Bump GNOME overlay

flake.lock: Update
Flake lock file updates: • Updated input 'disko': 'github:nix-community/disko/276a0d055a720691912c6a34abb724e395c8e38a' (2024-08-15) → 'github:nix-community/disko/435737144be0259559ca3b43f7d72252b1fdcc1b' (2024-08-22) • Updated input 'nixos-hardware': 'github:NixOS/nixos-hardware/c54cf53e022b0b3c1d3b8207aa0f9b194c24f0cf' (2024-08-10) → 'github:NixOS/nixos-hardware/b09c46430ffcf18d575acf5c339b38ac4e1db5d2' (2024-08-19) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/c3d4ac725177c030b1e289015989da2ad9d56af0' (2024-08-15) → 'github:NixOS/nixpkgs/224042e9a3039291f22f4f2ded12af95a616cca0' (2024-08-21) • Updated input 'nixpkgs-unstable': 'github:NixOS/nixpkgs/c3aa7b8938b17aebd2deecf7be0636000d62a2b9' (2024-08-14) → 'github:NixOS/nixpkgs/c374d94f1536013ca8e92341b540eba4c22f9c62' (2024-08-21) • Updated input 'nixvim': 'github:nix-community/nixvim/0b6aa80acbcb8387f2a4affb3dd22960ac2899aa' (2024-08-13) → 'github:nix-community/nixvim/9b5bb1a7695fa1ab041982347b2444d87bb53c32' (2024-08-22) • Updated input 'nixvim/git-hooks': 'github:cachix/git-hooks.nix/c7012d0c18567c889b948781bc74a501e92275d1' (2024-08-09) → 'github:cachix/git-hooks.nix/6cedaa7c1b4f82a266e5d30f212273e60d62cb0d' (2024-08-21) • Updated input 'nixvim/nix-darwin': 'github:lnl7/nix-darwin/91010a5613ffd7ee23ee9263213157a1c422b705' (2024-08-06) → 'github:lnl7/nix-darwin/a8968d88e5a537b0491f68ce910749cd870bdbef' (2024-08-22) • Updated input 'nixvim/treefmt-nix': 'github:numtide/treefmt-nix/349de7bc435bdff37785c2466f054ed1766173be' (2024-08-12) → 'github:numtide/treefmt-nix/1d07739554fdc4f8481068f1b11d6ab4c1a4167a' (2024-08-16) • Updated input 'plasma-manager': 'github:nix-community/plasma-manager/8726ecaa8b8c06910ef31abced57bf08a59730a1' (2024-08-16) → 'github:nix-community/plasma-manager/0b7f9b5eed2d221db4b6ed4dade0b4e9f50dfd6f' (2024-08-22) • Updated input 'secrets': 'git+ssh://git@git.vimium.com/jordan/nix-secrets.git?ref=refs/heads/master&rev=db951141cab2de0b4176f4f6fc42a50b30dd3950' (2024-08-11) → 'git+ssh://git@git.vimium.com/jordan/nix-secrets.git?ref=refs/heads/master&rev=7f5901bb5d6eeaa94d7e1f18f66093be9df014e4' (2024-08-19)
2024-08-23 09:44:00 +01:00 · 2024-08-23 09:42:09 +01:00 · 2024-08-23 09:40:55 +01:00 · 2024-08-18 23:09:47 +01:00
6 changed files with 105 additions and 34 deletions
--- a/flake.lock
+++ b/flake.lock
@@ -107,11 +107,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1723685519,
+        "lastModified": 1724349583,
-        "narHash": "sha256-GkXQIoZmW2zCPp1YFtAYGg/xHNyFH/Mgm79lcs81rq0=",
+        "narHash": "sha256-zgB1Cfk46irIsto8666yLdKjqKdBrjR48Dd3lhQ0CnQ=",
        "owner": "nix-community",
        "repo": "disko",
-        "rev": "276a0d055a720691912c6a34abb724e395c8e38a",
+        "rev": "435737144be0259559ca3b43f7d72252b1fdcc1b",
        "type": "github"
      },
      "original": {
@@ -233,11 +233,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1723202784,
+        "lastModified": 1724227338,
-        "narHash": "sha256-qbhjc/NEGaDbyy0ucycubq4N3//gDFFH3DOmp1D3u1Q=",
+        "narHash": "sha256-TuSaYdhOxeaaE9885mFO1lZHHax33GD5A9dczJrGUjw=",
        "owner": "cachix",
        "repo": "git-hooks.nix",
-        "rev": "c7012d0c18567c889b948781bc74a501e92275d1",
+        "rev": "6cedaa7c1b4f82a266e5d30f212273e60d62cb0d",
        "type": "github"
      },
      "original": {
@@ -373,11 +373,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1722924007,
+        "lastModified": 1724299755,
-        "narHash": "sha256-+CQDamNwqO33REJLft8c26NbUi2Td083hq6SvAm2xkU=",
+        "narHash": "sha256-P5zMA17kD9tqiqMuNXwupkM7buM3gMNtoZ1VuJTRDE4=",
        "owner": "lnl7",
        "repo": "nix-darwin",
-        "rev": "91010a5613ffd7ee23ee9263213157a1c422b705",
