feat: add hardware-configuration for winters

SwarselSystems.org

@@ -2044,12 +2044,12 @@ My work machine. Built for more security, this is the gold standard of my config
       flakePath = "/home/swarsel/.dotfiles";
       server = {
         enable = true;
-        kavita = true;
-        navidrome = true;
-        jellyfin = true;
-        spotifyd = true;
-        mpd = true;
-        matrix = true;
+        kavita = false;
+        navidrome = false;
+        jellyfin = false;
+        spotifyd = false;
+        mpd = false;
+        matrix = false;
       };
       shellAliases = {
         nswitch = "cd /.dotfiles; sudo nixos-rebuild --flake .#$(hostname) switch; cd -;";
@@ -4657,6 +4657,9 @@ I usually use =mutableUsers = false= in my NixOS configuration. However, on a ne
 
 #+begin_src nix :tangle modules/nixos/setup.nix
   { lib, ... }:
+  let
+    inherit (lib) mkOption types;
+  in
 
   {
     options.swarselsystems.flakePath = mkOption {
@@ -6568,7 +6571,7 @@ Also, the system state version is set here. No need to touch it.
 **** sops
 
 #+begin_src nix :tangle profiles/server/common/sops.nix
-  { pkgs, ... }:
+  { pkgs, config, ... }:
   {
       sops = {
     age.sshKeyPaths = [ "/etc/ssh/sops" ];
@@ -6588,10 +6591,11 @@ Also, the system state version is set here. No need to touch it.
       lego
     ];
 
-    users.users.acme = {};
+    # users.users.acme = {};
 
     sops = {
-      secrets.dnstokenfull = { owner = "acme"; };
+      # secrets.dnstokenfull = { owner = "acme"; };
+      secrets.dnstokenfull = {};
       templates."certs.secret".content = ''
         CF_DNS_API_TOKEN=${config.sops.placeholder.dnstokenfull}
       '';