js0ny/dotfiles
1
0
Fork 0
mirror of https://github.com/js0ny/dotfiles.git synced 2025-12-21 08:43:00 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Use the repo as flake for private dots

Browse source
This commit is contained in:
js0ny 2025-11-24 09:57:10 +00:00
parent b76d8a0337
commit 410c5ea38f
14 changed files with 110 additions and 11 deletions
Download patch file Download diff file Expand all files Collapse all files

58
nixcfgs/modules/nixos/server.nix Normal file
View file

@ -0,0 +1,58 @@
{
lib,
config,
pkgs,
...
}:
with lib; let
cfg = config.my.host;
in {
options.my.host = {
role = mkOption {
type = types.enum ["server" "desktop" "laptop"];
default = "server";
description = "The role of this machine, affects default packages and services.";
};
tailscale = {
# Syntax sugar: mkOption type=bool
enable = mkEnableOption "Tailscale VPN service";
ip = mkOption {
type = types.nullOr types.str;
default = null;
description = "Tailscale VPN IP address.";
};
};
public = {
ipv4 = mkOption {
type = types.nullOr types.str;
default = null;
description = "Public IPv4 address.";
};
};
sshKey = mkOption {
type = types.nullOr types.str;
default = null;
description = "Host ED25519 public key.";
};
};
config = mkMerge [
{
time.timeZone = "Etc/UTC";
services.qemuGuest.enable = true;
nix.settings.trusted-users = ["root" "@wheel"];
}
(mkIf cfg.tailscale.enable {
services.tailscale.enable = true;
networking.firewall.allowedUDPPorts = [config.services.tailscale.port];
})
];
}