nixos/hosts/sakoserver/configuration.nix

{ config, pkgs, lib, inputs, outputs, ... }: {
  imports = [
    inputs.home-manager.nixosModules.default
    outputs.nixosModules.shell
    outputs.nixosModules.server
    outputs.nixosModules.media
    ./hardware-configuration.nix
  ];

  # its you!
  networking.hostName = "sakoserver";

  # why not
  networking.networkmanager.enable = true;

  time.timeZone = "Asia/Dubai";

  # locale
  i18n.defaultLocale = "en_US.UTF-8";
  console = {
    font = "Lat2-Terminus16";
    keyMap = "us";
  };

  boot.loader = {
    timeout = 3;
    efi.canTouchEfiVariables = true;
    systemd-boot = {
      enable = true;
      configurationLimit = 10;
    };
  };

  users.users.sako = {
    isNormalUser = true;
    extraGroups = [ "wheel" ];
  };

  nix.settings = { experimental-features = [ "nix-command" "flakes" ]; };

  home-manager.useUserPackages = true;
  home-manager.users.sako = { pkgs, ... }: {
    home.username = "sako";
    home.homeDirectory = "/home/sako";
    home.stateVersion = "24.11";
    programs.bash.enable = true;
  };

  environment.systemPackages = with pkgs; [
    vim
    neovim
    wget
    killall
    unzip
    htop
    ripgrep
  ];

  # networking.firewall.allowedTCPPorts = [];
  # networking.firewall.allowedUDPPorts = [];

  # To trust others, you first must trust yourself
  # - Homless guy that looked like Sun Tzu
  security.pki.certificateFiles =
    [ ../../modules/security/certs/trust/homelab.pem ];

  modules.shell.tmux.enable = true;
  modules.media.beets.enable = true;

  void = {
    server = {
      isServer = true;
      dns.blocky.enable = true;
      nginx.enable = true;
      postgresql.enable = true;
      redis.enable = true;
      fail2ban.enable = true;
      ddclient.enable = true;
      services = {
        sakosite.enable = true;
        forgejo = {
          enable = true;
          # runner.enable = true;
          woodpecker.enable = true;
          # pages = {
          #   enable = true;
          #   settings = {
          #     HOST = "127.0.0.1";
          #     PORT = "4563";
          #     ACME_ACCEPT_TERMS = "TRUE";
          #     ENABLE_HTTP_SERVER = "TRUE";
          #     # Large instances shouldn't do this
          #     # NO_DNS_01 = "TRUE";
          #     DNS_PROVIDER = "porkbun";
          #     GITEA_ROOT = "https://git.sako.lol";
          #     PAGES_DOMAIN = "pages.sako.lol";
          #     RAW_DOMAIN = "raw.pages.sako.lol";
          #   };
          #   environmentFile = "/srv/secrets/codeberg-pages.env";
          # };
        };
        headscale.enable = true;
        redlib.enable = true;
        local = {
          homepage.enable = true;
          nextcloud.enable = true;
        };
      };
      fedi = { akkoma.enable = true; };
      game = { minecraft.enable = false; };
      media = {
        qbittorrent = {
          enable = true;
          torrentPort = 55907;
          openFirewall = true;
          group = "media";
        };
        jellyfin.enable = true;
      };
    };
  };

  # https://nixos.org/manual/nixos/stable/#sec-upgrading
  # don't change this pls ty ily thanks
  system.stateVersion = "24.11";
}
make basic configuration for sakoserver 2024-12-30 19:12:49 +04:00			`{ config, pkgs, lib, inputs, outputs, ... }: {`
add tmux thing or whatever 2024-12-31 20:39:42 +04:00			`imports = [`
			`inputs.home-manager.nixosModules.default`
			`outputs.nixosModules.shell`
			`outputs.nixosModules.server`
enable beets for sakoserver 2025-01-11 16:00:52 +04:00			`outputs.nixosModules.media`
add tmux thing or whatever 2024-12-31 20:39:42 +04:00			`./hardware-configuration.nix`
			`];`
kinda make the server module 2024-04-03 16:50:45 +04:00
sakoserver: init ^w^ 2024-12-31 16:37:36 +04:00			`# its you!`
kinda make the server module 2024-04-03 16:50:45 +04:00			`networking.hostName = "sakoserver";`
make basic configuration for sakoserver 2024-12-30 19:12:49 +04:00
sakoserver: init ^w^ 2024-12-31 16:37:36 +04:00			`# why not`
			`networking.networkmanager.enable = true;`

			`time.timeZone = "Asia/Dubai";`

			`# locale`
			`i18n.defaultLocale = "en_US.UTF-8";`
			`console = {`
			`font = "Lat2-Terminus16";`
			`keyMap = "us";`
			`};`

make basic configuration for sakoserver 2024-12-30 19:12:49 +04:00			`boot.loader = {`
			`timeout = 3;`
sakoserver: init ^w^ 2024-12-31 16:37:36 +04:00			`efi.canTouchEfiVariables = true;`
make basic configuration for sakoserver 2024-12-30 19:12:49 +04:00			`systemd-boot = {`
			`enable = true;`
			`configurationLimit = 10;`
			`};`
			`};`

forgot to add the users award 2024-12-31 16:46:43 +04:00			`users.users.sako = {`
			`isNormalUser = true;`
			`extraGroups = [ "wheel" ];`
			`};`

enable flakes and nix command for sakoserver 2025-01-07 08:26:59 +04:00			`nix.settings = { experimental-features = [ "nix-command" "flakes" ]; };`

