msyds/sydnix
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(deertopia): *Arr suite

Browse Source
This commit is contained in:
Madeleine Sydney
2025-03-27 16:02:11 -06:00
parent 45a66fe1ab
commit 50af3792f9
19 changed files with 572 additions and 52 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
hosts/deertopia/configuration.nix
View File

@@ -40,7 +40,7 @@
deertopia = {
authelia.enable = true;
bepasty.enable = true;
jellyfin.enable = true;
jellyfin.enable = false;
lldap.enable = true;
nginx.enable = true;
slskd.enable = true;
@@ -49,6 +49,17 @@
syncthing.enable = true;
cache.enable = true;
mullvad.enable = true;
servarr = {
enable = true;
prowlarr.enable = true;
jellyfin.enable = true;
transmission.enable = true;
sonarr.enable = true;
lidarr.enable = true;
radarr.enable = true;
# sabnzbd.enable = true;
# slskd.enable = true;
};
# A simple default webpage. This should probably live somewhere else.
nginx.vhosts."www" = {
@@ -67,17 +78,6 @@
sydnix.sops.secrets.buffalo-nas-creds = {};
fileSystems."/nas/media" = {
# DNS is seemingly unavailable to the mount service.
device = "//192.168.68.62/media";
mountPoint = "/nas/media";
fsType = "cifs";
options = [
"vers=2.0"
"cred=/run/secrets/buffalo-nas-creds"
];
};
boot.loader = {
systemd-boot.enable = true;
efi.canTouchEfiVariables = true;

85
hosts/nixos-testbed/configuration.nix
View File

@@ -24,17 +24,51 @@
# just think it's annoying to edit ~/.ssh/known_hosts all the time.
"/etc/ssh"
];
# rollback = {
# enable = true;
# device = "/dev/sda2";
# subvolume = "rootfs";
# };
rollback = {
enable = true;
device = "/dev/sda2";
subvolume = "rootfs";
};
};
sops = {
enable = true;
keyFile = "/persist/private-keys/age/deertopia";
};
deertopia = {
# authelia.enable = true;
# bepasty.enable = true;
# jellyfin.enable = true;
# lldap.enable = true;
nginx.enable = true;
# slskd.enable = true;
# webdav.enable = true;
# copyparty.enable = true;
# syncthing.enable = true;
# cache.enable = true;
# mullvad.enable = true;
servarr.enable = true;
servarr.prowlarr.enable = true;
servarr.jellyfin.enable = true;
servarr.transmission.enable = true;
servarr.sonarr.enable = true;
};
};
boot.loader = {
systemd-boot.enable = true;
efi.canTouchEfiVariables = false;
efi.canTouchEfiVariables = true;
};
time.timeZone = "America/Denver";
i18n.defaultLocale = "en_US.UTF-8";
console = {
font = "Lat2-Terminus16";
# keyMap = "us";
useXkbConfig = true; # use xkb.options in tty.
};
fileSystems."/persist/dots" = {
@@ -43,35 +77,34 @@
mountPoint = "/persist/dots";
};
networking.hostId = "238e9b1e"; # head -c 8 /etc/machine-id
time.timeZone = "America/Denver";
i18n.defaultLocale = "en_US.UTF-8";
console = {
font = "Lat2-Terminus16";
useXkbConfig = true; # Use xkb.options in TTY.
};
services.xserver.enable = true;
services.xserver.xkb.layout = "us";
services.xserver.xkb.options = "ctrl:swapcaps";
services.xserver.xkb.options = "caps:escape";
environment.systemPackages = [
pkgs.neovim
pkgs.git
pkgs.waypipe
hardware.graphics = {
enable = true;
enable32Bit = true;
};
environment.systemPackages = with pkgs; [
neovim
git
waypipe
sydnix-cli.packages.x86_64-linux.default
(import ../../scripts/port-tools { inherit pkgs; })
];
services.openssh = {
enable = true;
settings.PermitRootLogin = "yes";
settings.X11Forwarding = true;
settings = {
PermitRootLogin = "yes";
X11Forwarding = true;
# This server is connected to the internet! Port 22 is open!!
# Aagghhhh!!! Stay safe!
PasswordAuthentication = false;
};
};
# TODO: Move to defaults.
users.mutableUsers = false;
nix = {
@@ -80,12 +113,10 @@
"@wheel"
];
substituters = [
"https://cache.deertopia.net"
"https://nix-community.cachix.org"
"https://cache.nixos.org"
];
trusted-public-keys = [
(builtins.readFile ../../public-keys/deertopia-cache.pub.pem)
"nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs="
];
};