrets/secret1.age;
+      };
+      m3tam3re-secrets = {
+        file = ../../secrets/m3tam3re-secrets.age;
+        owner = "m3tam3re";
+      };
+    };
+  };
+}
--- a/hosts/m3-kratos/services/containers/default.nix
+++ b/hosts/m3-kratos/services/containers/default.nix
@ -0,0 +1,7 @@
+{
+  imports = [
+    ./echo.nix
+    ./httpd.nix
+    ./nginx.nix
+  ];
+}
--- a/hosts/m3-kratos/services/containers/echo.nix
+++ b/hosts/m3-kratos/services/containers/echo.nix
@ -0,0 +1,12 @@
+{lib, ...}: {
+  virtualisation.oci-containers.containers."echo-http-service" = {
+    image = "hashicorp/http-echo";
+    extraOptions = ["-text='Hello, World!'" "--network=web"];
+    ports = ["5678:5678"];
+  };
+  system.activationScripts.createPodmanNetworkWeb = lib.mkAfter ''
+    if ! /run/current-system/sw/bin/podman network exists web; then
+      /run/current-system/sw/bin/podman network create web
+    fi
+  '';
+}
--- a/hosts/m3-kratos/services/containers/httpd.nix
+++ b/hosts/m3-kratos/services/containers/httpd.nix
@ -0,0 +1,56 @@
+{
+  containers.httpd = {
+    autoStart = true;
+    ephemeral = true;
+    privateNetwork = true;
+    hostAddress = "192.168.100.10";
+    localAddress = "192.168.100.11";
+    forwardPorts = [
+      {
+        containerPort = 80;
+        hostPort = 80;
+      }
+    ];
+    config = {...}: {
+      services.httpd = {
+        enable = true;
+        adminAddr = "foo@example.org";
+      };
+      networking.firewall.allowedTCPPorts = [80];
+      system.stateVersion = "24.05";
+    };
+    bindMounts = {
+      "/root/data" = {
+        hostPath = "/home/m3tam3re/data/";
+        isReadOnly = false;
+      };
+    };
+  };
+  containers.httpd2 = {
+    autoStart = true;
+    ephemeral = true;
+    privateNetwork = true;
+    hostAddress = "192.168.100.10";
+    localAddress = "192.168.100.12";
+    forwardPorts = [
+      {
+        containerPort = 80;
+        hostPort = 8080;
+      }
+    ];
+    config = {...}: {
+      services.httpd = {
+        enable = true;
+        adminAddr = "foo@example.org";
+      };
+      networking.firewall.allowedTCPPorts = [80];
+      system.stateVersion = "24.05";
+    };
+    bindMounts = {
+      "/root/data" = {
+        hostPath = "/home/m3tam3re/data/";
+        isReadOnly = false;
+      };
+    };
+  };
+}
--- a/hosts/m3-kratos/services/containers/nginx.nix
+++ b/hosts/m3-kratos/services/containers/nginx.nix
@ -0,0 +1,8 @@
+{config, ...}: {
+  virtualisation.oci-containers.containers."nginx" = {
+    image = "docker.io/nginx:alpine";
+    environmentFiles = [
+      config.age.secrets.secret1.path
+    ];
+  };
+}
--- a/hosts/m3-kratos/services/default.nix
+++ b/hosts/m3-kratos/services/default.nix
@ -0,0 +1,5 @@
+{
+  imports = [
+    ./containers
+  ];
+}
--- a/secrets/m3tam3re-secrets.age
+++ b/secrets/m3tam3re-secrets.age
@ -0,0 +1,15 @@
+age-encryption.org/v1
+-> ssh-ed25519 l/KTwg +8dkEwTxSxpSykhcm+qqMU5c9FxuL0VURTO+Et3Hqjg
+IPzfKtktyMQdv5SceryhZrYhCeB/TVLgXAlu78ihMTw
+-> ssh-rsa DQlE7w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+--- T7qcXQKB/ktQb5Epx0/k+EDOdpbJV1x7VaZKEGEfaOE
+¶»qñQ¥?NƒË¯:a1)§\<5C>Ë&¹EzïŸŽl[Ê'¯Ö`%¯QQÞÁ9Ö/{Ûßà&<w›®ÅåÙÄ–°s
--- a/secrets/secret1.age
+++ b/secrets/secret1.age
@ -0,0 +1,15 @@
+age-encryption.org/v1
+-> ssh-ed25519 l/KTwg rtb9YLrncvwCrLgxUrpsyWQKh5EpORg+M3V2jWFEI0Q
+QaPHNxR+5GcIKt9+0EbP/9UbZPe1ET6OS+NOByeZ90
+-> ssh-rsa DQlE7w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+--- Q6mzi+/lp1nHSpHoVZqH4RXzNh0Jei8FRhBgU4IjHCQ
+º£µéaŒè²Ck		®ýlÃ !¡\Hˆ>Üƒ¥HJ{C:ŒD¦Ñ£&¦îøˆÅ²PEŠ¬ŠW
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@ -0,0 +1,7 @@
+let
+  m3-kratos-vm = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIE+8dfimMlWKZOlpjEGI6/2hVFDhytJVTi/P92Jf9mTz";
+  m3tam3re = "ssh-rsa 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";
+in {
+  "secret1.age".publicKeys = [m3-kratos-vm m3tam3re];
+  "m3tam3re-secrets.age".publicKeys = [m3-kratos-vm m3tam3re];
+}
Author	SHA1	Message	Date
m3tam3re	b3caada528	-repl-flakes, fix:homeConfiguration module	2024-11-25 09:46:43 +01:00
m3tam3re	e7ec54ef4f	video10	2024-09-26 14:45:59 +02:00
m3tam3re	78a720e1a3	video9	2024-09-23 14:30:14 +02:00
m3tam3re	b2c3dba781	video8	2024-09-21 16:59:39 +02:00
m3tam3re	6a0334cd38	+disko	2024-09-17 14:28:40 +02:00
m3tam3re	aa7dcee696	video6	2024-09-10 13:59:56 +02:00
m3tam3re	1808004efe	video5	2024-09-10 12:31:27 +02:00
m3tam3re	8f009006f9	video4	2024-09-05 14:34:40 +02:00
m3tam3re	1f6e2b3a64	video3	2024-09-03 18:01:56 +02:00
m3tam3re	d20945d5f3	host-rename	2024-09-03 16:07:03 +02:00
m3tam3re	6a18670749	video2	2024-08-28 16:16:23 +02:00