From 09513b5c4e4babfaefdd06c592ef34c0908dc572 Mon Sep 17 00:00:00 2001
From: sadbeast <sadbeast@sadbeast.com>
Date: Thu, 30 May 2024 00:47:47 +0000
Subject: oh god what have i done

---
 hosts/work/default.nix | 62 ++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 62 insertions(+)
 create mode 100644 hosts/work/default.nix

(limited to 'hosts/work/default.nix')

diff --git a/hosts/work/default.nix b/hosts/work/default.nix
new file mode 100644
index 0000000..c419fd9
--- /dev/null
+++ b/hosts/work/default.nix
@@ -0,0 +1,62 @@
+{config, ...}: {
+  imports = [
+    ./hardware-configuration.nix
+
+    ../common/global
+    ../common/optional/wireless.nix
+  ];
+
+  # Use the systemd-boot EFI boot loader.
+  boot.loader.systemd-boot.enable = true;
+  boot.loader.efi.canTouchEfiVariables = true;
+
+  networking.hostName = "work";
+
+  # Slows down write operations considerably
+  nix.settings.auto-optimise-store = false;
+
+  services = {
+    logind.extraConfig = ''
+      HandleLidSwitchExternalPower=ignore
+    '';
+  };
+
+  virtualisation.docker = {
+    enable = true;
+
+    daemon.settings = {
+      userland-proxy = false;
+      experimental = true;
+      metrics-addr = "0.0.0.0:9323";
+      ipv6 = true;
+      fixed-cidr-v6 = "fd00::/80";
+    };
+    # rootless = {
+    #   enable = true;
+    #   setSocketVariable = true;
+    # };
+    storageDriver = "btrfs";
+  };
+
+  users.users.sadbeast = {
+    hashedPasswordFile = config.sops.secrets.sadbeast-password.path;
+
+    extraGroups = ["docker"];
+
+    subUidRanges = [
+      {
+        startUid = 100000;
+        count = 65536;
+      }
+    ];
+    subGidRanges = [
+      {
+        startGid = 100000;
+        count = 65536;
+      }
+    ];
+  };
+
+  # https://nixos.wiki/wiki/FAQ/When_do_I_update_stateVersion
+  system.stateVersion = "24.05";
+}
-- 
cgit v1.2.3