swarsel/.dotfiles
1
0
Fork 0
mirror of https://github.com/Swarsel/.dotfiles.git synced 2025-12-06 00:57:22 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: add packer env wars for work

Browse source
This commit is contained in:
Swarsel 2024-10-18 21:34:09 +02:00
parent 82e6ec9d64
commit 8c58ff78fe
Signed by: swarsel
GPG key ID: 26A54C31F2A4FD84
5 changed files with 77 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

17
SwarselSystems.org
View file

@ -1807,6 +1807,7 @@ My work machine. Built for more security, this is the gold standard of my config
{ command = "nm-applet"; }
{ command = "teams-for-linux"; }
{ command = "1password"; }
{ command = "feishin"; }
];
sharescreen = "eDP-2";
monitors = {
@ -6731,6 +6732,8 @@ Options that I need specifically at work. There are more options at [[#h:f0b2ea9
export DCAD="$(cat ${config.sops.secrets.dcad.path})"
export WSAD="$(cat ${config.sops.secrets.wsad.path})"
export IMBAD="$(cat ${config.sops.secrets.imbad.path})"
export DCUSER="dc_adm_schwarzaeugl@IMP.UNIVIE.AC.AT"
export PACKER_SSH_EXTRA_ARGS='"--scp-extra-args"',"\"'-O'\""
'';
browserpass.enable = true;
@ -9258,6 +9261,20 @@ The rest of the settings is at [[#h:bbf2ecb6-c8ff-4462-b5d5-d45b28604ddf][work]]
programs = {
git.userEmail = "leon.schwarzaeugl@imba.oeaw.ac.at";
zsh = {
cdpath = [
"~/Documents/Work"
];
dirHashes = {
d = "$HOME/.dotfiles";
w = "$HOME/Documents/Work";
s = "$HOME/.dotfiles/secrets";
pr = "$HOME/Documents/Private";
ac = "$HOME/.ansible/collections/ansible_collections/vbc/linux/roles";
};
};
ssh = {
matchBlocks = {
"uc" = {

1
profiles/nbl-imba-2/default.nix
View file

@ -94,6 +94,7 @@
{ command = "nm-applet"; }
{ command = "teams-for-linux"; }
{ command = "1password"; }
{ command = "feishin"; }
];
sharescreen = "eDP-2";
monitors = {

14
profiles/optional/home/work.nix
View file

@ -12,6 +12,20 @@
programs = {
git.userEmail = "leon.schwarzaeugl@imba.oeaw.ac.at";
zsh = {
cdpath = [
"~/Documents/Work"
];
dirHashes = {
d = "$HOME/.dotfiles";
w = "$HOME/Documents/Work";
s = "$HOME/.dotfiles/secrets";
pr = "$HOME/Documents/Private";
ac = "$HOME/.ansible/collections/ansible_collections/vbc/linux/roles";
};
};
ssh = {
matchBlocks = {
"uc" = {

2
profiles/optional/nixos/work.nix
View file

@ -28,6 +28,8 @@
export DCAD="$(cat ${config.sops.secrets.dcad.path})"
export WSAD="$(cat ${config.sops.secrets.wsad.path})"
export IMBAD="$(cat ${config.sops.secrets.imbad.path})"
export DCUSER="dc_adm_schwarzaeugl@IMP.UNIVIE.AC.AT"
export PACKER_SSH_EXTRA_ARGS='"--scp-extra-args"',"\"'-O'\""
'';
browserpass.enable = true;

43
profiles/server/common/monitoring.nix Normal file
View file

@ -0,0 +1,43 @@
{ pkgs, lib, config, ... }:
{
config = lib.mkIf config.swarselsystems.server.monitoring {
sops.secrets = {
grafanaadminpass = {
owner = "grafana";
}
}
users.users.grafana = {
extraGroups = [ "users" ];
};
services.grafana = {
enable = true;
dataDir = "/Vault/data/grafana";
admin_password = "$__file{/run/secrets/grafanaadminpass}";
settings = {
http_port = 3000;
http_addr = "127.0.0.1";
};
};
services.nginx = {
virtualHosts = {
"status.swarsel.win" = {
enableACME = true;
forceSSL = true;
acmeRoot = null;
locations = {
"/" = {
proxyPass = "http://localhost:3000/";
extraConfig = ''
client_max_body_size 0;
'';
};
};
};
};
};
};
}