Rebase to flake parts #1

2026-05-01 15:00:10 -03:00
commit 37a394265b
176 changed files with 30782 additions and 0 deletions
@@ -0,0 +1,165 @@
+{ self, inputs, ... }: {
+  flake.nixosModules."14900kConfiguration" =
+    { self, config, pkgs, ... }:
+    {
+      imports = [
+        self.nixosModules."14900kHardware"
+        inputs.home-manager.nixosModules.home-manager
+        inputs.sops-nix.nixosModules.sops
+
+        self.nixosModules.system
+        self.nixosModules.desktop
+        self.nixosModules.users
+
+        self.nixosModules."client-services"
+        ./_private/platform.nix
+        ./_private/nvidia.nix
+        ./_private/peripherals.nix
+        ./_private/displays.nix
+      ];
+
+      sops = {
+        defaultSopsFile = ../../../secrets/secrets.yaml;
+        defaultSopsFormat = "yaml";
+        age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
+      };
+
+      sops.secrets."caching/attic/token" = {
+        owner = "olivier";
+        group = "users";
+        mode = "0400";
+      };
+
+      sops.secrets."users/olivier/hashedPassword".neededForUsers = true;
+      sops.secrets."swiftshare/API_KEY" = {
+        owner = "olivier";
+        group = "users";
+        mode = "0400";
+      };
+
+
+      chiasson.system.caching.attic = {
+        enable = true;
+        cacheName = "nixos-new";
+        endpoint = "http://192.168.2.238:8080/";
+        publicKey = "nixos-new:8NySIcT0HP7KvGQKgBRWoWESxxRA8BVYo8S85UNpNX0=";
+        tokenFile = config.sops.secrets."caching/attic/token".path;
+        push.enable = true;
+        userCli.enable = true;
+      };
+
+      chiasson.desktop = {
+        niri.enable = true;
+        defaultSession = "niri";
+        shell = "dms";
+        shells.dms = {
+          rebuildCommand = [
+            "sudo"
+            "nixos-rebuild"
+            "switch"
+            "--flake"
+            ".#14900k"
+          ];
+          enableRbwLockToggle = true;
+        };
+      };
+
+      chiasson.system = {
+        # libvirt/QEMU + VFIO; host uses Intel iGPU for Niri while NVIDIA is passed through (see
+        # `_private/nvidia.nix`, `_private/displays.nix`). If your GPU is not RTX 2070-class IDs, set
+        # `chiasson.system.vm.gpuPassthrough.vfioIds` from `lspci -nn` (GPU + HDA functions in the same group).
+        vm = {
+          enable = true;
+          gpuPassthrough.enable = false;
+        };
+
+        remoteDesktop = {
+          enable = false;
+          moonlight.enable = false;
+          sunshine.enable = false;
+        };
+        audio.enable = true;
+        docker.enable = true;
+        gaming.enable = true;
+        gaming.steam.steamTinkerLaunch.enable = true;
+
+        monitorInput.enable = true;
+
+        flatpak.enable = true;
+
+        palera1n.enable = true;
+        uconsoleKernelBuilder.enable = true;
+
+        extraPackages = [ pkgs.sops pkgs.nodejs_22 ];
+
+        networking = {
+          hostName = "nixdesk";
+          networkManager.enable = true;
+        };
+        librepods.enable = true;
+      };
+
+      chiasson.users.enabled = [ "olivier" ];
+
+      chiasson.users.extraModules.olivier = [
+        self.homeManagerModules.wisdomFilebrowsersDolphin
+        self.homeManagerModules.wisdomTerminalsKitty
+        self.homeManagerModules.wisdomBrowsersEdge
+        self.homeManagerModules.wisdomBrowsersFlow
+        self.homeManagerModules.wisdomEditorsCursor
+        self.homeManagerModules.wisdomEditorsObsidian
+        self.homeManagerModules.wisdomShellYazi
+        self.homeManagerModules.wisdomShellFish
+        self.homeManagerModules.wisdomShellOhMyPosh
+        self.homeManagerModules.wisdomAppsDiscord
+        self.homeManagerModules.wisdomAppsSpotify
+        self.homeManagerModules.wisdomAppsLocalsend
+        self.homeManagerModules.wisdomAppsPokeclicker
+        self.homeManagerModules.wisdomDesktopScreenshot
+        self.homeManagerModules.wisdomDesktopGtkQtTheming
+        {
+          programs.git = {
+            enable = true;
+            userName = "OlivierChiasson";
+            userEmail = "olivierchiasson@hotmail.fr";
+          };
+
+          chiasson.home = {
+            extraPackages = [ pkgs.parsec-bin ];
+
+            shell = {
+              fish.enable = true;
+              yazi.enable = true;
+              ohMyPosh.enable = true;
+            };
+
+            terminals.kitty.enable = true;
+
+            filebrowsers.dolphin.enable = true;
+
+            browsers.edge.enable = true;
+            browsers.flow.enable = false;
+
+            editors.cursor.enable = true;
+            editors.obsidian.enable = true;
+
+            apps = {
+              discord.enable = true;
+              spotify.enable = true;
+              spotify.openDiscoveryFirewall = true;
+              localsend.enable = true;
+              pokeclicker.enable = true;
+            };
+
+            desktop = {
+              screenshot = {
+                enable = true;
+                swiftshareApiKeyFile = "/run/secrets/swiftshare/API_KEY"; #TODO[epic=sops] redo this by passing sops file output directly
+              };
+              theming.enable = true;
+            };
+          };
+        }
+      ];
+    };
+}
@@ -0,0 +1,51 @@
+{ self, ... }: {
+
+  flake.nixosModules."14900kHardware" = # Do not modify this file!  It was generated by ‘nixos-generate-config’
+    # and may be overwritten by future invocations.  Please make changes
+    # in the host configuration module instead.
+    {
+      config,
+      lib,
+      pkgs,
+      modulesPath,
+      ...
+    }:
+    {
+      imports = [
+        (modulesPath + "/installer/scan/not-detected.nix")
+      ];
+
+      boot.initrd.availableKernelModules = [
+        "xhci_pci"
+        "ahci"
+        "nvme"
+        "usb_storage"
+        "usbhid"
+        "sd_mod"
+      ];
+      boot.initrd.kernelModules = [ ];
+      boot.kernelModules = [ "kvm-intel" ];
+      boot.extraModulePackages = [ ];
+
+      fileSystems."/" = {
+        device = "/dev/disk/by-uuid/cd97f638-a376-440b-8ea6-5aac3ab294cb";
+        fsType = "ext4";
+      };
+
+      fileSystems."/boot" = {
+        device = "/dev/disk/by-uuid/0BE7-0028";
+        fsType = "vfat";
+        options = [ "fmask=0077" "dmask=0077" ];
+      };
+
+      swapDevices = [
+        { device = "/dev/disk/by-uuid/603c6beb-cc25-49ba-b3fa-812f2e252513"; }
+      ];
+
+      networking.useDHCP = lib.mkDefault true;
+
+      nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
+      hardware.cpu.intel.updateMicrocode =
+        lib.mkDefault config.hardware.enableRedistributableFirmware;
+    };
+}