commit 27a2c78f988c4087510d028c52197fa102d6feab · wiro.world/dotfiles

+12 -3

README.md

···

       37
       37
        
       ## Add a new module

     

       38
       38
        
       

     

       39
       39
        
       - Copy template and replace `<name>` with module name

     

       40
       40
       +
       

     

       40
       41
        
       	```nix

     

       41
       42
        
       	{ config

     

       42
       43
        
       	, lib

     
···

       46
       47
        
       		cfg = config.local.fragment.<name>;

     

       47
       48
        
       	in

     

       48
       49
        
       	{

     

       49
       49
       -
       	  options.local.fragment.<name>.enable = lib.mkEnableOption ''

     

       50
       50
       +
       	  options.local.fragment."<name>".enable = lib.mkEnableOption ''

     

       50
       51
        
       	    <name> related

     

       51
       52
        
       

     

       52
       52
       -
       	    Depends on: <list of dependencies to enforce later>

     

       53
       53
       +
       	    Depends on:

     

       54
       54
       +
       			- [<Condition>] <dependency>: <reason>

     

       55
       55
       +
       			- ...

     

       53
       56
        
       	  '';

     

       54
       57
        
       

     

       55
       55
       -
       	  config = lib.mkIf cfg.enable { };

     

       58
       58
       +
       	  config = lib.mkIf cfg.enable {

     

       59
       59
       +
       			assertions = [

     

       60
       60
       +
       				{ assertion = config."<dependency>"; message = "<name> module depends on <dependency>"; }

     

       61
       61
       +
       			];

     

       62
       62
       +
       

     

       63
       63
       +
       			# put the rest of the config down below

     

       64
       64
       +
       		};

     

       56
       65
        
       	}

     

       57
       66
        
       	```

     

       58
       67

+11 -11

home-manager/fragments/epita.nix

···

       19
       19
        
             MOUNT_DIR="$XDG_RUNTIME_DIR/afs-epita"

     

       20
       20
        
       

     

       21
       21
        
             klist || kinit -f "$USERNAME@CRI.EPITA.FR"

     

       22
       22
       -
             ls "$MOUNT_DIR" || mkdir "$MOUNT_DIR"

     

       22
       22
       +
             ls "$MOUNT_DIR" >/dev/null || mkdir -v "$MOUNT_DIR"

     

       23
       23
        
             sshfs -o reconnect "$USERNAME@ssh.cri.epita.fr:$REMOTE_DIR" "$MOUNT_DIR"

     

       24
       24
        
           '';

     

       25
       25
        
         };

     
···

       28
       28
        
         options.local.fragment.epita.enable = lib.mkEnableOption ''

     

       29
       29
        
           EPITA related

     

       30
       30
        
       

     

       31
       31
       -
           Depends on: SSH

     

       31
       31
       +
           Depends on:

     

       32
       32
       +
           - `ssh` program: Mount AFS script needs SSH

     

       32
       33
        
         '';

     

       33
       34
        
       

     

       34
       35
        
         config = lib.mkIf cfg.enable {

     

       35
       35
       -
           # Needed for sshfs

     

       36
       36
       -
           programs.ssh = {

     

       37
       37
       -
             # TODO: should depends on ssh module, may conflict later

     

       38
       38
       -
             enable = true;

     

       36
       36
       +
           assertions = [

     

       37
       37
       +
             { assertion = config.programs.ssh.enable; message = "`epita` fragment depends on `ssh` program"; }

     

       38
       38
       +
           ];

     

       39
       39
        
       

     

       40
       40
       -
             matchBlocks."ssh.cri.epita.fr" = {

     

       41
       41
       -
               extraOptions = {

     

       42
       42
       -
                 GSSAPIAuthentication = "yes";

     

       43
       43
       -
                 GSSAPIDelegateCredentials = "yes";

     

       44
       44
       -
               };

     

       40
       40
       +
           # Needed for sshfs

     

       41
       41
       +
           programs.ssh.matchBlocks."ssh.cri.epita.fr" = {

     

       42
       42
       +
             extraOptions = {

     

       43
       43
       +
               GSSAPIAuthentication = "yes";

     

       44
       44
       +
               GSSAPIDelegateCredentials = "yes";

     

       45
       45
        
             };

     

       46
       46
        
           };

     

       47
       47

+7 -2

home-manager/fragments/git.nix

···

       13
       13
        
         options.local.fragment.git.enable = lib.mkEnableOption ''

     

       14
       14
        
           Git related

     

       15
       15
        
       

     

       16
       16
       -
           Depends on: Agenix

     

       16
       16
       +
           Depends on:

     

