NixOSConfig/flake.nix

{
  description = "NixOS Machine Configurations by manuth";

  inputs = {
    nixpkgs.url = "nixpkgs/f7207adcc68d9cafa29e3cd252a18743ae512c6a";
    flake-utils.url = "github:numtide/flake-utils?ref=b1d9ab70662946ef0850d488da1c9019f3a9752a";

    home-manager = {
      url = "github:nix-community/home-manager?ref=892f76bd0aa09a0f7f73eb41834b8a904b6d0fad";
      inputs.nixpkgs.follows = "nixpkgs";
    };

    sops-nix.url = "github:Mic92/sops-nix?ref=c279dec105dd53df13a5e57525da97905cc0f0d6";

    minegrub-theme = {
      url = "github:Lxtharia/minegrub-theme?ref=08fe7f2b07e0f39426d53e1a1ab5b071e77b9e39";
      inputs.nixpkgs.follows = "nixpkgs";
    };
  };

  outputs = { self, nixpkgs, flake-utils, home-manager, sops-nix, minegrub-theme }: (
    let
      inherit (nixpkgs) lib;

      defaultMachine = {
        system = "x86_64-linux";
        modules = [ ];

        config = { pkgs, ... }: {
          dualBoot = false;
          timeZone = "Europe/Zurich";
          keyMap = "de_CH-latin1";
          keyboardLayout = "ch";
          localeSettings =
            let defaultLocale = "en_US.UTF-8";
            in {
              LANG = "de_CH.UTF-8";
              LANGUAGE = defaultLocale;
              LC_MESSAGE = defaultLocale;
            };
          nvidia = true;
          xone = true;
          users = {
            manuel = {
              fullName = "Manuel Thalmann";
              mail = "m@nuth.ch";
              sudoer = true;
              defaultShell = pkgs.fish;
            };
          };
        };
      };

      machineDefinitions = {
        nixos.config = { ... }: {
        };
        manu-surface.config = { ... }: {
        };
      };

      machines = builtins.mapAttrs (
        name: machineDefinition:
          defaultMachine // machineDefinition // {
            config = { callPackage, ... }:
              ((callPackage defaultMachine.config { }) // (callPackage machineDefinition.config { }));
          })
        machineDefinitions;

      tryFiles = import ./lib/utils/try-files.nix { inherit lib; };

      xonePatcher = { fetchFromGitHub, xone }:
        xone.overrideAttrs (
          final: prev: {
            src = fetchFromGitHub {
                owner = "manuth";
                repo = "xone";
                rev = "954fc823fbaa429ad6e1c1a06a4a006598ef35ae";
                sha256 = "lsfm7WDXTB6t05AI/pp17yZvkNvnM2WBMUHL1eVO6qw=";
            };
          });

      packageDefinitions = {
        aliae = { buildGoModule, fetchFromGitHub, installShellFiles, ... }:
          buildGoModule rec {
            name = "aliae";
            version = "0.21.0";

            src = fetchFromGitHub {
              owner = "JanDeDobbeleer";
              repo = name;
              rev = "v${version}";
              sha256 = "Xg3fJs10euju26iJky5UGGGKov47Q16IZQP28ubNca0=";
            };

            nativeBuildInputs = [
              installShellFiles
            ];

            sourceRoot = "${src.name}/src";
            vendorHash = "sha256-sXZ6Rdqy6VtYlQ3UoNWpgdri61b6aX+uAzLVa/y1lbU=";

            postInstall = ''
              mv $out/bin/{src,aliae}
              installShellCompletion --cmd aliae \
                --bash <($out/bin/aliae completion bash) \
                --fish <($out/bin/aliae completion fish) \
                --zsh <($out/bin/aliae completion zsh)
            '';
          };

        xone = pkgs: xonePatcher {
          inherit (pkgs) fetchFromGitHub;
          inherit (pkgs.linuxPackages_latest) xone;
        };
      };
    in
      flake-utils.lib.eachDefaultSystem (
        system:
          let
            pkgs = import nixpkgs {
              inherit system;
              config = {};

              overlays = [
                sops-nix.overlays.default
              ];
            };
          in {
            packages = (builtins.mapAttrs (name: packageDefinition: pkgs.callPackage packageDefinition { }) packageDefinitions) // {
              rcloneDocs =
                let
                  module = lib.evalModules {
                    modules = [
                      ({ pkgs, ... }@args: {
                        inherit (import ./lib/modules/rclone.nix args) options;
                      })
                    ];
                  };

