more work
This commit is contained in:
		
							parent
							
								
									423e99886d
								
							
						
					
					
						commit
						a03240d99d
					
				
					 36 changed files with 843 additions and 842 deletions
				
			
		
							
								
								
									
										53
									
								
								modules/home/shell/default.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										53
									
								
								modules/home/shell/default.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,53 @@ | |||
| { config, lib, pkgs, namespace, ... }: | ||||
| let | ||||
|   inherit (lib) attrValues mkIf mkMerge mkOption mkEnableOption; | ||||
|   inherit (lib.types) nullOr enum; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell = { | ||||
|     default = mkOption { | ||||
|       type = nullOr (enum ["fish" "zsh" "bash"]); | ||||
|       default = null; | ||||
|       description = "Default system shell"; | ||||
|     }; | ||||
| 
 | ||||
|     corePkgs.enable = mkEnableOption "core shell packages"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkMerge [ | ||||
|     (mkIf (cfg.default != null) { | ||||
|       users.defaultUserShell = pkgs."${cfg.default}"; | ||||
|     }) | ||||
| 
 | ||||
|     (mkIf cfg.corePkgs.enable { | ||||
|       ${namespace}.shell.toolset = { | ||||
|         bat.enable = true; | ||||
|         btop.enable = true; | ||||
|         eza.enable = true; | ||||
|         fzf.enable = true; | ||||
|         git.enable = true; | ||||
|         starship.enable = true; | ||||
|         tmux.enable = true; | ||||
|         yazi.enable = true; | ||||
|         zoxide.enable = true; | ||||
|       }; | ||||
| 
 | ||||
|       home.packages = with pkgs; [ any-nix-shell pwgen yt-dlp ripdrag fd (ripgrep.override {withPCRE2 = true;}) ]; | ||||
| 
 | ||||
|       programs = { | ||||
|         direnv = { | ||||
|           enable = true; | ||||
|           config.global = { | ||||
|             load_dotenv = true; | ||||
|             strict_env = true; | ||||
|             hide_env_diff = true; | ||||
|           }; | ||||
|           nix-direnv.enable = true; | ||||
|           config.whitelist.prefix = ["/home"]; | ||||
|         }; | ||||
|       }; | ||||
|     }) | ||||
|   ]; | ||||
| } | ||||
							
								
								
									
										19
									
								
								modules/home/shell/toolset/bat.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										19
									
								
								modules/home/shell/toolset/bat.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,19 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.bat; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.bat = { | ||||
|     enable = mkEnableOption "cat replacement"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     home.packages = with pkgs; [ bat ]; | ||||
| 
 | ||||
|     programs.bat = { | ||||
|       enable = true; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										93
									
								
								modules/home/shell/toolset/btop.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										93
									
								
								modules/home/shell/toolset/btop.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,93 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
|   inherit (lib.strings) concatStringsSep; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.btop; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.btop = { | ||||
|     enable = mkEnableOption "system-monitor"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     home.packages = with pkgs; [ btop ]; | ||||
| 
 | ||||
|     programs.btop = { | ||||
|       enable = true; | ||||
|       settings = { | ||||
|         force_tty = false; | ||||
|         vim_keys = true; # Directional keys: "h,j,k,l,g,G" | ||||
|         update_ms = 1500; # ms (s^{-3}) | ||||
|         temp_scale = "celsius"; | ||||
|         base_10_sizes = false; | ||||
|         show_cpu_freq = true; | ||||
|         clock_format = "%H:%M"; | ||||
|         background_update = true; | ||||
|         disks_filter = "exclude=/boot"; | ||||
| 
 | ||||
|         rounded_corners = true; | ||||
|         theme_background = false; | ||||
|         truecolor = true; | ||||
|         presets = concatStringsSep "," [ | ||||
|           "cpu:1:default" | ||||
|           "proc:0:default cpu:0:default" | ||||
|           "mem:0:default" | ||||
|           "net:0:default cpu:0:block" | ||||
|           "net:0:tty" | ||||
|         ]; | ||||
|         graph_symbol = "braille"; | ||||
|         graph_symbol_cpu = "default"; | ||||
|         graph_symbol_mem = "default"; | ||||
|         graph_symbol_net = "default"; | ||||
|         graph_symbol_proc = "default"; | ||||
|         shown_boxes = "proc cpu mem net"; | ||||
| 
 | ||||
|         proc_sorting = "cpu lazy"; | ||||
|         proc_reversed = false; | ||||
|         proc_tree = false; | ||||
|         proc_colors = true; | ||||
|         proc_gradient = true; | ||||
|         proc_per_core = true; | ||||
|         proc_mem_bytes = true; | ||||
|         proc_info_smaps = false; | ||||
|         proc_left = false; | ||||
| 
 | ||||
|         cpu_graph_upper = "total"; | ||||
|         cpu_graph_lower = "total"; | ||||
|         cpu_single_graph = false; | ||||
|         cpu_bottom = false; | ||||
|         show_uptime = true; | ||||
|         check_temp = true; | ||||
|         cpu_sensor = "Auto"; | ||||
|         show_coretemp = true; | ||||
|         cpu_core_map = ""; | ||||
|         custom_cpu_name = ""; | ||||
| 
 | ||||
|         mem_graphs = true; | ||||
|         mem_below_net = false; | ||||
| 
 | ||||
|         show_swap = true; | ||||
|         swap_disk = true; | ||||
|         show_disks = true; | ||||
|         only_physical = true; | ||||
|         use_fstab = false; # Enable -> disables `only_physical` | ||||
|         disk_free_priv = false; | ||||
|         show_io_stat = true; | ||||
| 
 | ||||
|         io_mode = false; | ||||
|         io_graph_combined = false; | ||||
|         io_graph_speeds = ""; | ||||
| 
 | ||||
|         net_download = 100; | ||||
|         net_upload = 100; | ||||
|         net_auto = true; | ||||
|         net_sync = false; | ||||
|         net_iface = "br0"; | ||||
|         show_battery = true; | ||||
|         selected_battery = "Auto"; | ||||
|         log_level = "DEBUG"; | ||||
|       }; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										26
									
