feat: clean up the repo

2026-02-09 12:29:19 -08:00 · 2023-04-29 12:00:58 -07:00 · 2023-04-29 12:00:58 -07:00 · f6ec9f37eb
commit f6ec9f37eb
parent bc9c310c77
249 changed files with 804 additions and 13048 deletions
--- a/nixos/base/access.nix
+++ b/nixos/base/access.nix
@ -1,6 +1,10 @@
-{ config, lib, pkgs, meta, ... }:
-
 {
+  config,
+  lib,
+  pkgs,
+  meta,
+  ...
+}: {
  security.sudo.wheelNeedsPassword = lib.mkForce false;

  security.polkit.extraConfig = ''
@ -13,7 +17,8 @@

  imports = with meta; [
    nixos.kat
-    home.base
+    nixos.arc
+    nixos.sops
  ];

  users.motd = ''
@ -23,15 +28,14 @@

  users.users.root = {
    shell = pkgs.zsh;
-    hashedPassword =
-      "$6$i28yOXoo$/WokLdKds5ZHtJHcuyGrH2WaDQQk/2Pj0xRGLgS8UcmY2oMv3fw2j/85PRpsJJwCB2GBRYRK5LlvdTleHd3mB.";
+    hashedPassword = "$6$i28yOXoo$/WokLdKds5ZHtJHcuyGrH2WaDQQk/2Pj0xRGLgS8UcmY2oMv3fw2j/85PRpsJJwCB2GBRYRK5LlvdTleHd3mB.";
    openssh.authorizedKeys.keys = with pkgs.lib;
-      [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDkeBFF4xxZgeURLzNHcvUFxImmkQ3pxXtpj3mtSyHXB kat@koishi" ] ++ (concatLists (mapAttrsToList
+      ["ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDkeBFF4xxZgeURLzNHcvUFxImmkQ3pxXtpj3mtSyHXB kat@koishi"]
+      ++ (concatLists (mapAttrsToList
        (name: user:
-          if elem "wheel" user.extraGroups then
-            user.openssh.authorizedKeys.keys
-          else
-            [ ])
+          if elem "wheel" user.extraGroups
+          then user.openssh.authorizedKeys.keys
+          else [])
        config.users.users));
  };
 }
--- a/nixos/base/base16.nix
+++ b/nixos/base/base16.nix
@ -1,10 +0,0 @@
-{ config, ... }:
-
-{
-  base16 = {
-		inherit (config.home-manager.users.kat.base16) defaultSchemeName defaultScheme schemes;
-    console = {
-      enable = true;
-    };
-  };
-}
--- a/nixos/base/ssh.nix
+++ b/nixos/base/ssh.nix
@ -1,28 +1,24 @@
-{ config, lib, pkgs, ... }:
-
-with lib;
-
 {
-  networks = genAttrs [ "chitei" "gensokyo" ] (_: {
-    # Mosh
-    tcp = [62954];
-    udp = [ [60000 61000] ];
-  });
-
-/*
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+with lib; {
+  /*
  security.pam.services.sshd.text = mkDefault (mkAfter ''
    session required pam_exec.so ${katnotify}/bin/notify
  '');
-*/
+  */

  services.openssh = {
    enable = true;
-    ports = lib.mkDefault [ 62954 ];
+    ports = lib.mkDefault [62954];
    settings = {
      PasswordAuthentication = false;
      KbdInteractiveAuthentication = false;
      PermitRootLogin = lib.mkDefault "prohibit-password";
-      KexAlgorithms = [ "curve25519-sha256@libssh.org" ];
+      KexAlgorithms = ["curve25519-sha256@libssh.org"];
      PubkeyAcceptedAlgorithms = "+ssh-rsa";
      StreamLocalBindUnlink = "yes";
      LogLevel = "VERBOSE";