toph/dot.nix
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
dot.nix/installer/minimal-configuration.nix

83 lines
2 KiB
Nix
Raw Blame History

{
inputs,
config,
lib,
pkgs,
...
}:
{
imports = lib.flatten [
(map lib.custom.relativeToRoot [
"modules/common/host-spec.nix"
"hosts/common/core/ssh.nix"
"hosts/users/minimal"
])
];
# NOTE: Change when installing, hacky but whatever
hostSpec = {
isMinimal = lib.mkForce true;
hostName = "installer";
username = "toph";
password = "[REDACTED]";
isARM = false;
};
# fileSystems."/boot".options = [ "umask=0077" ]; # Removes permissions and security warnings.
boot.loader.efi.canTouchEfiVariables = true;
# boot.loader.systemd-boot = {
# enable = true;
# # we use Git for version control, so we don't need to keep too many generations.
# configurationLimit = lib.mkDefault 3;
# # pick the highest resolution for systemd-boot's console.
# consoleMode = lib.mkDefault "max";
# };
boot.initrd = {
systemd.enable = true;
systemd.emergencyAccess = true; # Don't need to enter password in emergency mode
};
boot.kernelParams = [
"systemd.setenv=SYSTEMD_SULOGIN_FORCE=1"
"systemd.show_status=true"
"systemd.log_level=debug"
"systemd.log_target=console"
"systemd.journald.forward_to_console=1"
];
environment.systemPackages = builtins.attrValues {
inherit (pkgs)
wget
curl
git
;
};
networking = {
networkmanager.enable = true;
};
services = {
qemuGuest.enable = true;
openssh = {
enable = true;
ports = [ 22 ];
settings.PermitRootLogin = lib.mkForce "yes";
};
};
nix = {
#FIXME(installer): registry and nixPath shouldn't be required here because flakes but removal results in warning spam on build
registry = lib.mapAttrs (_: value: { flake = value; }) inputs;
nixPath = lib.mapAttrsToList (key: value: "${key}=${value.to.path}") config.nix.registry;
settings = {
experimental-features = [
"nix-command"
"flakes"
];
warn-dirty = false;
};
};
system.stateVersion = "24.11";
}
Reference in a new issue View git blame Copy permalink