# Edit this configuration file to define what should be installed on # your system. Help is available in the configuration.nix(5) man page # and in the NixOS manual (accessible by running ‘nixos-help’). { config, pkgs, ... }: { imports = [ # Include the results of the hardware scan. ./hardware-configuration.nix ]; nix.settings.experimental-features = [ "nix-command" "flakes" ]; # Bootloader. boot.loader.systemd-boot.enable = true; boot.loader.efi.canTouchEfiVariables = true; boot.supportedFilesystems = [ "vfat" "ext4" "cifs" ]; boot.kernelModules = [ "fuse" "coretemp" "cifs" ]; sops.age.keyFile = "/var/lib/sops-nix/key.txt"; systemd.tmpfiles.rules = [ "d /mnt/books 0755 root root -" "d /mnt/books_extra 0755 root root -" "d /mnt/music 0755 root root -" "d /mnt/music_ext 0755 root root -" "d /mnt/games 0755 root root -" "d /mnt/games_ext 0755 root root -" "d /mnt/roms_ext 0755 root root -" "d /mnt/podcasts 0755 root root -" "d /mnt/audiobooks 0755 root root -" ]; fileSystems."/mnt/books" = { device = "//10.0.0.76/Books"; fsType = "cifs"; options = [ "credentials=/run/secrets/smb" "vers=3.0" "uid=1000" "gid=1000" "file_mode=0664" "dir_mode=0775" "rw" "iocharset=utf8" "cache=strict" "mfsymlinks" "_netdev" "nofail" "x-systemd.automount" "noauto" "x-systemd.idle-timeout=10min" ]; }; fileSystems."/mnt/books_ext" = { device = "//10.0.0.76/books_ext"; fsType = "cifs"; options = [ "credentials=/run/secrets/smb" "vers=3.0" "uid=1000" "gid=1000" "file_mode=0664" "dir_mode=0775" "rw" "iocharset=utf8" "cache=strict" "mfsymlinks" "_netdev" "nofail" "x-systemd.automount" "noauto" "x-systemd.idle-timeout=10min" ]; }; fileSystems."/mnt/music" = { device = "//10.0.0.76/music"; fsType = "cifs"; options = [ "credentials=/run/secrets/smb" "vers=3.0" "uid=1000" "gid=1000" "file_mode=0664" "dir_mode=0775" "rw" "iocharset=utf8" "cache=strict" "mfsymlinks" "_netdev" "nofail" "x-systemd.automount" "noauto" "x-systemd.idle-timeout=10min" ]; }; fileSystems."/mnt/music_ext" = { device = "//10.0.0.76/music_ext"; fsType = "cifs"; options = [ "credentials=/run/secrets/smb" "vers=3.0" "uid=1000" "gid=1000" "file_mode=0664" "dir_mode=0775" "rw" "iocharset=utf8" "cache=strict" "mfsymlinks" "_netdev" "nofail" "x-systemd.automount" "noauto" "x-systemd.idle-timeout=10min" ]; }; fileSystems."/mnt/games" = { device = "//10.0.0.76/games"; fsType = "cifs"; options = [ "credentials=/run/secrets/smb" "vers=3.0" "uid=1000" "gid=1000" "file_mode=0664" "dir_mode=0775" "rw" "iocharset=utf8" "cache=strict" "mfsymlinks" "_netdev" "nofail" "x-systemd.automount" "noauto" "x-systemd.idle-timeout=10min" ]; }; fileSystems."/mnt/games_ext" = { device = "//10.0.0.76/games_ext"; fsType = "cifs"; options = [ "credentials=/run/secrets/smb" "vers=3.0" "uid=1000" "gid=1000" "file_mode=0664" "dir_mode=0775" "rw" "iocharset=utf8" "cache=strict" "mfsymlinks" "_netdev" "nofail" "x-systemd.automount" "noauto" "x-systemd.idle-timeout=10min" ]; }; fileSystems."/mnt/roms_ext" = { device = "//10.0.0.76/roms_ext"; fsType = "cifs"; options = [ "credentials=/run/secrets/smb" "vers=3.0" "uid=1000" "gid=1000" "file_mode=0664" "dir_mode=0775" "rw" "iocharset=utf8" "cache=strict" "mfsymlinks" "_netdev" "nofail" "x-systemd.automount" "noauto" "x-systemd.idle-timeout=10min" ]; }; fileSystems."/mnt/podcasts" = { device = "//10.0.0.76/podcasts"; fsType = "cifs"; options = [ "credentials=/run/secrets/smb" "vers=3.0" "uid=1000" "gid=1000" "file_mode=0664" "dir_mode=0775" "rw" "iocharset=utf8" "cache=strict" "mfsymlinks" "_netdev" "nofail" "x-systemd.automount" "noauto" "x-systemd.idle-timeout=10min" ]; }; fileSystems."