diff options
-rw-r--r-- | abbenay/configuration.nix | 9 | ||||
-rw-r--r-- | abbenay/hydra.nix | 24 | ||||
-rw-r--r-- | common/desktop.nix | 2 |
3 files changed, 32 insertions, 3 deletions
diff --git a/abbenay/configuration.nix b/abbenay/configuration.nix index 62a4a58..99f8a97 100644 --- a/abbenay/configuration.nix +++ b/abbenay/configuration.nix @@ -3,14 +3,18 @@ { imports = [ ./hardware-configuration.nix - ./hpc.nix + ./hydra.nix ]; services.avahi.enable = true; services.avahi.nssmdns = true; + services.openssh.enable = true; + users.users.stuebinm.openssh.authorizedKeys.keys = [ + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIH8e9WrHsknoFwBm/YaigOSz9VI8dXRRR5G9BX4kKt9/ stuebinm@ilex" + ]; + environment.systemPackages = with pkgs; [ - gnome3.gnome-tweaks flatpak # for mounting samba cifs-utils @@ -26,6 +30,7 @@ # networkmanager shouldn't handle nixos container networkmanager.unmanaged = [ "interface-name:ve-*" ]; }; + # nixos containers should have internet access networking.nat = { enable = true; diff --git a/abbenay/hydra.nix b/abbenay/hydra.nix new file mode 100644 index 0000000..2669aec --- /dev/null +++ b/abbenay/hydra.nix @@ -0,0 +1,24 @@ +{ config, lib, pkgs, ... }: + +{ + services.hydra = { + enable = true; + hydraURL = "http://abbenay:3000"; + buildMachinesFiles = []; + useSubstitutes = true; + minimumDiskFree = 10; + notificationSender = "hydra@abbenay"; + }; + + nix.settings.allowed-uris = [ + "https:" + "ssh:" + "path:" + "http:" + ]; + + # required because of ancient state version defaulting to postgresql 11 + services.postgresql.package = pkgs.postgresql; + + networking.firewall.allowedTCPPorts = [ 3000 ]; +} diff --git a/common/desktop.nix b/common/desktop.nix index 89bd86d..158ce0b 100644 --- a/common/desktop.nix +++ b/common/desktop.nix @@ -34,7 +34,7 @@ nix.settings.trusted-users = [ "root" "@wheel" ]; services.syncthing = { - enable = true; + enable = false; user = "stuebinm"; guiAddress = "syncthing.localhost:3000"; dataDir = "/home/stuebinm/syncthing"; |