								
								modules/home/shell/toolset/eza.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										26
									
								
								modules/home/shell/toolset/eza.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,26 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.eza; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.eza = { | ||||
|     enable = mkEnableOption "system-monitor"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     home.packages = with pkgs; [ eza ]; | ||||
| 
 | ||||
|     programs.eza = { | ||||
|       enable = true; | ||||
|       icons = "auto"; | ||||
|       git = true; | ||||
|       extraOptions = [ | ||||
|         "--hyperlink" | ||||
|         "--across" | ||||
|         "--group-directories-first" | ||||
|       ]; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										36
									
								
								modules/home/shell/toolset/fzf.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										36
									
								
								modules/home/shell/toolset/fzf.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,36 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.fzf; | ||||
|   defShell = config.${namespace}.shell.default; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.fzf = { | ||||
|     enable = mkEnableOption "TUI Fuzzy Finder."; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     home.packages = with pkgs; [ fzf ]; | ||||
| 
 | ||||
|     programs.fzf = { | ||||
|       enable = true; | ||||
|       enableBashIntegration = true; | ||||
|       enableZshIntegration = defShell == "zsh"; | ||||
|       enableFishIntegration = defShell == "fish"; | ||||
| 
 | ||||
|       tmux.enableShellIntegration = true; | ||||
|       tmux.shellIntegrationOptions = ["-d 40%"]; | ||||
| 
 | ||||
|       defaultCommand = "fd --type f"; | ||||
|       defaultOptions = ["--height 40%" "--border"]; | ||||
| 
 | ||||
|       changeDirWidgetCommand = "fd --type d"; | ||||
|       changeDirWidgetOptions = ["--preview 'tree -C {} | head -200'"]; | ||||
| 
 | ||||
|       fileWidgetCommand = "fd --type f"; | ||||
|       fileWidgetOptions = ["--preview 'head {}'"]; | ||||
|       historyWidgetOptions = ["--sort" "--exact"]; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										111
									
								
								modules/home/shell/toolset/git.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										111
									