                  optionsDoc = pkgs.nixosOptionsDoc {
                    options = module.options;
                  };
                in
                  pkgs.runCommand "options-doc.md" {} ''
                      cat ${optionsDoc.optionsCommonMark} >> $out
                  '';
            };

            devShells.default = pkgs.mkShellNoCC (
              with pkgs;
              {
                sopsPGPKeyDirs = [ 
                  "${toString ./.}/secrets/keys/hosts"
                  "${toString ./.}/secrets/keys/users"
                ];

                packages = [
                  mkpasswd
                  nixos-rebuild
                  sops
                  sops-import-keys-hook
                  ssh-to-age
                  ssh-to-pgp
                ];

                nativeBuildInputs = [
                  sops-import-keys-hook
                ];
              });
          }
      ) // {
        overlays.default =
          final: prev: (
            {
              linuxPackages_latest.xone = packageDefinitions.xone final;
            } //
            (lib.attrsets.concatMapAttrs (
              name: package:
                if name == "xone"
                then {}
                else {
                  ${name} = package final;
                })
              packageDefinitions));

        nixosConfigurations =
            builtins.mapAttrs (
              hostname: { system, config, modules }@machine: nixpkgs.lib.nixosSystem {
                inherit system;

                modules = [
                  (
                    { pkgs, ... }: {
                      config = {
                        _module.args = {
                          machine = machine // {
                            name = hostname;
                            config = (pkgs.callPackage config { });
                          };
                        };

                        nixpkgs.overlays = [
                          self.overlays.default
                        ];

                        home-manager.sharedModules = [
                          sops-nix.homeManagerModules.sops
                        ];
                      };
                    })
                  home-manager.nixosModules.home-manager
                  minegrub-theme.nixosModules.default
                  sops-nix.nixosModules.sops
                  ./lib/configuration.nix
                  (tryFiles [ ./lib/machines/${hostname}.nix ] ./lib/hardware/base.nix)
                ] ++ modules;
              })
              machines;

        homeConfigurations =
          let
            lib = nixpkgs.lib;
          in
            lib.attrsets.concatMapAttrs (
              hostname: machine:
                let
                  pkgs = import nixpkgs {
                    inherit (machine) system;
                  };

                  machineConfig = pkgs.callPackage machine.config { };
                in
                  lib.attrsets.concatMapAttrs (
                    username: user: {
                      "${username}@${hostname}" = home-manager.lib.homeManagerConfiguration {
                        modules =
                          let
                            getUserModule = pkgs.callPackage (import ./lib/utils/user-module.nix);
                          in
                            getUserModule {
                              machine = machine // {
                                name = hostname;
                                config = machineConfig;
                              };

                              user = {
                                name = username;
                              } // user;
                            } ++ [
                              sops-nix.homeManagerModules.sops
                            ];
                      };
                    })
                  machineConfig.users)
              machines;
      });
}
Add a configuration for flakes 2023-12-01 11:29:39 +00:00			`{`
Normalize format of `nix` files 2024-05-01 12:00:39 +00:00			`description = "NixOS Machine Configurations by manuth";`
Add a configuration for flakes 2023-12-01 11:29:39 +00:00
Normalize format of `nix` files 2024-05-01 12:00:39 +00:00			`inputs = {`
Update all packages 2024-06-12 01:07:46 +00:00			`nixpkgs.url = "nixpkgs/f7207adcc68d9cafa29e3cd252a18743ae512c6a";`
Add a development shell 2024-05-01 16:14:25 +00:00			`flake-utils.url = "github:numtide/flake-utils?ref=b1d9ab70662946ef0850d488da1c9019f3a9752a";`
Set up home-manager properly 2024-05-09 00:06:59 +00:00
			`home-manager = {`
Update all packages 2024-06-12 01:07:46 +00:00			`url = "github:nix-community/home-manager?ref=892f76bd0aa09a0f7f73eb41834b8a904b6d0fad";`
Set up home-manager properly 2024-05-09 00:06:59 +00:00			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`

