nix-dotfiles/systems/configuration.nix

{
  lib,
  pkgs,
  config,
  ...
}:
{
  security.auditd.enable = true;
  nixpkgs.config.allowUnfree = true;
  i18n = {
    defaultLocale = "en_US.utf8";
    supportedLocales = [ "en_US.UTF-8/UTF-8" ];
  };

  boot = {
    default = true;
    kernel.sysctl = {
      "net.ipv6.conf.ens3.accept_ra" = 1;
    };
  };

  home-manager = {
    useGlobalPkgs = true;
    useUserPackages = true;
  };

  users = {
    defaultUserShell = pkgs.zsh;
    mutableUsers = false;
  };

  networking = {
    firewall = {
      enable = lib.mkDefault true;
      allowedTCPPorts = [ ];
    };
  };

  services = {
    fail2ban = {
      enable = lib.mkIf config.networking.firewall.enable (lib.mkDefault true);
      recommendedDefaults = true;
    };

    openssh = {
      enable = true;
      fixPermissions = true;
      extraConfig = "StreamLocalBindUnlink yes";

      hostKeys = [
        {
          bits = 4096;
          path = "/etc/ssh/ssh_host_rsa_key";
          type = "rsa";
        }
        {
          path = "/etc/ssh/ssh_host_ed25519_key";
          type = "ed25519";
        }
        {
          path = "/etc/ssh/ssh_host_ecdsa_key";
          type = "ecdsa";
        }
      ];

      settings = {
        AllowAgentForwarding = "no";
        AllowTcpForwarding = "no";
        ChallengeResponseAuthentication = "no";
        ClientAliveCountMax = lib.mkDefault 2;
        Compression = "NO";
        IgnoreRhosts = "yes";
        LogLevel = lib.mkDefault "VERBOSE";
        MaxAuthTries = 3;
        MaxSessions = lib.mkDefault 2;
        PasswordAuthentication = false;
        PermitEmptyPasswords = "no";
        PermitRootLogin = "no";
        TcpKeepAlive = "no";
        X11Forwarding = lib.mkDefault false;
        KexAlgorithms = [
          "curve25519-sha256@libssh.org"
          "diffie-hellman-group-exchange-sha256"
        ];

        Ciphers = [
          "chacha20-poly1305@openssh.com"
          "aes256-gcm@openssh.com"
          "aes128-gcm@openssh.com"
          "aes256-ctr"
          "aes192-ctr"
          "aes128-ctr"
        ];

        Macs = [
          "hmac-sha2-512-etm@openssh.com"
          "hmac-sha2-256-etm@openssh.com"
          "umac-128-etm@openssh.com"
          "hmac-sha2-512"
          "hmac-sha2-256"
          "umac-128@openssh.com"
        ];
      };
    };

    autopull = {
      enable = true;
      ssh-key = "/root/.ssh/id_ed25519_ghdeploy";
      path = /root/dotfiles;
    };
  };

  programs = {
    git = {
      enable = true;
      lfs.enable = lib.mkDefault true;
      config = {
        interactive.singlekey = true;
        pull.rebase = true;
        rebase.autoStash = true;
        safe.directory = "/etc/nixos";
      };
    };

    neovim = {
      enable = true;
      defaultEditor = true;
      configure = {
        customRC = ''
          set undofile         " save undo file after quit
          set undolevels=1000  " number of steps to save
          set undoreload=10000 " number of lines to save

          " Save Cursor Position
          au BufReadPost * if line("'\"") > 1 && line("'\"") <= line("$") | exe "normal! g'\"" | endif
        '';
      };
    };

    zsh = {
      enable = true;
      syntaxHighlighting.enable = true;
      zsh-autoenv.enable = true;
      enableCompletion = true;
      enableBashCompletion = true;
      ohMyZsh.enable = true;
      shellAliases.update = "sudo nixos-rebuild switch --fast --accept-flake-config --flake /root/dotfiles#${config.networking.hostName} -L |& nom";
      autosuggestions = {
        enable = true;
        strategy = [ "completion" ];
        async = true;
      };
    };

    nix-ld = {
      enable = true;
      libraries = with pkgs; [
        acl
        attr
        bzip2
        curl
        glib
        libglvnd
        libmysqlclient
        libsodium
        libssh
        libxml2
        openssl
        stdenv.cc.cc
        systemd
        util-linux
        xz
        zlib
        zstd
      ];
    };
  };