								
								modules/home/shell/toolset/git.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,111 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib) mkEnableOption mkIf; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.git; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.git = { | ||||
|     enable = mkEnableOption "version-control system"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     environment.sessionVariables.GITHUB_TOKEN = "$(cat /run/agenix/tokenGH)"; | ||||
| 
 | ||||
|     home.packages = with pkgs; [ lazygit lazyjj jujutsu ]; | ||||
| 
 | ||||
|     programs = { | ||||
|       zsh.initContent = '' | ||||
|         # -------===[ Helpful Git Fn's ]===------- # | ||||
|         gitignore() { | ||||
|           curl -s -o .gitignore https://gitignore.io/api/$1 | ||||
|         } | ||||
|       ''; | ||||
| 
 | ||||
|       fish.functions = { | ||||
|         gitignore = "curl -sL https://www.gitignore.io/api/$argv"; | ||||
|       }; | ||||
| 
 | ||||
|       git = { | ||||
|         enable = true; | ||||
|         package = pkgs.gitFull; | ||||
|         difftastic = { | ||||
|           enable = true; | ||||
|           background = "dark"; | ||||
|           color = "always"; | ||||
|           display = "inline"; | ||||
|         }; | ||||
| 
 | ||||
|         ignores = [ | ||||
|           # General: | ||||
|           "*.bloop" | ||||
|           "*.bsp" | ||||
|           "*.metals" | ||||
|           "*.metals.sbt" | ||||
|           "*metals.sbt" | ||||
|           "*.direnv" | ||||
|           "*.envrc" | ||||
|           "*hie.yaml" | ||||
|           "*.mill-version" | ||||
|           "*.jvmopts" | ||||
| 
 | ||||
|           # OS-related: | ||||
|           ".DS_Store?" | ||||
|           ".DS_Store" | ||||
|           ".CFUserTextEncoding" | ||||
|           ".Trash" | ||||
|           ".Xauthority" | ||||
|           "thumbs.db" | ||||
|           "Thumbs.db" | ||||
|           "Icon?" | ||||
| 
 | ||||
|           # Compiled residues: | ||||
|           "*.class" | ||||
|           "*.exe" | ||||
|           "*.o" | ||||
|           "*.pyc" | ||||
|           "*.elc" | ||||
|         ]; | ||||
| 
 | ||||
|         extraConfig = { | ||||
|           init.defaultBranch = "main"; | ||||
|           core = { | ||||
|             editor = "nvim"; | ||||
|             whitespace = "trailing-space,space-before-tab"; | ||||
|           }; | ||||
|           credential.helper = "${pkgs.gitFull}/bin/git-credential-libsecret"; | ||||
| 
 | ||||
|           user = { | ||||
|             name = config.${namespace}.user.full_name; | ||||
|             email = config.${namespace}.user.email; | ||||
|             signingKey = "~/.ssh/id_rsa.pub"; | ||||
|           }; | ||||
| 
 | ||||
|           gpg.format = "ssh"; | ||||
|           commit.gpgSign = true; | ||||
|           tag.gpgSign = true; | ||||
| 
 | ||||
|           push = { | ||||
|             autoSetupRemote = true; | ||||
|             default = "current"; | ||||
|             gpgSign = "if-asked"; | ||||
|             autoSquash = true; | ||||
|           }; | ||||
|           pull.rebase = true; | ||||
| 
 | ||||
|           filter = { | ||||
|             required = true; | ||||
|             smudge = "git-lfs smudge -- %f"; | ||||
|             process = "git-lfs filter-process"; | ||||
|             clean = "git-lfs clean -- %f"; | ||||
|           }; | ||||
| 
 | ||||
|           url = { | ||||
|             "https://github.com/".insteadOf = "gh:"; | ||||
|             "git@github.com:".insteadOf = "ssh+gh:"; | ||||
|           }; | ||||
|         }; | ||||
|       }; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										36
									
								
								modules/home/shell/toolset/gnupg.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										36
									
								
								modules/home/shell/toolset/gnupg.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,36 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.gnupg; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.gnupg = { | ||||
|     enable = mkEnableOption "cryptographic suite"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     user.package = with pkgs; [ gnupg ]; | ||||
| 
 | ||||
|     environment.variables.GNUPGHOME = "$XDG_CONFIG_HOME/gnupg"; | ||||
| 
 | ||||
|     programs.gnupg = { | ||||
|       enable = true; | ||||
| 
 | ||||
|       agent = { | ||||
|         enable = true; | ||||
|         enableSSHSupport = true; | ||||
|         pinentryPackage = pkgs.pinentry-gnome3; | ||||
| 
 | ||||
|         settings = let | ||||
|           cacheTTL = 86400; | ||||
|         in { | ||||
|           default-cache-ttl = cacheTTL; | ||||
|           default-cache-ttl-ssh = cacheTTL; | ||||
|           max-cache-ttl = cacheTTL; | ||||
|           max-cache-ttl-ssh = cacheTTL; | ||||
|         }; | ||||
|       }; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										100
									
								
								modules/home/shell/toolset/starship.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										100
									
