c6b99f5baf
* feat: add overlays * Auto lint/format * feat: fix dns01 firewall ports * chore: new keys for dns01 * fix: dupe key * chore: fix cfdyn * feat: add dns02 * fix: more server minimalism * fix: might fix deploy-rs build issues. * chore: fix dns02 addition --------- Co-authored-by: Truxnell <9149206+truxnell@users.noreply.github.com> Co-authored-by: truxnell <truxnell@users.noreply.github.com>
47 lines
1.2 KiB
Nix
47 lines
1.2 KiB
Nix
{ config, lib, pkgs, imports, boot, ... }:
|
|
# Role for headless servers
|
|
# covers raspi's, sbc, NUC etc, anything
|
|
# that is headless and minimal for running services
|
|
|
|
with lib;
|
|
{
|
|
config = {
|
|
|
|
# Enable monitoring for remote scraiping
|
|
mySystem.services.promMonitoring.enable = true;
|
|
mySystem.services.rebootRequiredCheck.enable = true;
|
|
mySystem.security.wheelNeedsSudoPassword = false;
|
|
|
|
nix.settings = {
|
|
# TODO factor out into mySystem
|
|
# Avoid disk full issues
|
|
max-free = lib.mkDefault (1000 * 1000 * 1000);
|
|
min-free = lib.mkDefault (128 * 1000 * 1000);
|
|
};
|
|
|
|
services.logrotate.enable = mkDefault true;
|
|
|
|
environment.noXlibs = mkDefault true;
|
|
documentation = {
|
|
enable = mkDefault false;
|
|
doc.enable = mkDefault false;
|
|
info.enable = mkDefault false;
|
|
man.enable = mkDefault false;
|
|
nixos.enable = mkDefault false;
|
|
};
|
|
programs.command-not-found.enable = mkDefault false;
|
|
|
|
sound.enable = false;
|
|
hardware.pulseaudio.enable = false;
|
|
|
|
|
|
services.udisks2.enable = mkDefault false;
|
|
# xdg = {
|
|
# autostart.enable = mkDefault false;
|
|
# icons.enable = mkDefault false;
|
|
# mime.enable = mkDefault true;
|
|
# sounds.enable = mkDefault false;
|
|
# };
|
|
};
|
|
|
|
}
|