again 2024-12-31 20:41:28 +04:00			`home-manager.useUserPackages = true;`
			`home-manager.users.sako = { pkgs, ... }: {`
			`home.username = "sako";`
			`home.homeDirectory = "/home/sako";`
ok 2024-12-31 20:42:04 +04:00			`home.stateVersion = "24.11";`
again 2024-12-31 20:41:28 +04:00			`programs.bash.enable = true;`
			`};`

more system packages 2024-12-31 19:18:03 +04:00			`environment.systemPackages = with pkgs; [`
			`vim`
			`neovim`
			`wget`
			`killall`
			`unzip`
			`htop`
			`ripgrep`
			`];`
forgot to add the users award 2024-12-31 16:46:43 +04:00
			`# networking.firewall.allowedTCPPorts = [];`
			`# networking.firewall.allowedUDPPorts = [];`

toes 2025-01-02 22:57:33 +04:00			`# To trust others, you first must trust yourself`
			`# - Homless guy that looked like Sun Tzu`
idiot 2025-01-02 22:58:32 +04:00			`security.pki.certificateFiles =`
			`[ ../../modules/security/certs/trust/homelab.pem ];`
toes 2025-01-02 22:57:33 +04:00
add tmux thing or whatever 2024-12-31 20:39:42 +04:00			`modules.shell.tmux.enable = true;`
enable beets for sakoserver 2025-01-11 16:00:52 +04:00			`modules.media.beets.enable = true;`
add tmux thing or whatever 2024-12-31 20:39:42 +04:00
blocky dns :) 2024-12-31 17:46:18 +04:00			`void = {`
			`server = {`
			`isServer = true;`
			`dns.blocky.enable = true;`
bruhh the web server skull emoji 2024-12-31 18:45:36 +04:00			`nginx.enable = true;`
bruh this database is from ohio blud 2024-12-31 23:02:41 +04:00			`postgresql.enable = true;`
those who cache: 2025-01-01 14:29:16 +04:00			`redis.enable = true;`
i must be the reason why 2025-01-01 15:20:52 +04:00			`fail2ban.enable = true;`
ddclient 2025-01-02 13:08:10 +04:00			`ddclient.enable = true;`
hueirhuierghqiwehufiwerhRevert "skibity toil" This reverts commit 3fd58180ac10eaffb10bda8ae4bbc7e088668767. 2025-01-01 01:18:25 +04:00			`services = {`
enable sakosite 2025-01-04 21:57:01 +04:00			`sakosite.enable = true;`
talk tuah 2025-01-04 19:55:38 +04:00			`forgejo = {`
			`enable = true;`
this is ass bro 2025-01-04 20:20:39 +04:00			`# runner.enable = true;`
its giving christmas 2025-01-04 20:46:35 +04:00			`woodpecker.enable = true;`
i give up 2025-01-05 18:06:17 +04:00			`# pages = {`
			`# enable = true;`
			`# settings = {`
			`# HOST = "127.0.0.1";`
			`# PORT = "4563";`
			`# ACME_ACCEPT_TERMS = "TRUE";`
			`# ENABLE_HTTP_SERVER = "TRUE";`
			`# # Large instances shouldn't do this`
			`# # NO_DNS_01 = "TRUE";`
			`# DNS_PROVIDER = "porkbun";`
			`# GITEA_ROOT = "https://git.sako.lol";`
			`# PAGES_DOMAIN = "pages.sako.lol";`
			`# RAW_DOMAIN = "raw.pages.sako.lol";`
			`# };`
			`# environmentFile = "/srv/secrets/codeberg-pages.env";`
			`# };`
talk tuah 2025-01-04 19:55:38 +04:00			`};`
this works right 2025-01-01 02:12:42 +04:00			`headscale.enable = true;`
enable redlib blahg blah 2025-01-05 14:06:30 +04:00			`redlib.enable = true;`
homepage 2025-01-05 19:28:38 +04:00			`local = {`
			`homepage.enable = true;`
take two 2025-01-12 09:08:44 +04:00			`nextcloud.enable = true;`
homepage 2025-01-05 19:28:38 +04:00			`};`
hueirhuierghqiwehufiwerhRevert "skibity toil" This reverts commit 3fd58180ac10eaffb10bda8ae4bbc7e088668767. 2025-01-01 01:18:25 +04:00			`};`
lets hope this works 2025-01-03 19:53:22 +04:00			`fedi = { akkoma.enable = true; };`
disable for now we actually have a working module :DDD 2025-01-07 20:51:49 +04:00			`game = { minecraft.enable = false; };`
qbuittornet 2025-01-01 16:19:36 +04:00			`media = {`
			`qbittorrent = {`
			`enable = true;`
			`torrentPort = 55907;`
			`openFirewall = true;`
			`group = "media";`
			`};`
enable jellyfin 2025-01-03 01:00:52 +04:00			`jellyfin.enable = true;`
qbuittornet 2025-01-01 16:19:36 +04:00			`};`
blocky dns :) 2024-12-31 17:46:18 +04:00			`};`
			`};`
i forgot the stateversion bro 2024-12-31 16:43:44 +04:00
forgot to add the users award 2024-12-31 16:46:43 +04:00			`# https://nixos.org/manual/nixos/stable/#sec-upgrading`
i forgot the stateversion bro 2024-12-31 16:43:44 +04:00			`# don't change this pls ty ily thanks`
			`system.stateVersion = "24.11";`
forgot the bracket 2024-12-31 16:41:32 +04:00			`}`