project-wide: Moving to tf-nix for traditional hosts

2026-02-09 20:39:18 -08:00 · 2021-03-29 02:49:45 +01:00 · 2021-03-29 02:49:45 +01:00 · 69c2dcf7f2
commit 69c2dcf7f2
parent 4ad12c96fa
8 changed files with 47 additions and 107 deletions
--- a/hosts/athame/nixos/default.nix
+++ b/hosts/athame/nixos/default.nix
@ -6,20 +6,20 @@
    # profiles
    profiles.kat
    # host-specific services 
-    #./postgres.nix
-    #./virtualhosts.nix
-    #./fail2ban.nix
+    ./postgres.nix
+    ./virtualhosts.nix
+    ./fail2ban.nix
    # services 
-    #../../../services/nginx.nix
-    #../../../services/mail.nix
-    #../../../services/asterisk.nix
-    #../../../services/gitea
-    #../../../services/syncplay.nix
-    #../../../services/bitwarden.nix
-    #../../../services/taskserver.nix
-    #../../../services/murmur.nix
-    #../../../services/znc.nix
-    #../../../services/matrix.nix
+    ../../../services/nginx.nix
+    ../../../services/mail.nix
+    ../../../services/asterisk.nix
+    ../../../services/gitea
+    ../../../services/syncplay.nix
+    ../../../services/bitwarden.nix
+    ../../../services/taskserver.nix
+    ../../../services/murmur.nix
+    ../../../services/znc.nix
+    ../../../services/matrix.nix
  ];

  boot.loader.grub.enable = true;
--- a/hosts/samhain/nixos/default.nix
+++ b/hosts/samhain/nixos/default.nix
@ -14,40 +14,6 @@
  ];

  deploy.groups = [ "gui" ];
-  deploy.ssh.host = "192.168.1.135";
-
-  secrets.files.kat-glauca-dns = {
-    text = pkgs.lib.deployEmbedFuckery ''
-      user="$(${pkgs.rbw-bitw}/bin/bitw -p gpg://${
-        ../../../private/files/bitw/master.gpg
-      } get infra/hexdns-dynamic -f username)"
-      pass="$(${pkgs.rbw-bitw}/bin/bitw -p gpg://${
-        ../../../private/files/bitw/master.gpg
-      } get infra/hexdns-dynamic -f password)"
-      hostname="$(${pkgs.rbw-bitw}/bin/bitw -p gpg://${
-        ../../../private/files/bitw/master.gpg
-      } get infra/hexdns-dynamic -f hostname)"
-    '';
-    owner = "kat";
-    group = "users";
-  };
-
-  systemd.services.kat-glauca-dns = {
-    serviceConfig = {
-      ExecStart = "${pkgs.kat-glauca-dns}/bin/kat-glauca-dns";
-    };
-    environment = { passFile = config.secrets.files.kat-glauca-dns.path; };
-    wantedBy = [ "default.target" ];
-  };
-
-  systemd.timers.kat-glauca-dns = {
-    timerConfig = {
-      Unit = "kat-glauca-dns.service";
-      OnBootSec = "5m";
-      OnUnitActiveSec = "30m";
-    };
-    wantedBy = [ "default.target" ];
-  };

  # graphics tablet
  services.xserver.wacom.enable = true;
--- a/hosts/yule/nixos/default.nix
+++ b/hosts/yule/nixos/default.nix
@ -11,7 +11,6 @@
  ];

  deploy.groups = [ "gui" ];
-  deploy.ssh.host = "192.168.1.92";

  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;