								
								modules/home/shell/toolset/starship.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,100 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.starship; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.starship = { | ||||
|     enable = mkEnableOption "fancy pansy shell prompt"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     home.packages = with pkgs; [ starship ]; | ||||
| 
 | ||||
|     programs.starship = { | ||||
|       enable = true; | ||||
|       settings = { | ||||
|         format = "[╭](bold green) $username@$hostname$nix_shell: $directory$cmd_duration$git_branch$git_commit$git_state$git_status$line_break[╰](green bold)$character"; | ||||
| 
 | ||||
|         username = { | ||||
|           format = "[$user]($style)"; | ||||
|           show_always = true; | ||||
|         }; | ||||
| 
 | ||||
|         hostname = { | ||||
|           ssh_only = false; | ||||
|           ssh_symbol = "🌐 "; | ||||
|           format = "[$hostname](bold red)"; | ||||
|           trim_at = ".local"; | ||||
|           disabled = false; | ||||
|         }; | ||||
| 
 | ||||
|         nix_shell = { | ||||
|           symbol = " "; | ||||
|           format = "[$symbol$name]($style) "; | ||||
|           style = "magenta bold"; | ||||
|         }; | ||||
| 
 | ||||
|         git_branch = { | ||||
|           only_attached = true; | ||||
|           format = "[$symbol$branch]($style) "; | ||||
|           symbol = " "; | ||||
|           style = "yellow bold"; | ||||
|         }; | ||||
| 
 | ||||
|         git_commit = { | ||||
|           tag_disabled = false; | ||||
|         }; | ||||
| 
 | ||||
|         git_state = { | ||||
|           style = "magenta bold"; | ||||
|         }; | ||||
| 
 | ||||
|         git_status = { | ||||
|           format = "[$all_status $ahead_behind]($style) "; | ||||
|           style = "bold green"; | ||||
|           conflicted = "🏳"; | ||||
|           up_to_date = ""; | ||||
|           untracked = " "; | ||||
|           ahead = "⇡\${count}"; | ||||
|           diverged = "⇕⇡\${ahead_count}⇣\${behind_count}"; | ||||
|           behind = "⇣\${count}"; | ||||
|           stashed = " "; | ||||
|           modified = " "; | ||||
|           staged = "[++\($count\)](green)"; | ||||
|           renamed = "襁 "; | ||||
|           deleted = " "; | ||||
|         }; | ||||
| 
 | ||||
|         directory = { | ||||
|           read_only = " "; | ||||
|         }; | ||||
| 
 | ||||
|         cmd_duration = { | ||||
|           format = "[$duration]($style) "; | ||||
|           style = "blue"; | ||||
|         }; | ||||
| 
 | ||||
|         os = { | ||||
|           format = "[$symbol](bold white)"; | ||||
|           disabled = false; | ||||
| 
 | ||||
|           symbols = { | ||||
|             Windows = " "; | ||||
|             Arch = ""; | ||||
|             Ubuntu = ""; | ||||
|             Macos = ""; | ||||
|             Manjaro = " "; | ||||
|             Nobara = " "; | ||||
|             Unknown = ""; | ||||
|           }; | ||||
|         }; | ||||
| 
 | ||||
|         fill = { | ||||
|           symbol = " "; | ||||
|         }; | ||||
|       }; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										107
									
								
								modules/home/shell/toolset/tmux.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										107
									
								
								modules/home/shell/toolset/tmux.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,107 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.tmux; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.tmux = {  | ||||
|     enable = mkEnableOption "terminal multiplexer";  | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     home.packages = with pkgs; [ tmux ]; | ||||
| 
 | ||||
|     programs.tmux = { | ||||
|       enable = true; | ||||
|       secureSocket = true; | ||||
|       keyMode = "vi"; | ||||
|       prefix = "C-a"; | ||||
|       terminal = "tmux-256color"; | ||||
| 
 | ||||
|       baseIndex = 1; | ||||
|       clock24 = true; | ||||
|       disableConfirmationPrompt = true; | ||||
|       escapeTime = 0; | ||||
| 
 | ||||
|       aggressiveResize = false; | ||||
|       resizeAmount = 2; | ||||
|       reverseSplit = false; | ||||
|       historyLimit = 5000; | ||||
|       newSession = true; | ||||
| 
 | ||||
|       plugins = let | ||||
|         inherit (pkgs.tmuxPlugins) resurrect continuum; | ||||
|       in [ | ||||
|         { | ||||
|           plugin = resurrect; | ||||
|           extraConfig = "set -g @resurrect-strategy-nvim 'session'"; | ||||
|         } | ||||
|         { | ||||
|           plugin = continuum; | ||||
|           extraConfig = '' | ||||
|             set -g @continuum-restore 'on' | ||||
|             set -g @continuum-save-interval '60' # minutes | ||||
|           ''; | ||||
|         } | ||||
|       ]; | ||||
| 
 | ||||
|       extraConfig = '' | ||||
|         # -------===[ Color Correction ]===------- # | ||||
|         set-option -ga terminal-overrides ",*256col*:Tc" | ||||
|         set-option -ga terminal-overrides '*:Ss=\E[%p1%d q:Se=\E[ q' | ||||
|         set-environment -g COLORTERM "truecolor" | ||||
| 
 | ||||
|         # -------===[ General-Configurations ]===------- # | ||||
|         set-option -g renumber-windows on | ||||
|         set-window-option -g automatic-rename on | ||||
|         set-window-option -g word-separators ' @"=()[]' | ||||
| 
 | ||||
|         set-option -g mouse on | ||||
|         set-option -s focus-events on | ||||
|         set-option -g renumber-windows on | ||||
|         set-option -g allow-rename off | ||||
| 
 | ||||
|         # -------===[ Activity/Sound ]===------- # | ||||
|         set-option -g bell-action none | ||||
|         set-option -g visual-bell off | ||||
|         set-option -g visual-silence off | ||||
|         set-option -g visual-activity off | ||||
|         set-window-option -g monitor-activity off | ||||
| 
 | ||||
|         # -------===[ Status-Bar ]===------- # | ||||
|         set-option -g status on | ||||
|         set-option -g status-interval 1 | ||||
|         set-option -g status-style bg=default,bold,italics | ||||
| 
 | ||||
|         set-option -g status-position top | ||||
|         set-option -g status-justify left | ||||
| 
 | ||||
|         set-option -g status-left-length "40" | ||||
|         set-option -g status-right-length "80" | ||||
| 
 | ||||
|         # -------===[ Keybindings ]===------- # | ||||
|         bind-key c clock-mode | ||||
| 
 | ||||
|         # Window Control(s): | ||||
|         bind-key q kill-session | ||||
|         bind-key Q kill-server | ||||
|         bind-key t new-window -c '#{pane_current_path}' | ||||
| 
 | ||||
|         # Buffers: | ||||
|         bind-key b list-buffers | ||||
|         bind-key p paste-buffer | ||||
|         bind-key P choose-buffer | ||||
| 
 | ||||
|         # Split bindings: | ||||
|         bind-key - split-window -v -c '#{pane_current_path}' | ||||
|         bind-key / split-window -h -c '#{pane_current_path}' | ||||
| 
 | ||||
|         # Copy/Paste bindings: | ||||
|         bind-key -T copy-mode-vi v send-keys -X begin-selection     -N "Start visual mode for selection" | ||||
|         bind-key -T copy-mode-vi y send-keys -X copy-selection      -N "Yank text into buffer" | ||||
|         bind-key -T copy-mode-vi r send-keys -X rectangle-toggle    -N "Yank region into buffer" | ||||
|       ''; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										20
									