Update all packages 2024-06-12 01:07:46 +00:00			`sops-nix.url = "github:Mic92/sops-nix?ref=c279dec105dd53df13a5e57525da97905cc0f0d6";`
Install `minegrub-theme` 2024-05-09 09:52:28 +00:00
			`minegrub-theme = {`
			`url = "github:Lxtharia/minegrub-theme?ref=08fe7f2b07e0f39426d53e1a1ab5b071e77b9e39";`
			`inputs.nixpkgs.follows = "nixpkgs";`
			`};`
Normalize format of `nix` files 2024-05-01 12:00:39 +00:00			`};`
Add a configuration for flakes 2023-12-01 11:29:39 +00:00
Install `minegrub-theme` 2024-05-09 09:52:28 +00:00			`outputs = { self, nixpkgs, flake-utils, home-manager, sops-nix, minegrub-theme }: (`
Simplify trying to import files 2024-05-08 22:50:42 +00:00			`let`
			`inherit (nixpkgs) lib;`
Allow configuring user homes 2024-05-08 22:59:02 +00:00
			`defaultMachine = {`
			`system = "x86_64-linux";`
Move modules out of config function 2024-06-11 23:35:30 +00:00			`modules = [ ];`
Allow configuring user homes 2024-05-08 22:59:02 +00:00
			`config = { pkgs, ... }: {`
			`dualBoot = false;`
Configure default settings 2024-05-20 15:24:45 +00:00			`timeZone = "Europe/Zurich";`
			`keyMap = "de_CH-latin1";`
			`keyboardLayout = "ch";`
			`localeSettings =`
			`let defaultLocale = "en_US.UTF-8";`
			`in {`
			`LANG = "de_CH.UTF-8";`
			`LANGUAGE = defaultLocale;`
			`LC_MESSAGE = defaultLocale;`
			`};`
Enable nvidia drivers 2024-05-07 22:33:39 +00:00			`nvidia = true;`
Enable `xone` 2024-05-08 07:58:27 +00:00			`xone = true;`
Add a personal user 2024-05-20 19:44:15 +00:00			`users = {`
			`manuel = {`
			`fullName = "Manuel Thalmann";`
			`mail = "m@nuth.ch";`
			`sudoer = true;`
Set the default shell to `fish` 2024-05-20 20:45:50 +00:00			`defaultShell = pkgs.fish;`
Add a personal user 2024-05-20 19:44:15 +00:00			`};`
			`};`
Allow configuring user homes 2024-05-08 22:59:02 +00:00			`};`
			`};`

Use more reasonable variable names 2024-05-10 23:19:06 +00:00			`machineDefinitions = {`
Allow configuring user homes 2024-05-08 22:59:02 +00:00			`nixos.config = { ... }: {`
			`};`
Add config for host `manu-surface` 2024-05-20 23:57:56 +00:00			`manu-surface.config = { ... }: {`
			`};`
Allow configuring user homes 2024-05-08 22:59:02 +00:00			`};`

Unify the machine configuration centrally 2024-05-10 23:22:32 +00:00			`machines = builtins.mapAttrs (`
			`name: machineDefinition:`
			`defaultMachine // machineDefinition // {`
Evaluate machine configs using `callPackage` 2024-05-10 23:33:56 +00:00			`config = { callPackage, ... }:`
			`((callPackage defaultMachine.config { }) // (callPackage machineDefinition.config { }));`
Unify the machine configuration centrally 2024-05-10 23:22:32 +00:00			`})`
			`machineDefinitions;`

Add a separate file for the `try-files` function 2024-05-08 23:04:55 +00:00			`tryFiles = import ./lib/utils/try-files.nix { inherit lib; };`
Add customized `xone` package 2024-05-08 07:58:18 +00:00
			`xonePatcher = { fetchFromGitHub, xone }:`
			`xone.overrideAttrs (`
			`final: prev: {`
			`src = fetchFromGitHub {`
			`owner = "manuth";`
			`repo = "xone";`
			`rev = "954fc823fbaa429ad6e1c1a06a4a006598ef35ae";`
			`sha256 = "lsfm7WDXTB6t05AI/pp17yZvkNvnM2WBMUHL1eVO6qw=";`
			`};`
			`});`
Install `aliae` 2024-05-09 11:58:36 +00:00
			`packageDefinitions = {`
			`aliae = { buildGoModule, fetchFromGitHub, installShellFiles, ... }:`
			`buildGoModule rec {`
			`name = "aliae";`
			`version = "0.21.0";`