       17
       17
       +
           - `agenix` fragment: Need for GPG key and GitGuardian API key

     

       17
       18
        
         '';

     

       18
       19
        
       

     

       19
       20
        
         config = lib.mkIf cfg.enable {

     

       21
       21
       +
           assertions = [

     

       22
       22
       +
             { assertion = config.local.fragment.agenix.enable; message = "`git` fragment depends on `agenix` fragment"; }

     

       23
       23
       +
           ];

     

       24
       24
       +
       

     

       20
       25
        
           home.sessionVariables = {

     

       21
       26
        
             # Disable annoying warning message

     

       22
       27
        
             GIT_DISCOVERY_ACROSS_FILESYSTEM = 0;

     
···

       27
       32
        
             lfs.enable = true;

     

       28
       33
        
       

     

       29
       34
        
             userName = "Milo Moisson";

     

       30
       30
       -
             # TODO: this email should be behind a secret

     

       35
       35
       +
             # TODO: this email should be behind a secret or at least a config

     

       31
       36
        
             userEmail = "milomoisson@gmail.com";

     

       32
       37
        
       

     

       33
       38
        
             signing = {

+6 -1

home-manager/fragments/helix.nix

···

       20
       20
        
         options.local.fragment.helix.enable = lib.mkEnableOption ''

     

       21
       21
        
           Helix editor related

     

       22
       22
        
       

     

       23
       23
       -
           Depends on: Agenix

     

       23
       23
       +
           Depends on:

     

       24
       24
       +
           - `agenix` fragment: WakaTime key

     

       24
       25
        
         '';

     

       25
       26
        
       

     

       26
       27
        
         config = lib.mkIf cfg.enable {

     

       28
       28
       +
           assertions = [

     

       29
       29
       +
             { assertion = config.local.fragment.agenix.enable; message = "`helix` fragment depends on `agenix` fragment"; }

     

       30
       30
       +
           ];

     

       31
       31
       +
       

     

       27
       32
        
           programs.helix = {

     

       28
       33
        
             enable = true;

     

       29
       34
        
             package = if flags.onlyCached then pkgs.helix else lpkgs.helix;

+8 -1

home-manager/fragments/kitty.nix

···

       12
       12
        
         options.local.fragment.kitty.enable = lib.mkEnableOption ''

     

       13
       13
        
           Kitty related

     

       14
       14
        
       

     

       15
       15
       -
           Depends on: `fish`

     

       15
       15
       +
           Depends on:

     

       16
       16
       +
           - (Darwin) `fish` program: lauches fish on startup

     

       17
       17
       +
       

     

       18
       18
       +
             Has weird behavior if set as login shell

     

       16
       19
        
         '';

     

       17
       20
        
       

     

       18
       21
        
         config = lib.mkIf cfg.enable {

     

       22
       22
       +
           assertions = [

     

       23
       23
       +
             { assertion = (!isDarwin) || config.programs.fish.enable; message = "`kitty` fragment depends on `fish` program on darwin platforms"; }

     

       24
       24
       +
           ];

     

       25
       25
       +
       

     

       19
       26
        
           programs.kitty = {

     

       20
       27
        
             enable = true;

     

       21
       28
        
             settings = {

-1

home-manager/fragments/vm.nix

···

       317
       317
        
                       "--locked XF86AudioMute" = "exec ${pamixer} --toggle-mute";

     

       318
       318
        
                       "--locked XF86AudioMicMute" = "exec ${pamixer} --default-source --toggle-mute";

     

       319
       319
        
                       "--locked XF86MonBrightnessUp" = "exec ${brightnessctl} --exponent set 5%+";

     

       320
       320
       -
                       # TODO: expertiment with min-value

     

       321
       320
        
                       "--locked XF86MonBrightnessDown" = "exec ${brightnessctl} --exponent  set 5%- --min-value=1";

     

       322
       321
        
                       "--locked XF86TouchpadToggle" = ''input "type:touchpad" events toggle enabled disabled_on_external_mouse'';

     

       323
       322
        
                     }

+13 -2

home-manager/fragments/xdg-mime.nix

···

       1
       1
        
       { config

     

       2
       2
        
       , lib

     

       3
       3
       +
       , pkgs

     

       3
       4
        
       , ...

     

       4
       5
        
       }:

     

       5
       6
        
       

     
···

       7
       8
        
         cfg = config.local.fragment.xdg-mime;

     

       8
       9
        
       in

     

       9
       10
        
       {

     

       10
       10
       -
         # TODO: enforce dependence

     

       11
       11
        
         options.local.fragment.xdg-mime.enable = lib.mkEnableOption ''

     

       12
       12
        
           Sets default applications based on mime type.

