diff --git a/machines/gustave/default.nix b/machines/gustave/default.nix index 1884ab3..ab57b08 100644 --- a/machines/gustave/default.nix +++ b/machines/gustave/default.nix @@ -21,6 +21,15 @@ "${inputs.unstable}/nixos/modules/services/web-apps/readeck.nix" ]; + users.users.julien.linger = true; + + services.openssh.extraConfig = '' + HostCertificate /etc/ssh/ssh_host_ed25519_key-cert.pub + HostKey /etc/ssh/ssh_host_ed25519_key + TrustedUserCAKeys /etc/ssh/ssh_user_key.pub + MaxAuthTries 20 + ''; + machine.meta = { arch = "x86_64-linux"; nixpkgs_version = inputs.nixpkgs; @@ -46,6 +55,7 @@ nginx.subdomain = "docs"; }; + security.polkit.enable = true; boot.loader.systemd-boot.enable = true; boot.loader.efi.canTouchEfiVariables = true; programs.fuse.userAllowOther = true; diff --git a/machines/gustave/home-julien.nix b/machines/gustave/home-julien.nix index 04feccd..ed12ce8 100644 --- a/machines/gustave/home-julien.nix +++ b/machines/gustave/home-julien.nix @@ -2,44 +2,22 @@ { luj.hmgr.julien = { + luj.emails.enable = true; + luj.programs.fish.enable = true; + systemd.user.startServices = "sd-switch"; + home.persistence."/persistent/home/julien" = { - files = [ - ".config/gnome-initial-setup-done" - ".config/background" - ".cert/nm-openvpn/telecom-paris-ca.pem" - ".local/share/com.ranfdev.Notify.sqlite" - ]; directories = [ - "Pictures" - "Documents" ".ssh" - ".mozilla" - "devold" - ".config/cosmic" ".local/share/direnv" - ".local/state/cosmic-comp" - ".local/share/atuin" - ".local/share/firefoxpwa" - ".config/Signal" - ".cache/spotify" - ".config/spotify" - ".config/autostart" - ".config/borg" - ".config/pika-backup" - ".config/Element" - ".step" - ".emacs.d" ".gnupg" - "Zotero" - ".config/dconf" ".local/share/keyrings" - ".cache/mu" "Maildir" ]; allowOther = true; }; home.stateVersion = "23.11"; - home.packages = [ pkgs.hello ]; + home.packages = [ pkgs.muchsync ]; }; }