			`src = fetchFromGitHub {`
			`owner = "JanDeDobbeleer";`
			`repo = name;`
			`rev = "v${version}";`
			`sha256 = "Xg3fJs10euju26iJky5UGGGKov47Q16IZQP28ubNca0=";`
			`};`

			`nativeBuildInputs = [`
			`installShellFiles`
			`];`

			`sourceRoot = "${src.name}/src";`
			`vendorHash = "sha256-sXZ6Rdqy6VtYlQ3UoNWpgdri61b6aX+uAzLVa/y1lbU=";`

			`postInstall = ''`
			`mv $out/bin/{src,aliae}`
			`installShellCompletion --cmd aliae \`
			`--bash <($out/bin/aliae completion bash) \`
			`--fish <($out/bin/aliae completion fish) \`
			`--zsh <($out/bin/aliae completion zsh)`
			`'';`
			`};`

			`xone = pkgs: xonePatcher {`
			`inherit (pkgs) fetchFromGitHub;`
			`inherit (pkgs.linuxPackages_latest) xone;`
			`};`
			`};`
Simplify trying to import files 2024-05-08 22:50:42 +00:00			`in`
			`flake-utils.lib.eachDefaultSystem (`
			`system:`
Normalize indentation 2024-05-10 23:28:15 +00:00			`let`
			`pkgs = import nixpkgs {`
			`inherit system;`
			`config = {};`
Install `sops-nix` 2024-05-01 23:08:45 +00:00
Normalize indentation 2024-05-10 23:28:15 +00:00			`overlays = [`
			`sops-nix.overlays.default`
Simplify trying to import files 2024-05-08 22:50:42 +00:00			`];`
Normalize indentation 2024-05-10 23:28:15 +00:00			`};`
			`in {`
Install `aliae` 2024-05-09 11:58:36 +00:00			`packages = (builtins.mapAttrs (name: packageDefinition: pkgs.callPackage packageDefinition { }) packageDefinitions) // {`
Add package for generating `rclone` docs 2024-05-16 00:25:41 +00:00			`rcloneDocs =`
			`let`
			`module = lib.evalModules {`
			`modules = [`
			`({ pkgs, ... }@args: {`
			`inherit (import ./lib/modules/rclone.nix args) options;`
			`})`
			`];`
			`};`

			`optionsDoc = pkgs.nixosOptionsDoc {`
			`options = module.options;`
			`};`
			`in`
			`pkgs.runCommand "options-doc.md" {} ''`
			`cat ${optionsDoc.optionsCommonMark} >> $out`
			`'';`
			`};`

Normalize indentation 2024-05-10 23:28:15 +00:00			`devShells.default = pkgs.mkShellNoCC (`
			`with pkgs;`
			`{`
			`sopsPGPKeyDirs = [`
Add the public key to the repository 2024-05-03 12:07:10 +00:00			`"${toString ./.}/secrets/keys/hosts"`
			`"${toString ./.}/secrets/keys/users"`
Normalize indentation 2024-05-10 23:28:15 +00:00			`];`
Install `sops-nix` 2024-05-01 23:08:45 +00:00
Normalize indentation 2024-05-10 23:28:15 +00:00			`packages = [`
Update `default_password` to include a hash instead of plain text 2024-05-03 12:03:42 +00:00			`mkpasswd`
Normalize indentation 2024-05-10 23:28:15 +00:00			`nixos-rebuild`
			`sops`
			`sops-import-keys-hook`
			`ssh-to-age`
			`ssh-to-pgp`
			`];`
Install `sops-nix` 2024-05-01 23:08:45 +00:00
Normalize indentation 2024-05-10 23:28:15 +00:00			`nativeBuildInputs = [`
			`sops-import-keys-hook`
			`];`
			`});`
			`}`
Simplify trying to import files 2024-05-08 22:50:42 +00:00			`) // {`
Include `xone` patches directly 2024-05-09 08:17:52 +00:00			`overlays.default =`
Install `aliae` 2024-05-09 11:58:36 +00:00			`final: prev: (`
			`{`
			`linuxPackages_latest.xone = packageDefinitions.xone final;`
			`} //`
			`(lib.attrsets.concatMapAttrs (`
			`name: package:`
			`if name == "xone"`
			`then {}`
			`else {`
			`${name} = package final;`
			`})`
			`packageDefinitions));`
Include `xone` patches directly 2024-05-09 08:17:52 +00:00
Simplify trying to import files 2024-05-08 22:50:42 +00:00			`nixosConfigurations =`
			`builtins.mapAttrs (`
Move modules out of config function 2024-06-11 23:35:30 +00:00			`hostname: { system, config, modules }@machine: nixpkgs.lib.nixosSystem {`
Simplify trying to import files 2024-05-08 22:50:42 +00:00			`inherit system;`
Restructure the interna of the flake 2024-05-01 16:58:39 +00:00
Simplify trying to import files 2024-05-08 22:50:42 +00:00			`modules = [`
			`(`
Evaluate machine configs using `callPackage` 2024-05-10 23:33:56 +00:00			`{ pkgs, ... }: {`
Add missing module to `home-manager` 2024-05-11 18:28:41 +00:00			`config = {`
			`_module.args = {`
			`machine = machine // {`
			`name = hostname;`
			`config = (pkgs.callPackage config { });`
			`};`
Pass machine info in a new variable 2024-05-11 17:40:01 +00:00			`};`
Add missing module to `home-manager` 2024-05-11 18:28:41 +00:00
Include `xone` patches directly 2024-05-09 08:17:52 +00:00			`nixpkgs.overlays = [`
			`self.overlays.default`
			`];`