     

       13
       13
        
       

     

       14
       14
       -
           Depends on: `nautilus`, `firefox`, `imv`, `kitty`.

     

       14
       14
       +
           Depends on:

     

       15
       15
       +
           - `firefox` program: default browser

     

       16
       16
       +
           - `imv` program: default image viewer

     

       17
       17
       +
           - `kitty` program: default terminal

     

       18
       18
       +
           - `nautilus` program: default file explorer

     

       15
       19
        
         '';

     

       16
       20
        
       

     

       17
       21
        
         config = lib.mkIf cfg.enable {

     

       22
       22
       +
           assertions = [

     

       23
       23
       +
             { assertion = config.programs.firefox.enable; message = "`xdg-mime` fragment depends on `firefox` program"; }

     

       24
       24
       +
             { assertion = config.programs.imv.enable; message = "`xdg-mime` fragment depends on `imv` program"; }

     

       25
       25
       +
             { assertion = config.programs.kitty.enable; message = "`xdg-mime` fragment depends on `kitty` program"; }

     

       26
       26
       +
             { assertion = lib.lists.count (drv: (drv.pname or "") == pkgs.gnome.nautilus.pname) config.home.packages > 0; message = "`xdg-mime` fragment depends on `nautilus` program"; }

     

       27
       27
       +
           ];

     

       28
       28
       +
       

     

       18
       29
        
           xdg.mimeApps = {

     

       19
       30
        
             enable = true;

     

       20
       31

+6 -2

home-manager/profiles/desktop.nix

···

       8
       8
        
       , ...

     

       9
       9
        
       }:

     

       10
       10
        
       

     

       11
       11
       -
       if (isDarwin) then throw "this is a HM non-darwin config" else

     

       12
       12
       -
       

     

       13
       11
        
       let

     

       14
       12
        
         inherit (self.outputs) homeManagerModules;

     

       15
       13
        
       

     
···

       22
       20
        
         ];

     

       23
       21
        
       

     

       24
       22
        
         config = {

     

       23
       23
       +
           assertions = [

     

       24
       24
       +
             { assertion = !isDarwin; message = "this is a HM non-darwin config"; }

     

       25
       25
       +
           ];

     

       26
       26
       +
       

     

       25
       27
        
           local.fragment = {

     

       26
       28
        
             agenix.enable = true;

     

       27
       29
        
             aws.enable = true;

     
···

       129
       131
        
           };

     

       130
       132
        
       

     

       131
       133
        
           programs.broot.enable = true;

     

       134
       134
       +
       

     

       135
       135
       +
           programs.ssh.enable = true;

     

       132
       136
        
       

     

       133
       137
        
           programs.bat = {

     

       134
       138
        
             enable = true;

+4 -2

home-manager/profiles/lightweight.nix

···

       8
       8
        
       , ...

     

       9
       9
        
       }:

     

       10
       10
        
       

     

       11
       11
       -
       if (isDarwin) then throw "this is a HM non-darwin config" else

     

       12
       12
       -
       

     

       13
       11
        
       let

     

       14
       12
        
         inherit (self.outputs) homeManagerModules;

     

       15
       13
        
       

     
···

       22
       20
        
         ];

     

       23
       21
        
       

     

       24
       22
        
         config = {

     

       23
       23
       +
           assertions = [

     

       24
       24
       +
             { assertion = !isDarwin; message = "this is a HM non-darwin config"; }

     

       25
       25
       +
           ];

     

       26
       26
       +
       

     

       25
       27
        
           local.flags.onlyCached = true;

     

       26
       28
        
       

     

       27
       29
        
           local.fragment = {

+4 -3

home-manager/profiles/macintosh.nix

···

       1
       1
        
       { self

     

       2
       2
        
       , config

     

       3
       3
       -
       , lib

     

       4
       3
        
       , llib

     

       5
       4
        
       , pkgs

     

       6
       5
        
       

     
···

       9
       8
        
       , osConfig ? null

     

       10
       9
        
       , ...

