systems/artemision/configuration.nix

{
  lib,
  pkgs,
  config,
  ...
}:
{
  imports = [
    ./audio.nix
    ./desktop.nix
    ./fingerprint.nix
    ./fonts.nix
    ./graphics.nix
    ./libvirt.nix
    ./polkit.nix
    ./programs.nix
    ./steam.nix
    ./stylix.nix
    ./wifi.nix
    ./zerotier.nix
    ../palatine-hill/ollama.nix
  ];

  time.timeZone = "America/New_York";

  # temp workaround for building while in nixos-enter
  #services.logrotate.checkConfig = false;

  networking = {
    hostId = "58f50a15";
    firewall.enable = true;
    useNetworkd = true;
  };

  boot = {
    #kernelPackages = lib.mkForce pkgs.linuxPackages_6_6;
    useSystemdBoot = true;
    default = true;
  };

  sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];

  services = {
    ollama = {
      package = lib.mkForce pkgs.ollama-rocm;
      models = lib.mkForce "${config.services.ollama.home}/models";
      loadModels = lib.mkForce [
        "deepseek-r1:1.5b"
        "lennyerik/zeta"
        "nomic-embed-text:latest"
        "glm-4.7-flash"
        "magistral"
        "devstral-small-2"
        "starcoder2:7b"
      ];
    };
    avahi = {
      enable = true;
      #publish.enable = true;
      nssmdns4 = true;
      openFirewall = true;
    };
    flatpak.enable = true;
    calibre-web = {
      # temp disable this
      enable = false;
      listen = {
        ip = "127.0.0.1";
      };
      options = {
        calibreLibrary = "/var/lib/calibre-server";
      };
    };
    calibre-server = {
      enable = false;
      user = "calibre-web";
      group = "calibre-web";

    };
    gvfs.enable = true;

    fwupd = {
      enable = true;
      # package =
      #   (import (builtins.fetchTarball {
      #     url = "https://github.com/NixOS/nixpkgs/archive/bb2009ca185d97813e75736c2b8d1d8bb81bde05.tar.gz";
      #     sha256 = "sha256:003qcrsq5g5lggfrpq31gcvj82lb065xvr7bpfa8ddsw8x4dnysk";
      #   }) { inherit (pkgs) system; }).fwupd;
    };
    mullvad-vpn.enable = true;

    fprintd.enable = lib.mkForce false;
    openssh.enable = lib.mkForce false;

    adev.yubikey = {
      enable = true;
      enable-desktop-app = true;
    };
  };

  users.users = {
    alice.extraGroups = [ "calibre-web" ];
  };

  system.stateVersion = "24.05";

  environment.variables = {
    "KWIN_DRM_NO_DIRECT_SCANOUT" = "1";
  };

  #nixpkgs.config = {
  #  rocmSupport = true;
  #};

  sops = {
    defaultSopsFile = ./secrets.yaml;
    #secrets = {
    #  "apps/spotify" = {
    #    group = "audio";
    #    restartUnits = [ "spotifyd.service" ];
    #    mode = "0440";
    #  };
    #};
  };
}
more qcow/installer-iso fixes 2024-06-03 19:30:55 -04:00			`{`
			`lib,`
			`pkgs,`
add ollama back to artemision 2026-03-26 21:40:12 -04:00			`config,`
more qcow/installer-iso fixes 2024-06-03 19:30:55 -04:00			`...`
			`}:`
initial artemision changes (#116 ) 2024-03-24 14:21:28 -04:00			`{`
			`imports = [`
add bluetooth 2024-04-13 22:15:06 -04:00			`./audio.nix`
add stylix to artemision config 2024-08-09 11:11:04 -04:00			`./desktop.nix`
all sorts of fprintd changes 2024-04-01 18:08:19 -04:00			`./fingerprint.nix`
add stylix to artemision config 2024-08-09 11:11:04 -04:00			`./fonts.nix`
add opengl 2024-04-13 22:04:23 -04:00			`./graphics.nix`
add libvirt to artemision 2024-07-04 13:35:41 -04:00			`./libvirt.nix`
add stylix to artemision config 2024-08-09 11:11:04 -04:00			`./polkit.nix`
			`./programs.nix`
			`./steam.nix`
			`./stylix.nix`
			`./wifi.nix`
			`./zerotier.nix`
add ollama back to artemision 2026-03-26 21:40:12 -04:00			`../palatine-hill/ollama.nix`
initial artemision changes (#116 ) 2024-03-24 14:21:28 -04:00			`];`

			`time.timeZone = "America/New_York";`

			`# temp workaround for building while in nixos-enter`
revert temporary logrotate fix 2024-04-01 10:33:04 -04:00			`#services.logrotate.checkConfig = false;`
initial artemision changes (#116 ) 2024-03-24 14:21:28 -04:00
			`networking = {`
			`hostId = "58f50a15";`
			`firewall.enable = true;`
migrate artemision to useNetworkd 2024-05-28 23:27:57 -04:00			`useNetworkd = true;`
initial artemision changes (#116 ) 2024-03-24 14:21:28 -04:00			`};`

			`boot = {`
re-enable non-LTS linux 2025-03-13 19:26:47 -04:00			`#kernelPackages = lib.mkForce pkgs.linuxPackages_6_6;`
initial artemision changes (#116 ) 2024-03-24 14:21:28 -04:00			`useSystemdBoot = true;`
			`default = true;`
			`};`

