161 lines
4.3 KiB
Nix
161 lines
4.3 KiB
Nix
{
|
|
description = "cy's flake";
|
|
|
|
inputs = {
|
|
nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";
|
|
sops-nix = {
|
|
url = "github:Mic92/sops-nix";
|
|
inputs.nixpkgs.follows = "nixpkgs";
|
|
};
|
|
home-manager = {
|
|
url = "github:nix-community/home-manager";
|
|
inputs.nixpkgs.follows = "nixpkgs";
|
|
};
|
|
treefmt = {
|
|
url = "github:numtide/treefmt-nix";
|
|
inputs.nixpkgs.follows = "nixpkgs";
|
|
};
|
|
disko = {
|
|
url = "github:nix-community/disko/latest";
|
|
inputs.nixpkgs.follows = "nixpkgs";
|
|
};
|
|
lanzaboote = {
|
|
url = "github:nix-community/lanzaboote/v0.4.1";
|
|
inputs.nixpkgs.follows = "nixpkgs";
|
|
};
|
|
nixvim = {
|
|
url = "github:nix-community/nixvim";
|
|
inputs.nixpkgs.follows = "nixpkgs";
|
|
};
|
|
flake-parts.url = "github:hercules-ci/flake-parts";
|
|
flake-parts.inputs.nixpkgs-lib.follows = "nixpkgs";
|
|
|
|
nixpkgs-btrbk.url = "github:cything/nixpkgs/btrbk"; # unmerged PR
|
|
nixpkgs-garage.url = "github:cything/nixpkgs/garage-module"; # unmerged PR
|
|
};
|
|
|
|
nixConfig = {
|
|
extra-substituters = [
|
|
"https://cache.cything.io/central"
|
|
"https://cache.cything.io/infra-ci"
|
|
"https://cache.cything.io/attic"
|
|
];
|
|
extra-trusted-public-keys = [
|
|
"central:uWhjva6m6dhC2hqNisjn2hXGvdGBs19vPkA1dPEuwFg="
|
|
"infra-ci:xG5f5tddUBcvToYjlpHD5OY/puYQkKmgKeIQCshNs38="
|
|
"attic:HL3hVpqXxwcF7Q1R+IvU2i0+YxIjQA2xxKM5EJMXLLs="
|
|
];
|
|
builders-use-substitutes = true;
|
|
};
|
|
|
|
outputs =
|
|
inputs@{ flake-parts, nixpkgs, home-manager, disko, ...}:
|
|
flake-parts.lib.mkFlake { inherit inputs; } {
|
|
systems = [
|
|
"x86_64-linux"
|
|
];
|
|
imports = [
|
|
inputs.treefmt.flakeModule
|
|
];
|
|
perSystem =
|
|
{
|
|
self',
|
|
system,
|
|
...
|
|
}:
|
|
{
|
|
treefmt = {
|
|
projectRootFile = "flake.nix";
|
|
programs.nixfmt.enable = true;
|
|
programs.stylua.enable = true;
|
|
programs.yamlfmt.enable = true;
|
|
programs.typos.enable = true;
|
|
programs.shellcheck.enable = true;
|
|
programs.deadnix.enable = true;
|
|
|
|
settings.global.excludes = [ "secrets/*" ];
|
|
};
|
|
};
|
|
|
|
flake.nixosConfigurations =
|
|
let
|
|
lib = nixpkgs.lib;
|
|
|
|
overlays = [
|
|
# (overlayPkgsFromFlake inputs.eza [
|
|
# ])
|
|
] ++ import ./overlay;
|
|
|
|
pkgs =
|
|
import nixpkgs {
|
|
inherit overlays;
|
|
config = {
|
|
allowUnfree = true;
|
|
};
|
|
};
|
|
in
|
|
{
|
|
ytnix = lib.nixosSystem {
|
|
specialArgs = { inherit inputs; };
|
|
modules = [
|
|
{
|
|
nixpkgs = { inherit pkgs; };
|
|
}
|
|
./hosts/ytnix
|
|
inputs.sops-nix.nixosModules.sops
|
|
./modules
|
|
inputs.lanzaboote.nixosModules.lanzaboote
|
|
];
|
|
};
|
|
|
|
chunk = lib.nixosSystem {
|
|
specialArgs = { inherit inputs; };
|
|
modules = [
|
|
{
|
|
nixpkgs = { inherit pkgs; };
|
|
disabledModules = [
|
|
"services/web-servers/garage.nix"
|
|
];
|
|
}
|
|
./hosts/chunk
|
|
inputs.sops-nix.nixosModules.sops
|
|
./modules
|
|
(inputs.nixpkgs-garage + "/nixos/modules/services/web-servers/garage.nix")
|
|
];
|
|
};
|
|
|
|
titan = lib.nixosSystem {
|
|
specialArgs = { inherit inputs; };
|
|
modules = [
|
|
{
|
|
nixpkgs = { inherit pkgs; };
|
|
}
|
|
./hosts/titan
|
|
disko.nixosModules.disko
|
|
inputs.sops-nix.nixosModules.sops
|
|
./modules
|
|
];
|
|
};
|
|
};
|
|
|
|
# homeConfigurations = {
|
|
# "yt@ytnix" = home-manager.lib.homeManagerConfiguration {
|
|
# inherit pkgs;
|
|
# extraSpecialArgs = { inherit inputs; };
|
|
# modules = [
|
|
# ./home/yt/ytnix.nix
|
|
# inputs.nixvim.homeManagerModules.nixvim
|
|
# ];
|
|
# };
|
|
#
|
|
# "yt@chunk" = home-manager.lib.homeManagerConfiguration {
|
|
# inherit pkgs;
|
|
# extraSpecialArgs = { inherit inputs; };
|
|
# modules = [
|
|
# ./home/yt/chunk.nix
|
|
# inputs.nixvim.homeManagerModules.nixvim
|
|
# ];
|
|
# };
|
|
# };
|
|
};
|
|
}
|