  nix = {
    diffSystem = true;
    settings = {
      experimental-features = [
        "nix-command"
        "flakes"
      ];
      keep-outputs = true;
      builders-use-substitutes = true;
      connect-timeout = 20;
    };

    gc = {
      automatic = true;
      dates = "weekly";
      options = "--delete-older-than 30d";
    };
  };

  system = {
    autoUpgrade = {
      enable = true;
      randomizedDelaySec = "1h";
      persistent = true;
      flake = "github:RAD-Development/nix-dotfiles";
    };
  };
}
Feature/rfc 0166 fmt (#113) * change formatter to nixfmt-rfc-style Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Add rfc-style fmt'ing Signed-off-by: ahuston-0 <aliceghuston@gmail.com> --------- Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-03-03 18:06:28 -05:00			`{`
			`lib,`
			`pkgs,`
			`config,`
			`...`
			`}:`
			`{`
dennis the formatter (#75) * dennis the formatter * changed comment * fixup 2024-02-05 22:45:43 +01:00			`security.auditd.enable = true;`
			`nixpkgs.config.allowUnfree = true;`
base configuration 2023-12-23 06:49:01 +01:00			`i18n = {`
			`defaultLocale = "en_US.utf8";`
add home-manager 2023-12-25 03:39:20 +01:00			`supportedLocales = [ "en_US.UTF-8/UTF-8" ];`
base configuration 2023-12-23 06:49:01 +01:00			`};`

first usable configuration 2023-12-24 20:09:35 +01:00			`boot = {`
			`default = true;`
Feature/rfc 0166 fmt (#113) * change formatter to nixfmt-rfc-style Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Add rfc-style fmt'ing Signed-off-by: ahuston-0 <aliceghuston@gmail.com> --------- Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-03-03 18:06:28 -05:00			`kernel.sysctl = {`
			`"net.ipv6.conf.ens3.accept_ra" = 1;`
			`};`
first usable configuration 2023-12-24 20:09:35 +01:00			`};`

add home-manager 2023-12-25 03:39:20 +01:00			`home-manager = {`
			`useGlobalPkgs = true;`
			`useUserPackages = true;`
			`};`

Disable mutable-users, fix passwords globally (#71) * updated passwd * Disable mutable-users Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * fix password config Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * change secrets --------- Signed-off-by: ahuston-0 <aliceghuston@gmail.com> Co-authored-by: Richie Cahill <richie@tmmworkshop.com> Co-authored-by: Dennis Wuitz <dennish@wuitz.de> 2024-02-03 17:24:45 -05:00			`users = {`
			`defaultUserShell = pkgs.zsh;`
			`mutableUsers = false;`
			`};`
Feature email server (#14) * formatting * update * add mailserver * flake update 2024-01-02 16:30:08 +01:00
reconfigure photon 2023-12-27 10:03:13 +01:00			`networking = {`
			`firewall = {`
			`enable = lib.mkDefault true;`
Feature email server (#14) * formatting * update * add mailserver * flake update 2024-01-02 16:30:08 +01:00			`allowedTCPPorts = [ ];`
reconfigure photon 2023-12-27 10:03:13 +01:00			`};`
			`};`
base configuration 2023-12-23 06:49:01 +01:00
			`services = {`
add fail2ban 2023-12-29 20:54:12 +01:00			`fail2ban = {`
Feature email server (#14) * formatting * update * add mailserver * flake update 2024-01-02 16:30:08 +01:00			`enable = lib.mkIf config.networking.firewall.enable (lib.mkDefault true);`
add fail2ban 2023-12-29 20:54:12 +01:00			`recommendedDefaults = true;`
			`};`