			`sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];`

fix all statix warnings and re-enable statix pre-commit 2024-05-21 19:43:57 -04:00			`services = {`
add ollama back to artemision 2026-03-26 21:40:12 -04:00			`ollama = {`
			`package = lib.mkForce pkgs.ollama-rocm;`
			`models = lib.mkForce "${config.services.ollama.home}/models";`
			`loadModels = lib.mkForce [`
			`"deepseek-r1:1.5b"`
			`"lennyerik/zeta"`
			`"nomic-embed-text:latest"`
			`"glm-4.7-flash"`
			`"magistral"`
			`"devstral-small-2"`
			`"starcoder2:7b"`
			`];`
			`};`
remove zathura, add avahi 2026-04-26 01:47:46 -04:00			`avahi = {`
			`enable = true;`
remove zathura, add avahi 2026-04-26 01:48:08 -04:00			`#publish.enable = true;`
remove zathura, add avahi 2026-04-26 01:47:46 -04:00			`nssmdns4 = true;`
			`openFirewall = true;`
			`};`
artemsion: samba, flakpak, palatine-hill: act-runner, samba, nextcloud 2024-12-04 18:56:39 -05:00			`flatpak.enable = true;`
add calibre-web 2024-07-04 22:17:17 -04:00			`calibre-web = {`
fix frequency issue and disable calibre-web 2025-09-07 22:25:22 -04:00			`# temp disable this`
			`enable = false;`
add calibre-web 2024-07-04 22:17:17 -04:00			`listen = {`
			`ip = "127.0.0.1";`
			`};`
			`options = {`
			`calibreLibrary = "/var/lib/calibre-server";`
			`};`
			`};`
add calibre-server 2024-07-07 12:22:50 -04:00			`calibre-server = {`
upgrade artemision 2025-12-19 03:07:34 -05:00			`enable = false;`
add calibre-server 2024-07-07 12:22:50 -04:00			`user = "calibre-web";`
			`group = "calibre-web";`

			`};`
add calibre-web 2024-07-04 22:17:17 -04:00			`gvfs.enable = true;`
initial artemision changes (#116 ) 2024-03-24 14:21:28 -04:00
enable fwupd 2024-06-03 09:04:18 -04:00			`fwupd = {`
			`enable = true;`
add various plex/arr services, remove nix-serve, add lynis config 2025-05-05 17:17:31 -04:00			`# package =`
			`# (import (builtins.fetchTarball {`
			`# url = "https://github.com/NixOS/nixpkgs/archive/bb2009ca185d97813e75736c2b8d1d8bb81bde05.tar.gz";`
			`# sha256 = "sha256:003qcrsq5g5lggfrpq31gcvj82lb065xvr7bpfa8ddsw8x4dnysk";`
			`# }) { inherit (pkgs) system; }).fwupd;`
enable fwupd 2024-06-03 09:04:18 -04:00			`};`
add various plex/arr services, remove nix-serve, add lynis config 2025-05-05 17:17:31 -04:00			`mullvad-vpn.enable = true;`
initial artemision changes (#116 ) 2024-03-24 14:21:28 -04:00
rotate 2024-10-22 23:57:36 -04:00			`fprintd.enable = lib.mkForce false;`
ssh from default to force artemision 2024-06-03 20:14:36 -04:00			`openssh.enable = lib.mkForce false;`
fix all statix warnings and re-enable statix pre-commit 2024-05-21 19:43:57 -04:00
remove references to richie/rad 2025-04-01 13:59:09 -04:00			`adev.yubikey = {`
add a yubikey module 2024-08-14 00:20:07 -04:00			`enable = true;`
			`enable-desktop-app = true;`
			`};`
Fun artemision changes 2024-03-28 02:39:29 -04:00			`};`

add zed, ollama, kubernetes 2026-03-19 23:17:17 -04:00			`users.users = {`
			`alice.extraGroups = [ "calibre-web" ];`
			`};`
add calibre-server 2024-07-07 12:22:50 -04:00
initial artemision changes (#116 ) 2024-03-24 14:21:28 -04:00			`system.stateVersion = "24.05";`
Fun artemision changes 2024-03-28 02:39:29 -04:00
add graphics corruption fix 2025-03-13 18:10:15 -04:00			`environment.variables = {`
			`"KWIN_DRM_NO_DIRECT_SCANOUT" = "1";`
			`};`

add ollama 2026-03-15 15:56:06 -04:00			`#nixpkgs.config = {`
			`# rocmSupport = true;`
			`#};`

Fun artemision changes 2024-03-28 02:39:29 -04:00			`sops = {`
			`defaultSopsFile = ./secrets.yaml;`
remove redundant sops reference for non-existant service 2025-03-04 01:21:28 -05:00			`#secrets = {`
			`# "apps/spotify" = {`
			`# group = "audio";`
			`# restartUnits = [ "spotifyd.service" ];`
			`# mode = "0440";`
			`# };`
			`#};`
Fun artemision changes 2024-03-28 02:39:29 -04:00			`};`
initial artemision changes (#116 ) 2024-03-24 14:21:28 -04:00			`}`