1 { config, pkgs, lib, inputs, hostName, ... }:
2 let inherit (config.users) users; in
5 ../profiles/dnscrypt-proxy2.nix
6 ../profiles/security.nix
11 home-manager.users.sevy = {
12 imports = [ ../homes/sevy.nix ];
14 host.hardware = ["ThinkPad" "X200"];
16 systemd.services.home-manager-julm.postStart = ''
17 ${pkgs.nix}/bin/nix-env --delete-generations +1 --profile /nix/var/nix/profiles/per-user/sevy/home-manager
19 users.mutableUsers = false;
23 # Put the hashedPassword in /nix/store, but it will also be in /etc/passwd
24 # which is already world readable.
25 hashedPassword = lib.readFile ../private/world/sevy/hashedPassword;
28 config.services.davfs2.davGroup
42 auto-optimise-store = true
47 options = "--delete-older-than 7d";
50 "nixpkgs=/etc/nixpkgs"
51 "nixpkgs-overlays=/etc/nixpkgs-overlays/overlays.nix"
53 trustedUsers = [ users.sevy.name ];
55 "https://nix-localcache.sourcephile.fr"
56 #"ssh://nix-ssh@192.168.0.115" # FIXME: use wireguard
58 binaryCachePublicKeys = [
59 "losurdo.sourcephile.fr-1:XGeaIE2AA2mZskSZ5bIDrfx53q+TDDWJOUEpZDX7los="
60 "oignon.sourcephile.fr:slxL7XLsGXlD1r6gvw1imL5uQntW0TTlQgGQt3LBJgQ="
63 services.openssh.passwordAuthentication = false;
68 environment.etc."nixpkgs".source = pkgs.path;
69 environment.etc."nixpkgs-overlays".source = inputs.self + "/nixpkgs";
71 documentation.nixos.enable = true;
72 time.timeZone = "Europe/Paris";
73 i18n.defaultLocale = "fr_FR.UTF-8";
74 console.font = "Lat2-Terminus16";
75 console.keyMap = "fr";
79 domain = "localdomain";
86 #backend = "wpa_supplicant";
94 51413 # transmission-gtk
98 51413 # transmission-gtk
106 hardware.pulseaudio.enable = true;
107 hardware.sane.enable = true;
108 hardware.sane.extraBackends = [ pkgs.hplipWithPlugin ];
110 environment.variables = {
113 SYSTEMD_LESS = "FKMRX";
118 interactiveShellInit = ''
119 bind '"\e[A":history-search-backward'
120 bind '"\e[B":history-search-forward'
122 # Ignore duplicate commands, ignore commands starting with a space
123 export HISTCONTROL=erasedups:ignorespace
124 export HISTSIZE=42000
125 # Append to the history instead of overwriting (good for multiple connections)
129 mkcd () { mkdir -p "$1"; cd "$1"; }
132 then sudo tee /proc/acpi/ibm/fan <<<"level $1"
133 else grep '^\(level\|speed\):' /proc/acpi/ibm/fan
140 grep = "grep --color";
143 ls = "ls --color=tty";
144 mem = "ps -e -orss=,user=,args= | sort -b -k1,1n";
147 st="sudo systemctl status";
148 u="systemctl --user";
149 j="sudo journalctl -u";
150 jb="sudo journalctl -b";
152 nix-history="sudo nix-env --list-generations --profile /nix/var/nix/profiles/system";
154 sshfs = "sshfs -o ServerAliveInterval=15 -o reconnect -f";
164 openFirewall = false;
174 fileSystems."/home/sevy/mnt/ilico/severine" = {
175 device = "https://nuage.ilico.org/remote.php/dav/files/severine/";
178 let conf = pkgs.writeText "davfs2.conf" ''
179 backup_dir /home/sevy/Documents/EnTransfert/ilico/severine
180 cache_dir /home/sevy/.cache/davfs2/ilico/severine
182 [ "conf=${conf}" "user" "noexec" "nosuid" "noauto" ]; # "x-systemd.automount"
185 packages = [ pkgs.gnome3.dconf ];
190 services.journald = {
193 MaxRetentionSec=1month
198 services.physlock = {
201 # NOTE: xfconf-query -c xfce4-session -p /general/LockCommand -s "physlock" --create -t string
203 services.printing = {
212 # Allow members of the "adbusers" group to mount Android devices via MTP
213 pkgs.android-udev-rules
219 xkbOptions = "eurosign:e";
220 libinput.enable = true;
225 #pkgs.xfce.thunar-archive-plugin
228 xterm.enable = false;
231 defaultSession = "xfce";
234 user = users.sevy.name;
239 virtualisation.virtualbox.host.enable = true;
241 # This value determines the NixOS release with which your system is to be
242 # compatible, in order to avoid breaking some software such as database
243 # servers. You should change this only after NixOS release notes say you should.
244 system.stateVersion = "20.03"; # Did you read the comment?