swarsel/.dotfiles
1
0
Fork 0
mirror of https://github.com/Swarsel/.dotfiles.git synced 2026-04-15 13:49:11 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: add persistent ids to all users/groups

Browse source
This commit is contained in:
Leon Schwarzäugl 2026-01-12 22:15:57 +01:00
parent 37a8e17cc9
commit 7f65f74fef
Signed by: swarsel
GPG key ID: 26A54C31F2A4FD84
62 changed files with 533 additions and 173 deletions
Download patch file Download diff file Expand all files Collapse all files

52
hosts/nixos/x86_64-linux/summers/default.nix
View file

@ -1,4 +1,4 @@
{ self, inputs, lib, minimal, ... }:
{ self, config, inputs, lib, minimal, confLib, ... }:
{
imports = [
@ -39,7 +39,7 @@
writeGlobalNetworks = false;
networkKernelModules = [ "igb" ];
rootDisk = "/dev/disk/by-id/ata-TS120GMTS420S_J024880123";
withMicroVMs = false;
withMicroVMs = true;
localVLANs = [ "services" "home" ]; # devices is only provided on interface for bmc
initrdVLAN = "home";
server = {
@ -83,7 +83,7 @@
acme = false; # cert handled by proxy
nfs = true;
kavita = true;
# kavita = true;
restic = true;
jellyfin = true;
navidrome = true;
@ -109,29 +109,29 @@
opkssh = true;
};
# guests = lib.mkIf (!minimal && config.swarselsystems.withMicroVMs) (
# { }
# // confLib.mkMicrovm "kavita"
# // confLib.mkMicrovm "jellyfin"
# // confLib.mkMicrovm "audio"
# // confLib.mkMicrovm "postgresql"
# // confLib.mkMicrovm "matrix"
# // confLib.mkMicrovm "nextcloud"
# // confLib.mkMicrovm "immich"
# // confLib.mkMicrovm "paperless"
# // confLib.mkMicrovm "transmission"
# // confLib.mkMicrovm "storage"
# // confLib.mkMicrovm "monitoring"
# // confLib.mkMicrovm "freshrss"
# // confLib.mkMicrovm "kanidm"
# // confLib.mkMicrovm "firefly"
# // confLib.mkMicrovm "koillection"
# // confLib.mkMicrovm "radicale"
# // confLib.mkMicrovm "atuin"
# // confLib.mkMicrovm "forgejo"
# // confLib.mkMicrovm "ankisync"
# // confLib.mkMicrovm "homebox"
# );
guests = lib.mkIf (!minimal && config.swarselsystems.withMicroVMs) (
{ }
// confLib.mkMicrovm "kavita" { withZfs = true; }
// confLib.mkMicrovm "jellyfin" { withZfs = true; }
// confLib.mkMicrovm "audio" { withZfs = true; }
// confLib.mkMicrovm "postgresql" { withZfs = true; }
// confLib.mkMicrovm "matrix" { withZfs = true; }
// confLib.mkMicrovm "nextcloud" { withZfs = true; }
// confLib.mkMicrovm "immich" { withZfs = true; }
// confLib.mkMicrovm "paperless" { withZfs = true; }
// confLib.mkMicrovm "transmission" { withZfs = true; }
// confLib.mkMicrovm "storage" { withZfs = true; }
// confLib.mkMicrovm "monitoring" { withZfs = true; }
// confLib.mkMicrovm "freshrss" { withZfs = true; }
// confLib.mkMicrovm "kanidm" { withZfs = true; }
// confLib.mkMicrovm "firefly" { withZfs = true; }
// confLib.mkMicrovm "koillection" { withZfs = true; }
// confLib.mkMicrovm "radicale" { withZfs = true; }
// confLib.mkMicrovm "atuin" { withZfs = true; }
// confLib.mkMicrovm "forgejo" { withZfs = true; }
// confLib.mkMicrovm "ankisync" { withZfs = true; }
// confLib.mkMicrovm "homebox" { withZfs = true; }
);
networking.nftables.firewall.zones.untrusted.interfaces = [ "lan" "bmc" ];

4
hosts/nixos/x86_64-linux/summers/guests/ankisync/default.nix
View file

@ -27,7 +27,7 @@
} // lib.optionalAttrs (!minimal) {
microvm = {
mem = 1024 * 2;
mem = 1024 * 1;
vcpu = 1;
};
@ -36,7 +36,7 @@
};
swarselmodules.server = {
ankisync = true;
# ankisync = true;
};
}

2
hosts/nixos/x86_64-linux/summers/guests/atuin/default.nix
View file

@ -36,7 +36,7 @@
};
swarselmodules.server = {
atuin = true;
# atuin = true;
};
}

6
hosts/nixos/x86_64-linux/summers/guests/audio/default.nix
View file

@ -36,9 +36,9 @@
};
swarselmodules.server = {
navidrome = true;
spotifyd = true;
mpd = true;
# navidrome = true;
# spotifyd = true;
# mpd = true;
};
}

5
hosts/nixos/x86_64-linux/summers/guests/firefly/default.nix
View file

@ -36,8 +36,9 @@
};
swarselmodules.server = {
firefly-iii = true;
nginx = true;
# firefly-iii = true;
# nginx = true;
# acme = true;
};
}

