nix fmt

2024-07-29 15:39:54 +03:00
parent 3da42ead11
commit 9ea80639a3
51 changed files with 2040 additions and 1758 deletions
--- a/hosts/fra1-a/configuration.nix
+++ b/hosts/fra1-a/configuration.nix
@@ -4,25 +4,31 @@
  myData,
  modulesPath,
  ...
-}: {
-  imports = [(modulesPath + "/profiles/qemu-guest.nix")];
+}:
+{
+  imports = [ (modulesPath + "/profiles/qemu-guest.nix") ];

  zfs-root = {
    boot = {
      enable = true;
      devNodes = "/dev/disk/by-id/";
-      bootDevices = ["scsi-0QEMU_QEMU_HARDDISK_36151096"];
+      bootDevices = [ "scsi-0QEMU_QEMU_HARDDISK_36151096" ];
      immutable = false;
-      availableKernelModules = ["xhci_pci" "virtio_pci" "virtio_scsi" "usbhid" "sr_mod" "virtio_gpu"];
+      availableKernelModules = [
+        "xhci_pci"
+        "virtio_pci"
+        "virtio_scsi"
+        "usbhid"
+        "sr_mod"
+        "virtio_gpu"
+      ];
      removableEfi = true;
-      kernelParams = ["console=tty"];
+      kernelParams = [ "console=tty" ];
      sshUnlock = {
        enable = true;
-        authorizedKeys =
-          (builtins.attrValues myData.people_pubkeys)
-          ++ [
-            myData.hosts."vno1-oh2.servers.jakst".publicKey
-          ];
+        authorizedKeys = (builtins.attrValues myData.people_pubkeys) ++ [
+          myData.hosts."vno1-oh2.servers.jakst".publicKey
+        ];
      };
    };
  };
@@ -46,7 +52,7 @@

      snapshot = {
        enable = true;
-        mountpoints = ["/var/lib"];
+        mountpoints = [ "/var/lib" ];
      };
    };

@@ -79,22 +85,24 @@
          ];

          enable = true;
-          sshAllowSubnets = [myData.subnets.tailscale.sshPattern];
+          sshAllowSubnets = [ myData.subnets.tailscale.sshPattern ];
          uidgid = myData.uidgid.updaterbot-deployee;
        };
      };

      zfsunlock = {
        enable = false;
-        targets."vno1-oh2.servers.jakst" = let
-          host = myData.hosts."vno1-oh2.servers.jakst";
-        in {
-          sshEndpoint = host.publicIP;
-          pingEndpoint = host.jakstIP;
-          remotePubkey = host.initrdPubKey;
-          pwFile = config.age.secrets.zfs-passphrase-vno1-oh2.path;
-          startAt = "*-*-* *:00/5:00";
-        };
+        targets."vno1-oh2.servers.jakst" =
+          let
+            host = myData.hosts."vno1-oh2.servers.jakst";
+          in
+          {
+            sshEndpoint = host.publicIP;
+            pingEndpoint = host.jakstIP;
+            remotePubkey = host.initrdPubKey;
+            pwFile = config.age.secrets.zfs-passphrase-vno1-oh2.path;
+            startAt = "*-*-* *:00/5:00";
+          };
      };
    };
  };
@@ -120,7 +128,10 @@

    nsd = {
      enable = true;
-      interfaces = ["0.0.0.0" "::"];
+      interfaces = [
+        "0.0.0.0"
+        "::"
+      ];
      zones = {
        "jakstys.lt.".data = myData.jakstysLTZone;
        "11sync.net.".data = myData.e11syncZone;
@@ -134,8 +145,16 @@
    domain = "servers.jakst";
    useDHCP = true;
    firewall = {
-      allowedUDPPorts = [53 443];
-      allowedTCPPorts = [22 53 80 443];
+      allowedUDPPorts = [
+        53
+        443
+      ];
+      allowedTCPPorts = [
+        22
+        53
+        80
+        443
+      ];
    };
  };