dot.nix/nix/default.nix

{
  admin,
  config,
  hostName,
  modulesPath,
  pkgs,
  ...
}:

let

  # admin = "toph";
  password = "[REDACTED]";
  timeZone = "America/New_York";
  defaultLocale = "en_US.UTF-8";

in
{
  ## TIMEZONE & LOCALE ##
  time.timeZone = timeZone;
  i18n.defaultLocale = defaultLocale;
  i18n.extraLocaleSettings = {
    LC_ADDRESS = defaultLocale;
    LC_IDENTIFICATION = defaultLocale;
    LC_MEASUREMENT = defaultLocale;
    LC_MONETARY = defaultLocale;
    LC_NAME = defaultLocale;
    LC_NUMERIC = defaultLocale;
    LC_PAPER = defaultLocale;
    LC_TELEPHONE = defaultLocale;
    LC_TIME = defaultLocale;
  };

  ## USERS ##
  users.mutableUsers = false;
  users.groups = {
    ryot = {
      gid = 1004;
      members = [ "${admin}" ];
    };
  };
  users.users."${admin}" = {
    isNormalUser = true;
    createHome = true;
    description = "Admin";
    homeMode = "750";
    home = "/home/${admin}";
    password = password;
    uid = 1000;
    extraGroups = [
      "networkmanager"
      "wheel"
      "i2c"
    ];
    shell = pkgs.fish;
    openssh.authorizedKeys.keys = [
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIClZstYoT64zHnGfE7LMYNiQPN5/gmCt382lC+Ji8lrH PVE"
    ];
  };

  # INFO: Enable passwordless sudo.
  security.sudo.extraRules = [
    {
      users = [ admin ];
      commands = [
        {
          command = "ALL";
          options = [ "NOPASSWD" ];
        }
      ];
    }
  ];

  ## PROGRAMS & SERVICES ##
  # Shells
  environment.shells = with pkgs; [
    bash
    fish
  ];
  programs.fish.enable = true;

  ## NETWORKING ##
  networking = {
    dhcpcd.enable = false;
    hostName = hostName;
    networkmanager.enable = true;
    useDHCP = true;
    useHostResolvConf = false;
    usePredictableInterfaceNames = true;
  };

  ## NIXOS ##
  systemd.tmpfiles.rules = [
    "d /home/${admin}/git 0750 ${admin} users -"
  ];

  # Allow unfree packages
  nixpkgs.config.allowUnfree = true;

  # forces interfaces to be named predictably
  # This value determines the NixOS release with which your system is to be
  system.stateVersion = "24.11";
  # Enable Flakes
  nix.settings.experimental-features = [
    "nix-command"
    "flakes"
  ];
}