								
								modules/home/shell/toolset/yazi.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										20
									
								
								modules/home/shell/toolset/yazi.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,20 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib.${namespace}) mkIf; | ||||
|   inherit (lib.options) mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.yazi; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.yazi = { | ||||
|     enable = mkEnableOption "cli file browser"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     home.packages = with pkgs; [ yazi ]; | ||||
| 
 | ||||
|     programs.yazi = { | ||||
|       enable = true; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										22
									
								
								modules/home/shell/toolset/zellij.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										22
									
								
								modules/home/shell/toolset/zellij.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,22 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.zellij; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.zellij = { | ||||
|     enable = mkEnableOption "terminal multiplexer"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     home.packages = with pkgs; [ zellij ]; | ||||
| 
 | ||||
|     programs.zellij = { | ||||
|       enable = true; | ||||
|       attachExistingSession = true; | ||||
| 
 | ||||
|       settings = {}; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										19
									
								
								modules/home/shell/toolset/zoxide.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										19
									
								
								modules/home/shell/toolset/zoxide.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,19 @@ | |||
| { config, lib, pkgs, user, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.toolset.zoxide; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.toolset.zoxide = { | ||||
|     enable = mkEnableOption "cd replacement"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     home.packages = with pkgs; [ zoxide ]; | ||||
| 
 | ||||
|     programs.zoxide = { | ||||
|       enable = true; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										91
									
								
								modules/home/shell/zsh.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										91
									