base configuration 2023-12-23 06:49:01 +01:00			`openssh = {`
			`enable = true;`
			`fixPermissions = true;`
enable external SMTP for hydra (#49) * external SMTP for hydra Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * nix-serve sops Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * add binary cache * add hydra jobs * cleanup (#50) * finish up cleanup branch merge * switched back to nixpkgs-fmt * add nixpkgs-fmt to hydrajobs.build --------- Signed-off-by: ahuston-0 <aliceghuston@gmail.com> Co-authored-by: Dennis Wuitz <dennish@wuitz.de> Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> 2024-02-01 16:50:14 -05:00			`extraConfig = "StreamLocalBindUnlink yes";`
add fail2ban 2023-12-29 20:54:12 +01:00
Fix hostkeys, zfs autoscrub service Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2023-12-29 11:42:31 -05:00			`hostKeys = [`
			`{`
			`bits = 4096;`
			`path = "/etc/ssh/ssh_host_rsa_key";`
			`type = "rsa";`
			`}`
			`{`
			`path = "/etc/ssh/ssh_host_ed25519_key";`
			`type = "ed25519";`
			`}`
			`{`
			`path = "/etc/ssh/ssh_host_ecdsa_key";`
			`type = "ecdsa";`
			`}`
			`];`
gitea ldap connection (#13) * gitea ldap connection * name change 2024-01-01 16:38:17 +01:00
base configuration 2023-12-23 06:49:01 +01:00			`settings = {`
Securing jeevesjr (#39) * secured openssh * removing MaxSessions * setup endlessh * set openssh logging to VERBOSE * fix * got MaxSessions working * set ClientAliveCountMax * setup usbguard * updated central openssh settings * added sysstat service * add auditd * testing lynis setting * fixed typo * setup login.defs * removed login.defs * updated ChallengeResponseAuthentication to no * made LogLevel a Default Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> --------- Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> 2024-01-13 22:20:01 -05:00			`AllowAgentForwarding = "no";`
			`AllowTcpForwarding = "no";`
			`ChallengeResponseAuthentication = "no";`
			`ClientAliveCountMax = lib.mkDefault 2;`
add fail2ban 2023-12-29 20:54:12 +01:00			`Compression = "NO";`
			`IgnoreRhosts = "yes";`
Securing jeevesjr (#39) * secured openssh * removing MaxSessions * setup endlessh * set openssh logging to VERBOSE * fix * got MaxSessions working * set ClientAliveCountMax * setup usbguard * updated central openssh settings * added sysstat service * add auditd * testing lynis setting * fixed typo * setup login.defs * removed login.defs * updated ChallengeResponseAuthentication to no * made LogLevel a Default Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> --------- Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> 2024-01-13 22:20:01 -05:00			`LogLevel = lib.mkDefault "VERBOSE";`
add fail2ban 2023-12-29 20:54:12 +01:00			`MaxAuthTries = 3;`
Securing jeevesjr (#39) * secured openssh * removing MaxSessions * setup endlessh * set openssh logging to VERBOSE * fix * got MaxSessions working * set ClientAliveCountMax * setup usbguard * updated central openssh settings * added sysstat service * add auditd * testing lynis setting * fixed typo * setup login.defs * removed login.defs * updated ChallengeResponseAuthentication to no * made LogLevel a Default Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> --------- Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> 2024-01-13 22:20:01 -05:00			`MaxSessions = lib.mkDefault 2;`
base configuration 2023-12-23 06:49:01 +01:00			`PasswordAuthentication = false;`
add fail2ban 2023-12-29 20:54:12 +01:00			`PermitEmptyPasswords = "no";`
			`PermitRootLogin = "no";`
Securing jeevesjr (#39) * secured openssh * removing MaxSessions * setup endlessh * set openssh logging to VERBOSE * fix * got MaxSessions working * set ClientAliveCountMax * setup usbguard * updated central openssh settings * added sysstat service * add auditd * testing lynis setting * fixed typo * setup login.defs * removed login.defs * updated ChallengeResponseAuthentication to no * made LogLevel a Default Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> --------- Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> 2024-01-13 22:20:01 -05:00			`TcpKeepAlive = "no";`
removing unnecessary code (#41) * removing unnecessary code * replaced some of the code * removed endlessh-go from jeeves-jr 2024-01-16 18:49:03 -05:00			`X11Forwarding = lib.mkDefault false;`
dennis the formatter (#75) * dennis the formatter * changed comment * fixup 2024-02-05 22:45:43 +01:00			`KexAlgorithms = [`
			`"curve25519-sha256@libssh.org"`
			`"diffie-hellman-group-exchange-sha256"`
			`];`

			`Ciphers = [`
			`"chacha20-poly1305@openssh.com"`
			`"aes256-gcm@openssh.com"`
			`"aes128-gcm@openssh.com"`
			`"aes256-ctr"`
			`"aes192-ctr"`
			`"aes128-ctr"`
			`];`

