212 lines
5.7 KiB
Nix
212 lines
5.7 KiB
Nix
# Edit this configuration file to define what should be installed on
|
|
# your system. Help is available in the configuration.nix(5) man page
|
|
# and in the NixOS manual (accessible by running 'nixos-help').
|
|
|
|
{ config, pkgs, ... }:
|
|
|
|
{
|
|
imports = [
|
|
# Include the results of the hardware scan.
|
|
/etc/nixos/hardware-configuration.nix
|
|
];
|
|
|
|
# Bootloader.
|
|
boot.loader.grub.enable = true;
|
|
boot.loader.grub.device = "/dev/sda";
|
|
boot.loader.grub.useOSProber = true;
|
|
|
|
networking.hostName = "nixos"; # Define your hostname.
|
|
# networking.wireless.enable = true; # Enables wireless support via wpa_supplicant.
|
|
|
|
# Configure network proxy if necessary
|
|
# networking.proxy.default = "http://user:password@proxy:port/";
|
|
# networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain";
|
|
|
|
# Enable networking
|
|
networking.networkmanager.enable = true;
|
|
networking.nameservers = [
|
|
"1.1.1.1"
|
|
"8.8.8.8"
|
|
];
|
|
|
|
# Set your time zone.
|
|
time.timeZone = "Europe/Zagreb";
|
|
|
|
# Select internationalisation properties.
|
|
i18n.defaultLocale = "en_GB.UTF-8";
|
|
|
|
i18n.extraLocaleSettings = {
|
|
LC_ADDRESS = "hr_HR.UTF-8";
|
|
LC_IDENTIFICATION = "hr_HR.UTF-8";
|
|
LC_MEASUREMENT = "hr_HR.UTF-8";
|
|
LC_MONETARY = "hr_HR.UTF-8";
|
|
LC_NAME = "hr_HR.UTF-8";
|
|
LC_NUMERIC = "hr_HR.UTF-8";
|
|
LC_PAPER = "hr_HR.UTF-8";
|
|
LC_TELEPHONE = "hr_HR.UTF-8";
|
|
LC_TIME = "hr_HR.UTF-8";
|
|
};
|
|
|
|
# Enable the X11 windowing system.
|
|
# You can disable this if you're only using the Wayland session.
|
|
services.xserver.enable = true;
|
|
|
|
# Enable the KDE Plasma Desktop Environment.
|
|
services.displayManager.sddm.enable = true;
|
|
services.desktopManager.plasma6.enable = true;
|
|
|
|
# Configure keymap in X11
|
|
services.xserver.xkb = {
|
|
layout = "hr";
|
|
variant = "";
|
|
};
|
|
|
|
# Configure console keymap
|
|
console.keyMap = "croat";
|
|
|
|
# Enable CUPS to print documents.
|
|
services.printing.enable = false;