								
								modules/home/shell/zsh.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,91 @@ | |||
| { config, lib, pkgs, namespace, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.zsh; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.zsh = { | ||||
|     enable = mkEnableOption "enable ZSH"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     ${namespace}.shell = { | ||||
|       zsh.enable = true; | ||||
|       corePkgs.enable = true; | ||||
|     }; | ||||
| 
 | ||||
|     # Enable completion for sys-packages: | ||||
|     environment.pathsToLink = ["/share/zsh"]; | ||||
| 
 | ||||
|     programs = { | ||||
|       starship.enableZshIntegration = true; | ||||
|       yazi.enableZshIntegration = true; | ||||
|       zellij.enableZshIntegration = true; | ||||
| 
 | ||||
|       zsh = { | ||||
|         enable = true; | ||||
|         enableCompletion = true; | ||||
|         autosuggestion.enable = true; | ||||
| 
 | ||||
|         history = { | ||||
|           size = 10000; | ||||
|           path = "$XDG_CONFIG_HOME/zsh/history"; | ||||
|         }; | ||||
| 
 | ||||
|         oh-my-zsh = { | ||||
|           enable = true; | ||||
|           plugins = ["git" "docker-compose" "zoxide"]; | ||||
|         }; | ||||
| 
 | ||||
|         plugins = let | ||||
|           mkZshPlugin = { | ||||
|             pkg, | ||||
|             file ? "${pkg.pname}.plugin.zsh", | ||||
|           }: { | ||||
|             name = pkg.pname; | ||||
|             src = pkg.src; | ||||
|             inherit file; | ||||
|           }; | ||||
|         in | ||||
|           with pkgs; [ | ||||
|             (mkZshPlugin {pkg = zsh-abbr;}) | ||||
|             (mkZshPlugin {pkg = zsh-autopair;}) | ||||
|             (mkZshPlugin {pkg = zsh-you-should-use;}) | ||||
|             (mkZshPlugin { | ||||
|               pkg = zsh-nix-shell; | ||||
|               file = "nix-shell.plugin.zsh"; | ||||
|             }) | ||||
| 
 | ||||
|             { | ||||
|               name = "zsh-autosuggestion"; | ||||
|               src = pkgs.fetchFromGitHub { | ||||
|                 owner = "zsh-users"; | ||||
|                 repo = "zsh-autosuggestions"; | ||||
|                 rev = "v0.7.0"; | ||||
|                 sha256 = "1g3pij5qn2j7v7jjac2a63lxd97mcsgw6xq6k5p7835q9fjiid98"; | ||||
|               }; | ||||
|             } | ||||
|             { | ||||
|               name = "zsh-completions"; | ||||
|               src = pkgs.fetchFromGitHub { | ||||
|                 owner = "zsh-users"; | ||||
|                 repo = "zsh-completions"; | ||||
|                 rev = "0.34.0"; | ||||
|                 sha256 = "0jjgvzj3v31yibjmq50s80s3sqi4d91yin45pvn3fpnihcrinam9"; | ||||
|               }; | ||||
|             } | ||||
|             { | ||||
|               name = "zsh-syntax-highlighting"; | ||||
|               src = pkgs.fetchFromGitHub { | ||||
|                 owner = "zsh-users"; | ||||
|                 repo = "zsh-syntax-highlighting"; | ||||
|                 rev = "0.7.0"; | ||||
|                 sha256 = "0s1z3whzwli5452h2yzjzzj27pf1hd45g223yv0v6hgrip9f853r"; | ||||
|               }; | ||||
|             } | ||||
|           ]; | ||||
|       }; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
|  | @ -25,23 +25,27 @@ in | |||
| 
 | ||||
|   config = mkMerge [ | ||||
|     ({ | ||||
|       boot.loader = { | ||||
|         systemd-boot.enable = false; | ||||
|         grub.enable = true; | ||||
|       boot = { | ||||
|         kernelPackages = pkgs.linuxPackages_latest; | ||||
|          | ||||
|         loader = { | ||||
|           systemd-boot.enable = false; | ||||
|           grub.enable = true; | ||||
| 
 | ||||
|         grub2-theme = { | ||||
|           enable = true; | ||||
|           theme = "vimix"; | ||||
|           footer = true; | ||||
|           grub2-theme = { | ||||
|             enable = true; | ||||
|             theme = "vimix"; | ||||
|             footer = true; | ||||
|           }; | ||||
|         }; | ||||
|       }; | ||||
|     }) | ||||
| 
 | ||||
|     (mkIf cfg.type == "bios" { | ||||
|     (mkIf (cfg.type == "bios") { | ||||
|       boot.loader.grub.efiSupport = false; | ||||
|     }) | ||||
| 
 | ||||
|     (mkIf cfg.type == "uefi" { | ||||
|     (mkIf (cfg.type == "uefi") { | ||||
|       boot.loader = { | ||||
|         efi.canTouchEfiVariables = true; | ||||
|         grub = { | ||||
|  |  | |||
|  | @ -16,7 +16,7 @@ in | |||
|   }; | ||||
| 
 | ||||
|   config = mkMerge [ | ||||
|     (mkIf cfg.preset == "desktop" { | ||||
|     (mkIf (cfg.preset == "desktop") { | ||||
|       ${namespace} = mkDefault { | ||||
|         hardware.has = { | ||||
|           audio = true; | ||||
|  | @ -31,8 +31,8 @@ in | |||
|       }; | ||||
|     }) | ||||
| 
 | ||||
|     (mkIf cfg.preset == "desktop" { | ||||
|       "${namespace}" = mkDefault { | ||||
|     (mkIf (cfg.preset == "server") { | ||||
|       ${namespace} = mkDefault { | ||||
|         services = { | ||||
|           ssh.enable = true; | ||||
|         }; | ||||
|  |  | |||
|  | @ -1,5 +1,6 @@ | |||
| { lib, config, namespace, ... }:let | ||||
|   inherit (lib) mkIf mkOption mkEnableOption mkMerge attrNames filterAttrs readDir; | ||||
| { lib, config, namespace, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkOption mkEnableOption mkMerge; | ||||
|   inherit (lib.types) nullOr enum; | ||||
| 
 | ||||
|   cfg = config.${namespace}.desktop; | ||||
|  | @ -7,7 +8,7 @@ in | |||
| { | ||||
|   options.${namespace}.desktop = { | ||||
|     use = mkOption { | ||||
|       type = nullOr enum (attrNames (filterAttrs (n: type: type == "directory") (readDir ./.))); | ||||
|       type = nullOr (enum [ "plasma" "gamescope" "gnome" ]); | ||||
|       default = null; | ||||
|       example = "plasma"; | ||||
|       description = "Which desktop to enable"; | ||||
|  | @ -17,9 +18,7 @@ in | |||
|   }; | ||||
| 
 | ||||
|   config = mkMerge [ | ||||
|     (mkIf cfg.desktop != null { | ||||
|       "${namespace}".desktop.${cfg.use}.enable = true; | ||||
| 
 | ||||
|     ({ | ||||
|       services.displayManager = { | ||||
|         enable = true; | ||||
| 
 | ||||
|  | @ -28,5 +27,9 @@ in | |||
|         }; | ||||
|       }; | ||||
|     }) | ||||
| 
 | ||||
|     (mkIf (cfg.use != null) { | ||||
|       ${namespace}.desktop.${cfg.use}.enable = true; | ||||
|     }) | ||||
|   ]; | ||||
| } | ||||
|  |  | |||
							