			`Macs = [`
			`"hmac-sha2-512-etm@openssh.com"`
			`"hmac-sha2-256-etm@openssh.com"`
			`"umac-128-etm@openssh.com"`
			`"hmac-sha2-512"`
			`"hmac-sha2-256"`
			`"umac-128@openssh.com"`
			`];`
base configuration 2023-12-23 06:49:01 +01:00			`};`
			`};`
dennis the formatter (#75) * dennis the formatter * changed comment * fixup 2024-02-05 22:45:43 +01:00
Add autopull service for testing & pre-commit-hooks (#4) * configure programs for photon * sops fix * Add flake-update-service for testing Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Add sops config Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * add photon password * Fix user password Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * actually fix user config Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * change password for user dennis * removed user password * fixed yaml secrets * yaml is silly, fix my yamls pls Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * quickfix * Enforce systemdboot on palatine-hill Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * reconfigure photon * Fix ZFS config on palatine-hill Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix systemd-boot on palatine-hill Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * sops update-keys Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix botched merge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Add custom ssh command Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix option name, add package dependency Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix option name, add dependency Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * ssh-key path to str Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix git command Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Set up nixpkgs.fmt Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Allow autopull to trigger a rebuild Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Revert triggerRebuild on palatine-hill, add clarifying comment Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Attempt pre-commit hooks Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Increase pull frequency Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix duplicate flake-utils url Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Add fmt hook Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * add nix-flake-check hook Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Remove unnecessary flake-utils import by name Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Trying to setup inputs for nix-pre-commit Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> * Fixing input with flake inputs Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * make autopull service default and fix flake check hook Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Remove pre-commit-config.yml from gitignore that decision seems to be something from one of my previous attempts at this. Given that the config is needed for this to work it only makes sense to have it. /.pre-commit-config.yaml /.pre-commit-config.yaml Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Rollback previous commit. yml file is a softlink Signed-off-by: ahuston-0 <aliceghuston@gmail.com> --------- Signed-off-by: ahuston-0 <aliceghuston@gmail.com> Co-authored-by: Dennis Wuitz <dennish@wuitz.de> Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> 2024-01-01 12:41:32 -05:00			`autopull = {`
			`enable = true;`
			`ssh-key = "/root/.ssh/id_ed25519_ghdeploy";`
fix autopull (#79) * fix autopull * add deadnix * fix git 2024-02-06 23:58:33 +01:00			`path = /root/dotfiles;`
Add autopull service for testing & pre-commit-hooks (#4) * configure programs for photon * sops fix * Add flake-update-service for testing Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Add sops config Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * add photon password * Fix user password Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * actually fix user config Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * change password for user dennis * removed user password * fixed yaml secrets * yaml is silly, fix my yamls pls Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * quickfix * Enforce systemdboot on palatine-hill Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * reconfigure photon * Fix ZFS config on palatine-hill Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix systemd-boot on palatine-hill Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * sops update-keys Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix botched merge Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Add custom ssh command Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix option name, add package dependency Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix option name, add dependency Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * ssh-key path to str Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix git command Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Set up nixpkgs.fmt Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Allow autopull to trigger a rebuild Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Revert triggerRebuild on palatine-hill, add clarifying comment Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Attempt pre-commit hooks Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Increase pull frequency Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Fix duplicate flake-utils url Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Add fmt hook Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * add nix-flake-check hook Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Remove unnecessary flake-utils import by name Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Trying to setup inputs for nix-pre-commit Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> * Fixing input with flake inputs Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * make autopull service default and fix flake check hook Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Remove pre-commit-config.yml from gitignore that decision seems to be something from one of my previous attempts at this. Given that the config is needed for this to work it only makes sense to have it. /.pre-commit-config.yaml /.pre-commit-config.yaml Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Rollback previous commit. yml file is a softlink Signed-off-by: ahuston-0 <aliceghuston@gmail.com> --------- Signed-off-by: ahuston-0 <aliceghuston@gmail.com> Co-authored-by: Dennis Wuitz <dennish@wuitz.de> Co-authored-by: Dennis <52411861+DerDennisOP@users.noreply.github.com> 2024-01-01 12:41:32 -05:00			`};`
base configuration 2023-12-23 06:49:01 +01:00			`};`