4
hosts/nixos/x86_64-linux/summers/guests/forgejo/default.nix
View file

@ -27,7 +27,7 @@
} // lib.optionalAttrs (!minimal) {
microvm = {
mem = 1024 * 2;
mem = 1024 * 1;
vcpu = 1;
};
@ -36,7 +36,7 @@
};
swarselmodules.server = {
forgejo = true;
# forgejo = true;
};
}

5
hosts/nixos/x86_64-linux/summers/guests/freshrss/default.nix
View file

@ -36,8 +36,9 @@
};
swarselmodules.server = {
freshrss = true;
nginx = true;
# freshrss = true;
# nginx = true;
# acme = true;
};
}

4
hosts/nixos/x86_64-linux/summers/guests/homebox/default.nix
View file

@ -27,7 +27,7 @@
} // lib.optionalAttrs (!minimal) {
microvm = {
mem = 1024 * 2;
mem = 1024 * 1;
vcpu = 1;
};
@ -36,7 +36,7 @@
};
swarselmodules.server = {
homebox = true;
# homebox = true;
};
}

2
hosts/nixos/x86_64-linux/summers/guests/immich/default.nix
View file

@ -36,7 +36,7 @@
};
swarselmodules.server = {
immich = true;
# immich = true;
};
}

4
hosts/nixos/x86_64-linux/summers/guests/jellyfin/default.nix
View file

@ -27,7 +27,7 @@
} // lib.optionalAttrs (!minimal) {
microvm = {
mem = 1024 * 2;
mem = 1024 * 3;
vcpu = 1;
};
@ -36,7 +36,7 @@
};
swarselmodules.server = {
jellyfin = true;
# jellyfin = true;
};
}

2
hosts/nixos/x86_64-linux/summers/guests/kanidm/default.nix
View file

@ -36,7 +36,7 @@
};
swarselmodules.server = {
kanidm = true;
# kanidm = true;
};
}

3
hosts/nixos/x86_64-linux/summers/guests/kavita/default.nix
View file

@ -29,6 +29,7 @@
microvm = {
mem = 1024 * 1;
vcpu = 1;
};
swarselprofiles = {
@ -36,7 +37,7 @@
};
swarselmodules.server = {
kavita = true;
# kavita = true;
};
}

4
hosts/nixos/x86_64-linux/summers/guests/koillection/default.nix
View file

@ -27,7 +27,7 @@
} // lib.optionalAttrs (!minimal) {
microvm = {
mem = 1024 * 2;
mem = 1024 * 1;
vcpu = 1;
};
@ -36,7 +36,7 @@
};
swarselmodules.server = {
koillection = true;
# koillection = true;
};
}

2
hosts/nixos/x86_64-linux/summers/guests/matrix/default.nix
View file

@ -36,7 +36,7 @@
};
swarselmodules.server = {
matrix = true;
# matrix = true;
};
}

4
hosts/nixos/x86_64-linux/summers/guests/monitoring/default.nix
View file

@ -27,7 +27,7 @@
} // lib.optionalAttrs (!minimal) {
microvm = {
mem = 1024 * 2;
mem = 1024 * 3;
vcpu = 2;
};
@ -36,7 +36,7 @@
};
swarselmodules.server = {
grafana = true;
# grafana = true;
};
}

5
hosts/nixos/x86_64-linux/summers/guests/nextcloud/default.nix
View file

@ -36,8 +36,9 @@
};
swarselmodules.server = {
nextcloud = true;
nginx = true;
# nextcloud = true;
# nginx = true;
# acme = true;
};
}

2
hosts/nixos/x86_64-linux/summers/guests/paperless/default.nix
View file

@ -36,7 +36,7 @@
};
swarselmodules.server = {
paperless = true;
# paperless = true;
};
}

4
hosts/nixos/x86_64-linux/summers/guests/postgresql/default.nix
View file

@ -27,7 +27,7 @@
} // lib.optionalAttrs (!minimal) {
microvm = {
mem = 1024 * 2;
mem = 1024 * 1;
vcpu = 1;
};
@ -36,7 +36,7 @@
};
swarselmodules.server = {
postgresql = true;
# postgresql = true;
};
}

4
hosts/nixos/x86_64-linux/summers/guests/radicale/default.nix
View file

@ -27,7 +27,7 @@
} // lib.optionalAttrs (!minimal) {
microvm = {
mem = 1024 * 2;
mem = 1024 * 1;
vcpu = 1;
};
@ -36,7 +36,7 @@
};
swarselmodules.server = {
radicale = true;
# radicale = true;
};
}

6
hosts/nixos/x86_64-linux/summers/guests/storage/default.nix
View file

@ -27,7 +27,7 @@
} // lib.optionalAttrs (!minimal) {
microvm = {
mem = 1024 * 2;
mem = 1024 * 4;
vcpu = 2;
};
@ -36,8 +36,8 @@
};
swarselmodules.server = {
nfs = true;
syncthing = true;
# nfs = true;
# syncthing = true;
};
}

4
hosts/nixos/x86_64-linux/summers/guests/transmission/default.nix
View file

@ -27,7 +27,7 @@
} // lib.optionalAttrs (!minimal) {
microvm = {
mem = 1024 * 2;
mem = 1024 * 4;
vcpu = 2;
};
@ -36,7 +36,7 @@
};
swarselmodules.server = {
transmission = true;
# transmission = true;
};
}