Add missing module to `home-manager` 2024-05-11 18:28:41 +00:00			`home-manager.sharedModules = [`
			`sops-nix.homeManagerModules.sops`
			`];`
Simplify trying to import files 2024-05-08 22:50:42 +00:00			`};`
			`})`
Set up home-manager properly 2024-05-09 00:06:59 +00:00			`home-manager.nixosModules.home-manager`
Install `minegrub-theme` 2024-05-09 09:52:28 +00:00			`minegrub-theme.nixosModules.default`
Simplify trying to import files 2024-05-08 22:50:42 +00:00			`sops-nix.nixosModules.sops`
			`./lib/configuration.nix`
Use more reasonable variable names 2024-05-10 23:19:06 +00:00			`(tryFiles [ ./lib/machines/${hostname}.nix ] ./lib/hardware/base.nix)`
Move modules out of config function 2024-06-11 23:35:30 +00:00			`] ++ modules;`
Allow configuring user homes 2024-05-08 22:59:02 +00:00			`})`
Use more reasonable variable names 2024-05-10 23:19:06 +00:00			`machines;`
Allow configuring user homes 2024-05-08 22:59:02 +00:00
			`homeConfigurations =`
			`let`
			`lib = nixpkgs.lib;`
			`in`
			`lib.attrsets.concatMapAttrs (`
Use more reasonable variable names 2024-05-10 23:19:06 +00:00			`hostname: machine:`
Allow configuring user homes 2024-05-08 22:59:02 +00:00			`let`
			`pkgs = import nixpkgs {`
			`inherit (machine) system;`
			`};`
Evaluate machine configs using `callPackage` 2024-05-10 23:33:56 +00:00
			`machineConfig = pkgs.callPackage machine.config { };`
Allow configuring user homes 2024-05-08 22:59:02 +00:00			`in`
			`lib.attrsets.concatMapAttrs (`
			`username: user: {`
Set up home-manager properly 2024-05-09 00:06:59 +00:00			`"${username}@${hostname}" = home-manager.lib.homeManagerConfiguration {`
Allow configuring user homes 2024-05-08 22:59:02 +00:00			`modules =`
			`let`
Streamline creation of user modules 2024-05-11 19:35:13 +00:00			`getUserModule = pkgs.callPackage (import ./lib/utils/user-module.nix);`
			`in`
			`getUserModule {`
			`machine = machine // {`
			`name = hostname;`
			`config = machineConfig;`
			`};`

			`user = {`
			`name = username;`
			`} // user;`
			`} ++ [`
			`sops-nix.homeManagerModules.sops`
			`];`
Allow configuring user homes 2024-05-08 22:59:02 +00:00			`};`
			`})`
Evaluate machine configs using `callPackage` 2024-05-10 23:33:56 +00:00			`machineConfig.users)`
Allow configuring user homes 2024-05-08 22:59:02 +00:00			`machines;`
			`});`
Add a configuration for flakes 2023-12-01 11:29:39 +00:00			`}`