wip: continue migration

2026-04-14 21:29:12 +02:00 · 2026-04-03 22:55:16 +02:00 · 2026-04-03 22:55:16 +02:00 · fa9bd32b0b
commit fa9bd32b0b
parent 7ce27d5d2f
129 changed files with 6252 additions and 106 deletions
--- a/modules-clone/nixos/common/home-manager-secrets.nix
+++ b/modules-clone/nixos/common/home-manager-secrets.nix
@ -1,35 +1,27 @@
-{ lib, config, globals, withHomeManager, ... }:
+{ config, globals, ... }:
 let
  inherit (config.swarselsystems) mainUser homeDir;
  inherit (config.repo.secrets.common.emacs) radicaleUser;
 in
 {
-  config = { } // lib.optionalAttrs withHomeManager {
+  config = { } // {
    sops =
-      let
-        modules = config.home-manager.users.${mainUser}.swarselmodules;
-      in
      {
-        secrets = (lib.optionalAttrs modules.mail {
+        secrets = {
          address1-token = { owner = mainUser; };
          address2-token = { owner = mainUser; };
          address3-token = { owner = mainUser; };
          address4-token = { owner = mainUser; };
-        }) // (lib.optionalAttrs modules.waybar {
          github-notifications-token = { owner = mainUser; };
-        }) // (lib.optionalAttrs modules.emacs {
          fever-pw = { path = "${homeDir}/.emacs.d/.fever"; owner = mainUser; };
-        }) // (lib.optionalAttrs modules.emacs {
          emacs-radicale-pw = { owner = mainUser; };
          github-forge-token = { owner = mainUser; };
-        }) // (lib.optionalAttrs (modules ? optional-noctalia) {
          radicale-token = { owner = mainUser; };
-        }) // (lib.optionalAttrs modules.anki {
          anki-user = { owner = mainUser; };
          anki-pw = { owner = mainUser; };
-        });
+        };
        templates = {
-          authinfo = lib.mkIf modules.emacs {
+          authinfo = {
            path = "${homeDir}/.emacs.d/.authinfo";
            content = ''
              machine ${globals.services.radicale.domain} login ${radicaleUser} password ${config.sops.placeholder.emacs-radicale-pw}
--- a/modules-clone/nixos/common/home-manager.nix
+++ b/modules-clone/nixos/common/home-manager.nix
@ -15,8 +15,8 @@
        inputs.swarsel-nix.homeModules.default
        {
          imports = [
-            "${self}/profiles/home"
-            "${self}/modules/home"
+            "${self}/profiles-clone/home"
+            "${self}/modules-clone/home"
            {
              swarselprofiles = {
                minimal = lib.mkIf minimal true;
--- a/modules-clone/nixos/common/lanzaboote.nix
+++ b/modules-clone/nixos/common/lanzaboote.nix
@ -1,29 +0,0 @@
-{ lib, pkgs, config, minimal, ... }:
-let
-  inherit (config.swarselsystems) isSecureBoot isImpermanence;
-in
-{
-  options.swarselmodules.lanzaboote = lib.mkEnableOption "lanzaboote config";
-  config = lib.mkIf config.swarselmodules.lanzaboote {
-
-    environment.systemPackages = lib.mkIf isSecureBoot [
-      pkgs.sbctl
-    ];
-
-    environment.persistence."/persist" = lib.mkIf (isImpermanence && isSecureBoot) {
-      directories = [{ directory = "/var/lib/sbctl"; }];
-    };
-
-    boot = {
-      loader = {
-        efi.canTouchEfiVariables = true;
-        systemd-boot.enable = lib.swarselsystems.mkIfElse (minimal || !isSecureBoot) (lib.mkForce true) (lib.mkForce false);
-      };
-      lanzaboote = lib.mkIf (!minimal && isSecureBoot) {
-        enable = true;
-        pkiBundle = "/var/lib/sbctl";
-        configurationLimit = 6;
-      };
-    };
-  };
-}