koi.rip
my nixos dotfiles :3 (git.koi.rip mirror)
git.koi.rip/koi/dotfiles
linux
dotfiles
neovim
nixos
catppuccin
seber: init robin maivi
+76
-9
+4
-4
flake.lock
+4
-4
flake.lock
···
35
35
]
36
36
},
37
37
"locked": {
38
-
"lastModified": 1768225894,
39
-
"narHash": "sha256-HmD2vWtO6SJYF20v2nsGKNLo/boUe49Mh/tn1lQYohs=",
40
-
"rev": "f6e93e1fde5dbaa8844f72eae06029872319ed20",
38
+
"lastModified": 1768305053,
39
+
"narHash": "sha256-2ZduskzDupOrSnH3SxhoeVjFFWqRSUWHoO1HMKx6nEI=",
40
+
"rev": "be48a546591dd43a60c63372319f0212d2fb3655",
41
41
"type": "tarball",
42
-
"url": "https://codeberg.org/api/v1/repos/koibtw/anvim/archive/f6e93e1fde5dbaa8844f72eae06029872319ed20.tar.gz?rev=f6e93e1fde5dbaa8844f72eae06029872319ed20"
42
+
"url": "https://codeberg.org/api/v1/repos/koibtw/anvim/archive/be48a546591dd43a60c63372319f0212d2fb3655.tar.gz?rev=be48a546591dd43a60c63372319f0212d2fb3655"
43
43
},
44
44
"original": {
45
45
"type": "tarball",
+1
home/modules/programs/default.nix
+1
home/modules/programs/default.nix
+9
home/modules/programs/gpg.nix
+9
home/modules/programs/gpg.nix
+1
systems/seber/services/default.nix
+1
systems/seber/services/default.nix
-5
systems/seber/services/ebil-club.nix
-5
systems/seber/services/ebil-club.nix
···
89
89
sshPubkey = "ssh-rsa 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";
90
90
})
91
91
(mkSite {
92
-
name = "robin";
93
-
sshPubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDeSHaoF0Qs1G8JO/enOo2vxzkvvOqAMZPG2DX7TgG8u";
94
-
canonical = "robinwobin.dev";
95
-
})
96
-
(mkSite {
97
92
name = "evergarden";
98
93
sshPubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAyvnWmxdPq+ztt2GevfT+Yc4E6X/uSHc4tfD2nwc1vq";
99
94
canonical = "evergarden.moe";
+61
systems/seber/services/robin.nix
+61
systems/seber/services/robin.nix
···
1
+
let
2
+
tls = {
3
+
forceSSL = true;
4
+
sslCertificate = "/run/agenix/ssl-adamperkowski-cert";
5
+
sslCertificateKey = "/run/agenix/ssl-adamperkowski-key";
6
+
};
7
+
in
8
+
{
9
+
nix.settings.trusted-users = [ "robin" ];
10
+
11
+
users = {
12
+
groups.robin = { };
13
+
users.robin = {
14
+
group = "robin";
15
+
home = "/var/robin";
16
+
createHome = false;
17
+
isNormalUser = true;
18
+
hashedPassword = "!";
19
+
openssh.authorizedKeys.keys = [
20
+
"no-agent-forwarding,no-port-forwarding,no-pty,no-user-rc,no-X11-forwarding ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDeSHaoF0Qs1G8JO/enOo2vxzkvvOqAMZPG2DX7TgG8u"
21
+
];
22
+
};
23
+
};
24
+
25
+
systemd.tmpfiles.rules = [ "d /var/robin 2755 robin robin -" ];
26
+
27
+
systemd.user.services.maivi = {
28
+
description = "maivi :3";
29
+
after = [ "network.target" ];
30
+
wantedBy = [ "multi-user.target" ];
31
+
32
+
unitConfig.ConditionUser = "robin";
33
+
serviceConfig = {
34
+
ExecStart = "/var/robin/maivi";
35
+
Restart = "on-failure";
36
+
RestartSec = 20;
37
+
};
38
+
};
39
+
40
+
services.nginx.virtualHosts = {
41
+
"robinwobin.dev" = (
42
+
{
43
+
locations."/" = {
44
+
proxyPass = "http://127.0.0.1:8008";
45
+
extraConfig = ''
46
+
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
47
+
proxy_set_header X-Forwarded-Proto $scheme;
48
+
proxy_set_header Host $host;
49
+
'';
50
+
};
51
+
}
52
+
// tls
53
+
);
54
+
"robin.ebil.club" = (
55
+
{
56
+
locations."/".return = "307 https://robinwobin.dev$request_uri";
57
+
}
58
+
// tls
59
+
);
60
+
};
61
+
}