...

2023-11-22 19:12:54 +01:00
parent 5d06143fcc
commit b68a4f1fab
4 changed files with 135 additions and 9 deletions
--- a/flake.nix
+++ b/flake.nix
@@ -7,9 +7,6 @@
 		
    #old-nixpkgs.url = "github:NixOS/nixpkgs/release-22.11";

-    #rpi-nixpkgs.url = "github:nixos/nixpkgs/nixos-22.11";
-
-
 		firefox.url = "github:nix-community/flake-firefox-nightly";


@@ -170,12 +167,19 @@
      "phone" = inputs.nix-on-droid.lib.nixOnDroidConfiguration {
        modules = [
          ./hosts/phone/nix-on-droid.nix
+          {
+            home-manager.extraSpecialArgs = {
+              inherit self inputs;
+              hostname = "phone";
+            };
+          }
        ];
      };
    };

    nixOnDroidConfigurations = rec {
      "tab" = inputs.nix-on-droid.lib.nixOnDroidConfiguration {
+      	specialArgs = { inherit inputs confDir workDir secretsDir persistentDir self; };
        modules = [
          ./hosts/tab/nix-on-droid.nix
        ];
--- a/hosts/phone/nix-on-droid.nix
+++ b/hosts/phone/nix-on-droid.nix
@@ -0,0 +1,61 @@
+{ pkgs, self, config, lib, specialArgs, ... }:
+let
+  sshdTmpDirectory = "${config.user.home}/sshd-tmp";
+  sshdDirectory = "${config.user.home}/sshd";
+  port = 8022;
+in
+{
+  environment.packages = with pkgs; [ 
+    vim
+    openssh
+    (pkgs.writeScriptBin "ssd" ''
+      #!${pkgs.runtimeShell}
+
+      echo "Starting sshd in non-daemonized way on port ${toString port}"
+      ${pkgs.openssh}/bin/sshd -f "${sshdDirectory}/sshd_config" -D
+    '')
+  ];
+
+  system.stateVersion = "23.05";
+
+	# Set your time zone.
+	time.timeZone = "Europe/Vienna";
+
+
+	# add mybin to path
+  environment.etc.profile.text = ''
+    export PATH=$PATH:${self}/mybin
+  '';
+
+  nix.extraOptions = ''
+    experimental-features = nix-command flakes
+    trusted-users = root @wheel me
+  '';
+
+
+  build.activation.sshd = ''
+    if [[ ! -d "${sshdDirectory}" ]]; then
+      $DRY_RUN_CMD rm $VERBOSE_ARG --recursive --force "${sshdTmpDirectory}"
+      $DRY_RUN_CMD mkdir $VERBOSE_ARG --parents "${sshdTmpDirectory}"
+
+      $VERBOSE_ECHO "Generating host keys..."
+      $DRY_RUN_CMD ${pkgs.openssh}/bin/ssh-keygen -t rsa -b 4096 -f "${sshdTmpDirectory}/ssh_host_rsa_key" -N ""
+
+      $VERBOSE_ECHO "Writing sshd_config..."
+      $DRY_RUN_CMD echo -e "HostKey ${sshdDirectory}/ssh_host_rsa_key\nPort ${toString port}\n" > "${sshdTmpDirectory}/sshd_config"
+
+      $DRY_RUN_CMD mv $VERBOSE_ARG "${sshdTmpDirectory}" "${sshdDirectory}"
+    fi
+  '';
+  
+  home-manager.config = {
+    home.file.".ssh/authorizedKeys".text = ''
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFjgXf9S9hxjyph2EEFh1el0z4OUT9fMoFAaDanjiuKa me@main"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICWsqiz0gEepvPONYxqhKKq4Vxfe1h+jo11k88QozUch me@bitwarden"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAioUu4ow6k+OMjjLdzogiQM4ZEM3TNekGNasaSDzQQE me@phone"
+    '';
+    imports = [
+      ../../users/common/home.nix
+    ];
+  };
+}
--- a/hosts/tab/nix-on-droid.nix
+++ b/hosts/tab/nix-on-droid.nix
@@ -0,0 +1,61 @@
+{ pkgs, self, config, lib, ... }:
+let
+  sshdTmpDirectory = "${config.user.home}/sshd-tmp";
+  sshdDirectory = "${config.user.home}/sshd";
+  port = 8022;
+in
+{
+  environment.packages = with pkgs; [ 
+    vim
+    openssh
+    (pkgs.writeScriptBin "ssd" ''
+      #!${pkgs.runtimeShell}
+
+      echo "Starting sshd in non-daemonized way on port ${toString port}"
+      ${pkgs.openssh}/bin/sshd -f "${sshdDirectory}/sshd_config" -D
+    '')
+  ];
+
+  system.stateVersion = "23.05";
+
+	# Set your time zone.
+	time.timeZone = "Europe/Vienna";
+
+
+	# add mybin to path
+  environment.etc.profile.text = ''
+    export PATH=$PATH:${self}/mybin
+  '';
+
+  nix.extraOptions = ''
+    experimental-features = nix-command flakes
+    trusted-users = root @wheel me
+  '';
+
+
+  build.activation.sshd = ''
+    if [[ ! -d "${sshdDirectory}" ]]; then
+      $DRY_RUN_CMD rm $VERBOSE_ARG --recursive --force "${sshdTmpDirectory}"
+      $DRY_RUN_CMD mkdir $VERBOSE_ARG --parents "${sshdTmpDirectory}"
+
+      $VERBOSE_ECHO "Generating host keys..."
+      $DRY_RUN_CMD ${pkgs.openssh}/bin/ssh-keygen -t rsa -b 4096 -f "${sshdTmpDirectory}/ssh_host_rsa_key" -N ""
+
+      $VERBOSE_ECHO "Writing sshd_config..."
+      $DRY_RUN_CMD echo -e "HostKey ${sshdDirectory}/ssh_host_rsa_key\nPort ${toString port}\n" > "${sshdTmpDirectory}/sshd_config"
+
+      $DRY_RUN_CMD mv $VERBOSE_ARG "${sshdTmpDirectory}" "${sshdDirectory}"
+    fi
+  '';
+  
+  home-manager.config = {
+    home.file.".ssh/authorizedKeys".text = ''
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFjgXf9S9hxjyph2EEFh1el0z4OUT9fMoFAaDanjiuKa me@main"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICWsqiz0gEepvPONYxqhKKq4Vxfe1h+jo11k88QozUch me@bitwarden"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAioUu4ow6k+OMjjLdzogiQM4ZEM3TNekGNasaSDzQQE me@phone"
+    '';
+    imports = [
+      ../../users/common/home.nix
+    ];
+  };
+}
--- a/users/common/home.nix
+++ b/users/common/home.nix
@@ -4,7 +4,7 @@
 	home.stateVersion = "23.05";

  imports = [
-		inputs.nix-index-database.hmModules.nix-index
+    inputs.nix-index-database.hmModules.nix-index

 		# all my headless programms with their own config
 		../../programs/git.nix
@@ -14,12 +14,12 @@
 		../../programs/neovim.nix
  ];

-	programs.nix-index.enable = false;
-	programs.nix-index.enableBashIntegration = false;
-	programs.nix-index.enableZshIntegration = false;
+  programs.nix-index.enable = false;
+  programs.nix-index.enableBashIntegration = false;
+  programs.nix-index.enableZshIntegration = false;

 	home.sessionVariables = {
-		EDITOR = "nvim";
+		EDITOR = "nvim${self}";
 	};

 	home.sessionPath = [ "${self}/mybin" ];
@@ -74,6 +74,6 @@
 		}))
  ];

-
+  #*/

 }