								
								
									
										14
									
								
								modules/nixos/shells/zsh.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										14
									
								
								modules/nixos/shells/zsh.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,14 @@ | |||
| { inputs, config, lib, pkgs, namespace, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.shell.zsh; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.shell.zsh = { | ||||
|     enable = mkEnableOption "enable zsh shell"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										25
									
								
								modules/nixos/system/networking.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										25
									
								
								modules/nixos/system/networking.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,25 @@ | |||
| { config, lib, pkgs, namespace, ... }:  | ||||
| let | ||||
|   inherit (lib) mkDefault; | ||||
| 
 | ||||
|   cfg = config.${namespace}.system.networking; | ||||
| in  | ||||
| { | ||||
|   options.${namespace}.system.networking = {}; | ||||
| 
 | ||||
|   config = { | ||||
|     systemd.services.NetworkManager-wait-online.enable = false; | ||||
| 
 | ||||
|     networking = { | ||||
|       enableIPv6 = true; | ||||
|       useDHCP = mkDefault true; | ||||
| 
 | ||||
|       firewall.enable = true; | ||||
| 
 | ||||
|       networkmanager = { | ||||
|         enable = true; | ||||
|         wifi.backend = "wpa_supplicant"; | ||||
|       }; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										46
									
								
								modules/nixos/system/security/boot.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										46
									
								
								modules/nixos/system/security/boot.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,46 @@ | |||
| { config, namespace, inputs, ... }: | ||||
| let | ||||
|   cfg = config.${namespace}.system.security.boot; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.system.security.boot = {}; | ||||
| 
 | ||||
|   config = { | ||||
|     boot = { | ||||
|       kernelModules = [ "tcp_bbr" ]; | ||||
|       kernel.sysctl = { | ||||
|         ## TCP hardening | ||||
|         # Prevent bogus ICMP errors from filling up logs. | ||||
|         "net.ipv4.icmp_ignore_bogus_error_responses" = 1; | ||||
|         # Reverse path filtering causes the kernel to do source validation of | ||||
|         # packets received from all interfaces. This can mitigate IP spoofing. | ||||
|         "net.ipv4.conf.default.rp_filter" = 1; | ||||
|         "net.ipv4.conf.all.rp_filter" = 1; | ||||
|         # Do not accept IP source route packets (we're not a router) | ||||
|         "net.ipv4.conf.all.accept_source_route" = 0; | ||||
|         "net.ipv6.conf.all.accept_source_route" = 0; | ||||
|         # Don't send ICMP redirects (again, we're on a router) | ||||
|         "net.ipv4.conf.all.send_redirects" = 0; | ||||
|         "net.ipv4.conf.default.send_redirects" = 0; | ||||
|         # Refuse ICMP redirects (MITM mitigations) | ||||
|         "net.ipv4.conf.all.accept_redirects" = 0; | ||||
|         "net.ipv4.conf.default.accept_redirects" = 0; | ||||
|         "net.ipv4.conf.all.secure_redirects" = 0; | ||||
|         "net.ipv4.conf.default.secure_redirects" = 0; | ||||
|         "net.ipv6.conf.all.accept_redirects" = 0; | ||||
|         "net.ipv6.conf.default.accept_redirects" = 0; | ||||
|         # Protects against SYN flood attacks | ||||
|         "net.ipv4.tcp_syncookies" = 1; | ||||
|         # Incomplete protection again TIME-WAIT assassination | ||||
|         "net.ipv4.tcp_rfc1337" = 1; | ||||
| 
 | ||||
|         ## TCP optimization | ||||
|         # Enable TCP Fast Open for incoming and outgoing connections | ||||
|         "net.ipv4.tcp_fastopen" = 3; | ||||
|         # Bufferbloat mitigations + slight improvement in throughput & latency | ||||
|         "net.ipv4.tcp_congestion_control" = "bbr"; | ||||
|         "net.core.default_qdisc" = "cake"; | ||||
|       }; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										23
									