|
|
|
|
# Enable sound with pipewire.
|
|
services.pulseaudio.enable = false;
|
|
security.rtkit.enable = true;
|
|
services.pipewire = {
|
|
enable = true;
|
|
alsa.enable = true;
|
|
alsa.support32Bit = true;
|
|
pulse.enable = true;
|
|
# If you want to use JACK applications, uncomment this
|
|
#jack.enable = true;
|
|
|
|
# use the example session manager (no others are packaged yet so this is enabled by default,
|
|
# no need to redefine it in your config for now)
|
|
#media-session.enable = true;
|
|
};
|
|
|
|
services.samba = {
|
|
enable = true;
|
|
securityType = "user";
|
|
openFirewall = true;
|
|
settings = {
|
|
global = {
|
|
"workgroup" = "SAMBA";
|
|
"security" = "user";
|
|
"passdb backend" = "tdbsam";
|
|
"vfs objects" = "acl_xattr";
|
|
"map acl inherit" = "yes";
|
|
"store dos attributes" = "yes";
|
|
};
|
|
"data" = {
|
|
"path" = "/mnt/data";
|
|
"read only" = "no";
|
|
"browsable" = "yes";
|
|
"guest ok" = "no";
|
|
"writable" = "yes";
|
|
"valid users" = "dave,jana";
|
|
};
|
|
"dave" = {
|
|
"path" = "/home/dave";
|
|
"read only" = "no";
|
|
"browsable" = "yes";
|
|
"guest ok" = "no";
|
|
"writable" = "yes";
|
|
"valid users" = "dave,jana";
|
|
};
|
|
"homework" = {
|
|
"path" = "/mnt/data/docker/volumes/captain--sync-data/_data/Homework";
|
|
"read only" = "no";
|
|
"browsable" = "yes";
|
|
"guest ok" = "no";
|
|
"writable" = "yes";
|
|
"valid users" = "dave";
|
|
};
|
|
"torrent" = {
|
|
"path" = "/home/dave/volumes/captain--torrent-downloads/_data";
|
|
"read only" = "no";
|
|
"browsable" = "yes";
|
|
"guest ok" = "no";
|
|
"writable" = "yes";
|
|
"valid users" = "dave";
|
|
};
|
|
};
|
|
};
|
|
|
|
services.samba-wsdd = {
|
|
enable = true;
|
|
openFirewall = true;
|
|
};
|
|
|
|
# Enable touchpad support (enabled default in most desktopManager).
|
|
# services.xserver.libinput.enable = true;
|
|
|
|
# Define a user account. Don't forget to set a password with 'passwd'.
|
|
users.users.dave = {
|
|
isNormalUser = true;
|
|
description = "Dave";
|
|
extraGroups = [
|
|
"networkmanager"
|
|
"wheel"
|
|
];
|
|
packages = with pkgs; [
|
|
kdePackages.kate
|
|
# thunderbird
|
|
];
|
|
};
|
|
|
|
services.openssh = {
|
|
enable = true;
|
|
ports = [ 22 ];
|
|
settings = {
|
|
PasswordAuthentication = true;
|
|
AllowUsers = [ "dave" ];
|
|
UseDns = true;
|
|
X11Forwarding = false;
|
|
PermitRootLogin = "no";
|
|
};
|
|
};
|
|
services.resolved.enable = true;
|
|
|
|
# Install firefox.
|
|
programs.firefox.enable = true;
|
|
|
|
# Allow unfree packages
|
|
nixpkgs.config.allowUnfree = true;
|
|
|
|
# List packages installed in system profile. To search, run:
|
|
# $ nix search wget
|
|
environment.systemPackages = with pkgs; [
|
|
vim
|
|
git
|
|
lazygit
|
|
tmux
|
|
nixfmt-rfc-style
|
|
btop
|
|
];
|
|
|
|
# Some programs need SUID wrappers, can be configured further or are
|
|
# started in user sessions.
|
|
# programs.mtr.enable = true;
|
|
# programs.gnupg.agent = {
|
|
# enable = true;
|
|
# enableSSHSupport = true;
|
|
# };
|
|
|
|
# List services that you want to enable:
|
|
|
|
# Open ports in the firewall.
|
|
# networking.firewall.allowedTCPPorts = [ ... ];
|
|
# networking.firewall.allowedUDPPorts = [ ... ];
|
|
# Or disable the firewall altogether.
|
|
# networking.firewall.enable = false;
|
|
networking.firewall.enable = true;
|
|
networking.firewall.allowPing = true;
|
|
|
|
# This value determines the NixOS release from which the default
|
|
# settings for stateful data, like file locations and database versions
|
|
# on your system were taken. It's perfectly fine and recommended to leave
|
|
# this value at the release version of the first install of this system.
|
|
# Before changing this value read the documentation for this option
|
|
# (e.g. man configuration.nix or on https://nixos.org/nixos/options.html).
|
|
system.stateVersion = "25.05"; # Did you read the comment?
|
|
}
|