os/system/cherry/core.nix

59 lines
1.2 KiB
Nix
Raw Permalink Normal View History

2023-06-17 23:46:16 +02:00
{ pkgs, ... }: {
boot.loader = {
grub.enable = false;
generic-extlinux-compatible.enable = true;
};
networking = {
hostName = "cherry";
interfaces.eth0.useDHCP = true;
};
2023-06-19 17:48:38 +02:00
services.openssh = {
enable = true;
settings.PasswordAuthentication = false;
};
2023-06-17 23:46:16 +02:00
nix = {
# TODO: Set up strawberry as a substituter
# TODO: Set up nixbuild.net
# TODO: Figure out how to make it safe to use other machines as remote
# builders.
distributedBuilds = false;
buildMachines = [];
};
documentation.enable = false;
fileSystems."/" = {
device = "/dev/disk/by-label/NIXOS_SD";
fsType = "ext4";
};
2023-06-17 23:52:17 +02:00
system.stateVersion = "21.11";
2023-06-17 23:46:16 +02:00
boot.kernelPackages = pkgs.linuxPackages_latest;
# User for running the website service
users.users."website" = {
isSystemUser = true;
2023-06-17 23:52:17 +02:00
group = "website";
2023-06-17 23:46:16 +02:00
};
2023-06-17 23:52:17 +02:00
users.groups."website" = {};
2023-06-17 23:46:16 +02:00
environment.systemPackages = with pkgs; [
vim
git
] ++ (import ../../shared/env.nix pkgs);
users.users."root" = {
# Allow access to this server from all the machines
openssh.authorizedKeys.keyFiles = [
2023-06-19 17:51:55 +02:00
../dev-lt-63/keys/riley.pub
../strawberry/keys/riley.pub
../lime/keys/riley.pub
2023-06-17 23:46:16 +02:00
];
};
}