								
								modules/nixos/system/security/default.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										23
									
								
								modules/nixos/system/security/default.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,23 @@ | |||
| { config, namespace, inputs, ... }: | ||||
| let | ||||
|   cfg = config.${namespace}.system.security; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.system.security = {}; | ||||
| 
 | ||||
|   config = { | ||||
|     security = { | ||||
|       acme.acceptTerms = true; | ||||
|       polkit.enable = true; | ||||
| 
 | ||||
|       pam = { | ||||
|         u2f = { | ||||
|           enable = true; | ||||
|           settings.cue = true; | ||||
|         }; | ||||
|       }; | ||||
|     }; | ||||
| 
 | ||||
|     programs.gnupg.agent.enable = true; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										22
									
								
								modules/nixos/system/security/sops.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										22
									
								
								modules/nixos/system/security/sops.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,22 @@ | |||
| { pkgs, config, namespace, inputs, ... }: | ||||
| let | ||||
|   cfg = config.${namespace}.system.security.sops; | ||||
| in | ||||
| { | ||||
|   imports = [ | ||||
|     inputs.sops-nix.nixosModules.sops | ||||
|   ]; | ||||
| 
 | ||||
|   options.${namespace}.system.security.sops = {}; | ||||
| 
 | ||||
|   config = { | ||||
|     environment.systemPackages = with pkgs; [ sops ]; | ||||
| 
 | ||||
|     sops = { | ||||
|       defaultSopsFile = ../../../../secrets/secrets.yaml; | ||||
|       defaultSopsFormat = "yaml"; | ||||
| 
 | ||||
|       age.keyFile = "/home/"; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										23
									
								
								modules/nixos/system/security/sudo.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										23
									
								
								modules/nixos/system/security/sudo.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,23 @@ | |||
| { config, namespace, ... }: | ||||
| let | ||||
|   cfg = config.${namespace}.system.security.sudo; | ||||
| in | ||||
| { | ||||
|   options.${namespace}.system.security.sudo = {}; | ||||
| 
 | ||||
|   config = { | ||||
|     security = { | ||||
|       sudo = { | ||||
|         enable = false; | ||||
|         execWheelOnly = true; | ||||
|       }; | ||||
|        | ||||
|       sudo-rs = { | ||||
|         enable = true; | ||||
|         extraConfig = '' | ||||
|           Defaults env_keep += "EDITOR PATH DISPLAY" | ||||
|         ''; | ||||
|       }; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
							
								
								
									
										48
									
								
								modules/nixos/theming.nix
									
										
									
									
									
										Normal file
									
								
							
							
						
						
									
										48
									
								
								modules/nixos/theming.nix
									
										
									
									
									
										Normal file
									
								
							|  | @ -0,0 +1,48 @@ | |||
| { inputs, config, lib, pkgs, namespace, ... }: | ||||
| let | ||||
|   inherit (lib) mkIf mkEnableOption; | ||||
| 
 | ||||
|   cfg = config.${namespace}.theming; | ||||
| in | ||||
| { | ||||
|   imports = [ | ||||
|     inputs.stylix.nixosModules.stylix | ||||
|   ]; | ||||
| 
 | ||||
|   options.${namespace}.theming = { | ||||
|     enable = mkEnableOption "enable theming"; | ||||
|   }; | ||||
| 
 | ||||
|   config = mkIf cfg.enable { | ||||
|     stylix = { | ||||
|       enable = true; | ||||
|       autoEnable = true; | ||||
| 
 | ||||
|       # base16Scheme = "${pkgs.base16-schemes}/share/themes/${cfg.theme}.yaml"; | ||||
|       # image = ./${cfg.theme}.jpg; | ||||
|       # polarity = cfg.polarity; | ||||
| 
 | ||||
|       fonts = { | ||||
|         serif = { | ||||
|           package = pkgs.dejavu_fonts; | ||||
|           name = "DejaVu Serif"; | ||||
|         }; | ||||
| 
 | ||||
|         sansSerif = { | ||||
|           package = pkgs.dejavu_fonts; | ||||
|           name = "DejaVu Sans"; | ||||
|         }; | ||||
| 
 | ||||
|         monospace = { | ||||
|           package = pkgs.nerd-fonts.jetbrains-mono; | ||||
|           name = "JetBrainsMono Nerd Font Mono"; | ||||
|         }; | ||||
| 
 | ||||
|         emoji = { | ||||
|           package = pkgs.noto-fonts-emoji; | ||||
|           name = "Noto Color Emoji"; | ||||
|         }; | ||||
|       }; | ||||
|     }; | ||||
|   }; | ||||
| } | ||||
		Loading…
	
	Add table
		Add a link
		
	
		Reference in a new issue