diff --git a/nixos/boxes/bolty/restic-server.nix b/nixos/boxes/bolty/restic-server.nix index da057c66..c6163d70 100644 --- a/nixos/boxes/bolty/restic-server.nix +++ b/nixos/boxes/bolty/restic-server.nix @@ -1,6 +1,6 @@ { config, pkgs, ... }: { - + environment.systemPackages = with pkgs; [ restic ]; networking.firewall.allowedTCPPorts = [ 8000 ]; services.restic.server = { enable = true; diff --git a/nixos/gui/default.nix b/nixos/gui/default.nix index 4c0a494d..cd9e32df 100644 --- a/nixos/gui/default.nix +++ b/nixos/gui/default.nix @@ -2,92 +2,92 @@ let unstable = inputs.nixpkgs-nixos-unstable.legacyPackages.${pkgs.system}; in - { - programs.firejail.enable = true; - programs.firejail.wrappedBinaries = { - firefox = { - executable = "${pkgs.lib.getBin pkgs.firefox}/bin/firefox"; - profile = "${pkgs.firejail}/etc/firejail/firefox.profile"; - }; - chromium = { - executable = "${pkgs.lib.getBin pkgs.chromium}/bin/chromium"; - profile = "${pkgs.firejail}/etc/firejail/chromium.profile"; +{ + programs.firejail.enable = true; + programs.firejail.wrappedBinaries = { + firefox = { + executable = "${pkgs.lib.getBin pkgs.firefox}/bin/firefox"; + profile = "${pkgs.firejail}/etc/firejail/firefox.profile"; + }; + chromium = { + executable = "${pkgs.lib.getBin pkgs.chromium}/bin/chromium"; + profile = "${pkgs.firejail}/etc/firejail/chromium.profile"; + }; + }; + + home-manager.users.cyryl = { ... }: { + gtk = { + enable = true; + iconTheme = { + name = "Adwaita"; + package = pkgs.gnome3.adwaita-icon-theme; }; }; - - home-manager.users.cyryl = { ... }: { - gtk = { - enable = true; - iconTheme = { - name = "Adwaita"; - package = pkgs.gnome3.adwaita-icon-theme; - }; - }; - qt = { - enable = true; - platformTheme = "gnome"; - style.name = "adwaita-dark"; - style.package = pkgs.adwaita-qt; - }; - - imports = [ - ./vscode.nix - ./firejail.nix - ]; - - home.packages = with pkgs; with pkgs.gnome3; with pkgs.python38Packages; [ - anarchism - apvlv - binwalk-full - brave - cheese - digikam - discord - electrum - element-desktop - eog - evince - fontconfig - freecad - ghidra-bin - gimp - glxinfo - gnome-screenshot - gsettings-desktop-schemas - hopper - inkscape - keybase-gui - libreoffice - mindforger - modem-manager-gui - nautilus - nyxt - obs-studio - openscad - passff-host - pdfarranger - qcad - qemu - remmina - shotwell - signal-desktop - simple-scan - slack - spotify - ssb-patchwork - tlaplusToolbox - tlaps - vlc - wineFull - wireshark - wsjtx - xclip - xidlehook - yubico-piv-tool - yubikey-manager-qt - yubikey-personalization - yubikey-personalization-gui - zoom-us - ]; + qt = { + enable = true; + platformTheme = "gnome"; + style.name = "adwaita-dark"; + style.package = pkgs.adwaita-qt; }; - } + + imports = [ + ./vscode.nix + ./firejail.nix + ]; + + home.packages = with pkgs; with pkgs.gnome3; with pkgs.python38Packages; [ + anarchism + apvlv + binwalk-full + brave + cheese + digikam + discord + electrum + element-desktop + eog + evince + fontconfig + freecad + ghidra-bin + gimp + glxinfo + gnome-screenshot + gsettings-desktop-schemas + hopper + inkscape + keybase-gui + libreoffice + mindforger + modem-manager-gui + nautilus + nyxt + obs-studio + openscad + passff-host + pdfarranger + qcad + qemu + remmina + shotwell + signal-desktop + simple-scan + slack + spotify + ssb-patchwork + tlaplusToolbox + tlaps + vlc + wineFull + wireshark + wsjtx + xclip + xidlehook + yubico-piv-tool + yubikey-manager-qt + yubikey-personalization + yubikey-personalization-gui + zoom-us + ]; + }; +} diff --git a/nixos/gui/firejail.nix b/nixos/gui/firejail.nix index 1525ae19..b9e74e9a 100644 --- a/nixos/gui/firejail.nix +++ b/nixos/gui/firejail.nix @@ -5,4 +5,4 @@ ignore apparmor ignore noexec '' + "$" + "{HOME}"; - } +}