     

       11
       10
        
       }:

     

       12
       12
       -
       

     

       13
       13
       -
       if (!isDarwin) then throw "this is a HM darwin-only config" else

     

       14
       11
        
       

     

       15
       12
        
       let

     

       16
       13
        
         inherit (self.outputs) homeManagerModules;

     
···

       33
       30
        
         ];

     

       34
       31
        
       

     

       35
       32
        
         config = {

     

       33
       33
       +
           assertions = [

     

       34
       34
       +
             { assertion = isDarwin; message = "this is a HM darwin-only config"; }

     

       35
       35
       +
           ];

     

       36
       36
       +
       

     

       36
       37
        
           local.fragment = {

     

       37
       38
        
             aws.enable = true;

     

       38
       39
        
             git.enable = true;

+13 -7

nixos/fragments/agenix.nix

···

       17
       17
        
           (if isDarwin then agenix.darwinModules.default else agenix.nixosModules.default)

     

       18
       18
        
         ];

     

       19
       19
        
       

     

       20
       20
       -
         # TODO: enforce dependance

     

       21
       20
        
         options.local.fragment.agenix.enable = lib.mkEnableOption ''

     

       22
       21
        
           Agenix secrets manager

     

       23
       22
        
       

     

       24
       24
       -
           Depends on: OpenSSH (`security`)

     

       23
       23
       +
           Depends on:

     

       24
       24
       +
           - `openssh` services: needs host machine keys

     

       25
       25
        
         '';

     

       26
       26
        
       

     

       27
       27
        
         config = lib.mkIf cfg.enable {

     

       28
       28
       -
           # By default, agenix uses host machine keys (aka `openssh.hostKeys`).

     

       29
       29
       -
           # These are always available at boot in opposition to user one that might

     

       30
       30
       -
           # be located on luks protected partitions.

     

       31
       31
       -
           # age.identityPaths = [ ];

     

       28
       28
       +
           assertions = [

     

       29
       29
       +
             { assertion = config.services.openssh.enable; message = "`agenix` fragement depends on `openssh` program"; }

     

       30
       30
       +
           ];

     

       32
       31
        
       

     

       33
       33
       -
           age.secrets = all-secrets.nixos;

     

       32
       32
       +
           age = {

     

       33
       33
       +
             # By default, agenix uses host machine keys (aka `openssh.hostKeys`).

     

       34
       34
       +
             # These are always available at boot in opposition to user one that might

     

       35
       35
       +
             # be located on luks protected partitions.

     

       36
       36
       +
             # identityPaths = [ ];

     

       37
       37
       +
       

     

       38
       38
       +
             secrets = all-secrets.nixos;

     

       39
       39
       +
           };

     

       34
       40
        
         };

     

       35
       41
        
       }

     

       36
       42

+3

nixos/fragments/backup.nix

···

       17
       17
        
           Backup related

     

       18
       18
        
         '';

     

       19
       19
        
       

     

       20
       20
       +
         # TODO: fix module

     

       21
       21
       +
         config.assertions = lib.optional cfg.enable { assertion = false; message = "module is broken"; };

     

       22
       22
       +
       

     

       20
       23
        
         config.services.restic.backups = lib.mkIf cfg.enable {

     

       21
       24
        
           # Backup documents and repos code

     

       22
       25
        
           google-drive = {

-3

nixos/profiles/laptop.nix

···

       24
       24
        
             virtualisation.enable = true;

     

       25
       25
        
             wireless.enable = true;

     

       26
       26
        
             fonts.enable = true;

     

       27
       27
       -
       

     

       28
       28
       -
             # TODO: fix module first

     

       29
       29
       -
             # backup.enable = true;

     

       30
       27
        
           };

     

       31
       28
        
       

     

       32
       29
        
           networking.hosts = {

+6 -9

shells.nix

···

       1
       1
       -
       { self

     

       2
       2
       -
       , lib

     

       3
       3
       -
       , lpkgs

     

       4
       4
       -
       , system

     

       1
       1
       +
       { lpkgs

     

       5
       2
        
       , ...

     

       6
       3
        
       }@pkgs:

     

       7
       4
        
       

     

       8
       5
        
       let

     

       9
       9
       -
         inherit (self.outputs) packages;

     

       10
       10
       -
       

     

       11
       11
       -
         allSelfPackages = lib.mapAttrsToList (_: value: value) packages.${system};

     

       12
       12
       -
       

     

       13
       6
        
         mkPackageShell = packages: pkgs.mkShell { inherit packages; };

     

       14
       7
        
       in

     

       15
       8
        
       

     

       16
       9
        
       {

     

       17
       10
        
         # Import packages of this flake along with useful tools for managing dotfiles

     

       18
       18
       -
         default = mkPackageShell (with pkgs; [ just lpkgs.agenix ]);

     

       11
       11
       +
         default = mkPackageShell (with pkgs; [

     

       12
       12
       +
           lpkgs.agenix

     

       13
       13
       +
           home-manager

     

       14
       14
       +
           just

     

       15
       15
       +
         ]);

     

       19
       16
        
       

     

       20
       17
        
         # Add presets that I can quickly use

     

       21
       18