ItsDrike/nixdots
1
0
Fork 0
mirror of https://github.com/ItsDrike/nixdots synced 2024-09-19 23:29:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

Actually enforce the roles

Browse source
This commit is contained in:
ItsDrike 2024-04-13 21:15:25 +02:00
parent 01e3567653
commit dd00ed5f70
Signed by: ItsDrike
GPG key ID: FA2745890B7048C0
9 changed files with 238 additions and 193 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
hosts/herugrim/default.nix
View file

@ -59,6 +59,10 @@
hasTPM = true; hasTPM = true;
}; };
workstation = {
printing.enable = true;
};
home-manager = { home-manager = {
enable = true; enable = true;
stateVersion = "23.11"; stateVersion = "23.11";

5
system/roles/default.nix
View file

@ -1,4 +1,9 @@
{ {
# We import all of the roles here, with the type checks being handled
# in the individual files each time. This is a bit ugly, but necessary
# as NixOS doesn't support optional imports, due to circual imports
# (there might be a change of the config value inside one of the
# imported files).
imports = [ imports = [
./workstation ./workstation
./laptop ./laptop

8
system/roles/laptop/power/default.nix
View file

@ -1,6 +1,9 @@
{lib, config, pkgs, ...}: let { pkgs, lib, config, ...}: let
inherit (lib) mkDefault; inherit (lib) mkIf mkDefault;
deviceType = config.myOptions.device.roles.type;
acceptedTypes = ["laptop"];
in { in {
config = mkIf (builtins.elem deviceType acceptedTypes) {
hardware.acpilight.enable = true; hardware.acpilight.enable = true;
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
@ -63,4 +66,5 @@ in{
cpupower cpupower
]; ];
}; };
};
} }

8
system/roles/laptop/touchpad.nix
View file

@ -1,4 +1,9 @@
{ { lib, config, ...}: let
inherit (lib) mkIf;
deviceType = config.myOptions.device.roles.type;
acceptedTypes = ["laptop"];
in {
config = mkIf (builtins.elem deviceType acceptedTypes) {
services.xserver.libinput = { services.xserver.libinput = {
# enable libinput # enable libinput
enable = true; enable = true;
@ -19,4 +24,5 @@
disableWhileTyping = true; disableWhileTyping = true;
}; };
}; };
};
} }

8
system/roles/workstation/fonts.nix
View file

@ -1,4 +1,9 @@
{pkgs, ...}: { {pkgs, lib, config, ...}: let
inherit (lib) mkIf;
deviceType = config.myOptions.device.roles.type;
acceptedTypes = ["laptop" "desktop"];
in {
config = mkIf (builtins.elem deviceType acceptedTypes) {
fonts = { fonts = {
enableDefaultPackages = false; enableDefaultPackages = false;
@ -90,4 +95,5 @@
}) })
]; ];
}; };
};
} }

8
system/roles/workstation/programs/misc.nix
View file

@ -1,4 +1,9 @@
{ { lib, config, ...}: let
inherit (lib) mkIf;
deviceType = config.myOptions.device.roles.type;
acceptedTypes = ["laptop" "desktop"];
in {
config = mkIf (builtins.elem deviceType acceptedTypes) {
programs = { programs = {
# allow non-root users to mount fuse filesystems with allow_other # allow non-root users to mount fuse filesystems with allow_other
fuse.userAllowOther = true; fuse.userAllowOther = true;
@ -12,4 +17,5 @@
# gnome's keyring manager # gnome's keyring manager
seahorse.enable = true; seahorse.enable = true;
}; };
};
} }

8
system/roles/workstation/services/earlyoom.nix
View file

@ -1,4 +1,9 @@
{pkgs, ...}: { {pkgs, lib, config, ...}: let
inherit (lib) mkIf;
deviceType = config.myOptions.device.roles.type;
acceptedTypes = ["laptop" "desktop"];
in {
config = mkIf (builtins.elem deviceType acceptedTypes) {
# https://dataswamp.org/~solene/2022-09-28-earlyoom.html # https://dataswamp.org/~solene/2022-09-28-earlyoom.html
# avoid the linux kernel locking itself when we're putting too much strain on the memory # avoid the linux kernel locking itself when we're putting too much strain on the memory
# this helps avoid having to shut down forcefully when we OOM # this helps avoid having to shut down forcefully when we OOM
@ -19,4 +24,5 @@
echo "Process $EARLYOOM_NAME ($EARLYOOM_PID) was killed" echo "Process $EARLYOOM_NAME ($EARLYOOM_PID) was killed"
''; '';
}; };
};
} }

9
system/roles/workstation/services/mount.nix
View file

@ -1,5 +1,9 @@
{ config, ... }: { lib, config, ...}: let
{ inherit (lib) mkIf;
deviceType = config.myOptions.device.roles.type;
acceptedTypes = ["laptop" "desktop"];
in {
config = mkIf (builtins.elem deviceType acceptedTypes) {
services = { services = {
# enable GVfs, a userspace virtual filesystem # enable GVfs, a userspace virtual filesystem
# (allows viewing ftp,sftp,... directly from the file manager) # (allows viewing ftp,sftp,... directly from the file manager)
@ -8,4 +12,5 @@
# Storage daemon required for udiskie auto-mount # Storage daemon required for udiskie auto-mount
udisks2.enable = !config.boot.isContainer; udisks2.enable = !config.boot.isContainer;
}; };
};
} }

7
system/roles/workstation/services/printing.nix
View file

@ -1,9 +1,12 @@
{ config, lib, pkgs, ... }: let { pkgs, lib, config, ...}: let
inherit (lib) mkIf; inherit (lib) mkIf;
deviceType = config.myOptions.device.roles.type;
acceptedTypes = ["laptop" "desktop"];
cfg = config.myOptions.workstation.printing; cfg = config.myOptions.workstation.printing;
in { in {
config = mkIf cfg.enable {
config = mkIf (builtins.elem deviceType acceptedTypes && cfg.enable) {
# enable cups and add some drivers for common printers # enable cups and add some drivers for common printers
services = { services = {
printing = { printing = {