			`programs = {`
			`git = {`
			`enable = true;`
dennis the formatter (#75) * dennis the formatter * changed comment * fixup 2024-02-05 22:45:43 +01:00			`lfs.enable = lib.mkDefault true;`
base configuration 2023-12-23 06:49:01 +01:00			`config = {`
			`interactive.singlekey = true;`
			`pull.rebase = true;`
			`rebase.autoStash = true;`
			`safe.directory = "/etc/nixos";`
			`};`
			`};`

add home-manager 2023-12-25 03:39:20 +01:00			`neovim = {`
			`enable = true;`
			`defaultEditor = true;`
			`configure = {`
			`customRC = ''`
reconfigure photon 2023-12-27 10:03:13 +01:00			`set undofile " save undo file after quit`
			`set undolevels=1000 " number of steps to save`
			`set undoreload=10000 " number of lines to save`
add home-manager 2023-12-25 03:39:20 +01:00
reconfigure photon 2023-12-27 10:03:13 +01:00			`" Save Cursor Position`
			`au BufReadPost * if line("'\"") > 1 && line("'\"") <= line("$") \| exe "normal! g'\"" \| endif`
			`'';`
add home-manager 2023-12-25 03:39:20 +01:00			`};`
			`};`

base configuration 2023-12-23 06:49:01 +01:00			`zsh = {`
			`enable = true;`
dennis the formatter (#75) * dennis the formatter * changed comment * fixup 2024-02-05 22:45:43 +01:00			`syntaxHighlighting.enable = true;`
			`zsh-autoenv.enable = true;`
			`enableCompletion = true;`
			`enableBashCompletion = true;`
			`ohMyZsh.enable = true;`
Feature/factorio (#108) * add factorio * add factorio server * add new user 2024-02-19 22:03:16 +01:00			`shellAliases.update = "sudo nixos-rebuild switch --fast --accept-flake-config --flake /root/dotfiles#${config.networking.hostName} -L \|& nom";`
base configuration 2023-12-23 06:49:01 +01:00			`autosuggestions = {`
			`enable = true;`
			`strategy = [ "completion" ];`
			`async = true;`
			`};`
			`};`

			`nix-ld = {`
			`enable = true;`
Feature/rfc 0166 fmt (#113) * change formatter to nixfmt-rfc-style Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Add rfc-style fmt'ing Signed-off-by: ahuston-0 <aliceghuston@gmail.com> --------- Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-03-03 18:06:28 -05:00			`libraries = with pkgs; [`
			`acl`
			`attr`
			`bzip2`
			`curl`
			`glib`
			`libglvnd`
			`libmysqlclient`
			`libsodium`
			`libssh`
			`libxml2`
			`openssl`
			`stdenv.cc.cc`
			`systemd`
			`util-linux`
			`xz`
			`zlib`
			`zstd`
			`];`
base configuration 2023-12-23 06:49:01 +01:00			`};`
			`};`

			`nix = {`
dennis the formatter (#75) * dennis the formatter * changed comment * fixup 2024-02-05 22:45:43 +01:00			`diffSystem = true;`
base configuration 2023-12-23 06:49:01 +01:00			`settings = {`
Feature/rfc 0166 fmt (#113) * change formatter to nixfmt-rfc-style Signed-off-by: ahuston-0 <aliceghuston@gmail.com> * Add rfc-style fmt'ing Signed-off-by: ahuston-0 <aliceghuston@gmail.com> --------- Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-03-03 18:06:28 -05:00			`experimental-features = [`
			`"nix-command"`
			`"flakes"`
			`];`
base configuration 2023-12-23 06:49:01 +01:00			`keep-outputs = true;`
			`builders-use-substitutes = true;`
			`connect-timeout = 20;`
			`};`

			`gc = {`
			`automatic = true;`
			`dates = "weekly";`
Fix gc options Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2023-12-25 13:29:02 -05:00			`options = "--delete-older-than 30d";`
base configuration 2023-12-23 06:49:01 +01:00			`};`
			`};`

			`system = {`
			`autoUpgrade = {`
			`enable = true;`
			`randomizedDelaySec = "1h";`
			`persistent = true;`
fix autopull (#79) * fix autopull * add deadnix * fix git 2024-02-06 23:58:33 +01:00			`flake = "github:RAD-Development/nix-dotfiles";`
base configuration 2023-12-23 06:49:01 +01:00			`};`
			`};`
Fix gc options Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2023-12-25 13:29:02 -05:00			`}`