/mnt/audiobooks" = { device = "//10.0.0.76/audiobooks"; fsType = "cifs"; options = [ "credentials=/run/secrets/smb" "vers=3.0" "uid=1000" "gid=1000" "file_mode=0664" "dir_mode=0775" "rw" "iocharset=utf8" "cache=strict" "mfsymlinks" "_netdev" "nofail" "x-systemd.automount" "noauto" "x-systemd.idle-timeout=10min" ]; }; sops.secrets.smb = { sopsFile = ./secrets/smb.creds; format = "binary"; mode = "0400"; owner = "root"; group = "root"; }; networking.hostName = "xps13"; # Define your hostname. networking.wireless.enable = true; # Enables wireless support via wpa_supplicant. # networking.networkmanager.enable = true; networking.wireless.networks = { MyLocalTech = { pskRaw = "ac1030d721d26deb2c7db10073dfac73244e9621f4462e3e568017da03201e0e"; }; }; # Set your time zone. time.timeZone = "America/New_York"; # Select internationalisation properties. i18n.defaultLocale = "en_US.UTF-8"; i18n.extraLocaleSettings = { LC_ADDRESS = "en_US.UTF-8"; LC_IDENTIFICATION = "en_US.UTF-8"; LC_MEASUREMENT = "en_US.UTF-8"; LC_MONETARY = "en_US.UTF-8"; LC_NAME = "en_US.UTF-8"; LC_NUMERIC = "en_US.UTF-8"; LC_PAPER = "en_US.UTF-8"; LC_TELEPHONE = "en_US.UTF-8"; LC_TIME = "en_US.UTF-8"; }; # Enable the X11 windowing system. # You can disable this if you're only using the Wayland session. # services.xserver.enable = true; # Enable the KDE Plasma Desktop Environment. services.displayManager.sddm.enable = true; services.desktopManager.plasma6.enable = true; # Configure keymap in X11 # services.xserver.xkb = { # layout = "us"; # variant = ""; # }; # Enable CUPS to print documents. services.printing.enable = true; programs.uwsm.enable = true; programs.hyprland.withUWSM = true; # Enable sound with pipewire. services.pulseaudio.enable = false; security.rtkit.enable = true; services.pipewire = { enable = true; alsa.enable = true; alsa.support32Bit = true; pulse.enable = true; jack.enable = true; # use the example session manager (no others are packaged yet so this is enabled by default, # no need to redefine it in your config for now) #media-session.enable = true; }; # Enable touchpad support (enabled default in most desktopManager). services.libinput.enable = true; fonts.packages = with pkgs; [ nerd-fonts.fira-code nerd-fonts.space-mono nerd-fonts.sauce-code-pro nerd-fonts.monofur nerd-fonts.noto nerd-fonts.fira-mono ]; # Define a user account. Don't forget to set a password with ‘passwd’. users.users.th3r00t = { isNormalUser = true; description = "Mike 'th3r00t' Young"; extraGroups = [ "networkmanager" "wheel" "input" ]; packages = with pkgs; [ # kdePackages.kate # thunderbird ]; }; # Enable automatic login for the user. services.displayManager.autoLogin.enable = true; services.displayManager.autoLogin.user = "th3r00t"; programs.firefox.enable = true; programs.hyprland.enable = true; nixpkgs.config.allowUnfree = true; # List packages installed in system profile. To search, run: # $ nix search wget environment.variables.EDITOR = "nvim"; environment.systemPackages = with pkgs; [ # vim # Do not forget to add an editor to edit configuration.nix! The Nano editor is also installed by default. # wget git vim curl age sops ]; # Some programs need SUID wrappers, can be configured further or are # started in user sessions. programs.mtr.enable = true; programs.gnupg.agent = { enable = true; enableSSHSupport = true; }; # List services that you want to enable: # Enable the OpenSSH daemon. services.openssh.enable = true; # Open ports in the firewall. networking.firewall.allowedTCPPorts = [ 21 22 80 443 5900 8080 ]; networking.firewall.allowedUDPPorts = [ 21 22 80 443 5900 8080 ]; # Or disable the firewall altogether. # networking.firewall.enable = false; # This value determines the NixOS release from which the default # settings for stateful data, like file locations and database versions # on your system were taken. It‘s perfectly fine and recommended to leave # this value at the release version of the first install of this system. # Before changing this value read the documentation for this option # (e.g. man configuration.nix or on https://nixos.org/nixos/options.html). system.stateVersion = "25.05"; # Did you read the comment? }