+        "rev": "a8968d88e5a537b0491f68ce910749cd870bdbef",
        "type": "github"
      },
      "original": {
@@ -388,11 +388,11 @@
    },
    "nixos-hardware": {
      "locked": {
-        "lastModified": 1723310128,
+        "lastModified": 1724067415,
-        "narHash": "sha256-IiH8jG6PpR4h9TxSGMYh+2/gQiJW9MwehFvheSb5rPc=",
+        "narHash": "sha256-WJBAEFXAtA41RMpK8mvw0cQ62CJkNMBtzcEeNIJV7b0=",
        "owner": "NixOS",
        "repo": "nixos-hardware",
-        "rev": "c54cf53e022b0b3c1d3b8207aa0f9b194c24f0cf",
+        "rev": "b09c46430ffcf18d575acf5c339b38ac4e1db5d2",
        "type": "github"
      },
      "original": {
@@ -459,11 +459,11 @@
    },
    "nixpkgs-unstable": {
      "locked": {
-        "lastModified": 1723637854,
+        "lastModified": 1724224976,
-        "narHash": "sha256-med8+5DSWa2UnOqtdICndjDAEjxr5D7zaIiK4pn0Q7c=",
+        "narHash": "sha256-Z/ELQhrSd7bMzTO8r7NZgi9g5emh+aRKoCdaAv5fiO0=",
        "owner": "NixOS",
        "repo": "nixpkgs",
-        "rev": "c3aa7b8938b17aebd2deecf7be0636000d62a2b9",
+        "rev": "c374d94f1536013ca8e92341b540eba4c22f9c62",
        "type": "github"
      },
      "original": {
@@ -490,11 +490,11 @@
    },
    "nixpkgs_3": {
      "locked": {
-        "lastModified": 1723688146,
+        "lastModified": 1724242322,
-        "narHash": "sha256-sqLwJcHYeWLOeP/XoLwAtYjr01TISlkOfz+NG82pbdg=",
+        "narHash": "sha256-HMpK7hNjhEk4z5SFg5UtxEio9OWFocHdaQzCfW1pE7w=",
        "owner": "NixOS",
        "repo": "nixpkgs",
-        "rev": "c3d4ac725177c030b1e289015989da2ad9d56af0",
+        "rev": "224042e9a3039291f22f4f2ded12af95a616cca0",
        "type": "github"
      },
      "original": {
@@ -517,11 +517,11 @@
        "treefmt-nix": "treefmt-nix"
      },
      "locked": {
-        "lastModified": 1723536338,
+        "lastModified": 1724313764,
-        "narHash": "sha256-1bSEOtZBsAeCkg5vdDbDgOT3z91K8L/KE2s7J9hLYHw=",
+        "narHash": "sha256-IvCUBm3Gkrxg/No1OMYEI2rds6WAtq7+c0eF0GRLx3Y=",
        "owner": "nix-community",
        "repo": "nixvim",
-        "rev": "0b6aa80acbcb8387f2a4affb3dd22960ac2899aa",
+        "rev": "9b5bb1a7695fa1ab041982347b2444d87bb53c32",
        "type": "github"
      },
      "original": {
@@ -541,11 +541,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1723804780,
+        "lastModified": 1724364293,
-        "narHash": "sha256-uuiu1UAfYr2Lo+5Ul6eA0UIYouoPvH9aIfYbq7wVF6c=",
+        "narHash": "sha256-R/Jsd29RtrPoxr+NivHWIi+Zm63+G/1R539KtSQSycw=",
        "owner": "nix-community",
        "repo": "plasma-manager",
-        "rev": "8726ecaa8b8c06910ef31abced57bf08a59730a1",
+        "rev": "0b7f9b5eed2d221db4b6ed4dade0b4e9f50dfd6f",
        "type": "github"
      },
      "original": {
@@ -576,11 +576,11 @@
    "secrets": {
      "flake": false,
      "locked": {
-        "lastModified": 1723415003,
+        "lastModified": 1724093899,
-        "narHash": "sha256-zSzDvI0sHayG5se7ALXhJhl41tConoWYbdqeow6OmBo=",
+        "narHash": "sha256-VohYwTIBq7NEssFibuu+HMXXwuCoLmMOmEwQf7sESSI=",
        "ref": "refs/heads/master",
-        "rev": "db951141cab2de0b4176f4f6fc42a50b30dd3950",
+        "rev": "7f5901bb5d6eeaa94d7e1f18f66093be9df014e4",
-        "revCount": 26,
+        "revCount": 27,
        "type": "git",
        "url": "ssh://git@git.vimium.com/jordan/nix-secrets.git"
      },
@@ -658,11 +658,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1723454642,
+        "lastModified": 1723808491,
-        "narHash": "sha256-S0Gvsenh0II7EAaoc9158ZB4vYyuycvMGKGxIbERNAM=",
+        "narHash": "sha256-rhis3qNuGmJmYC/okT7Dkc4M8CeUuRCSvW6kC2f3hBc=",
        "owner": "numtide",
        "repo": "treefmt-nix",
-        "rev": "349de7bc435bdff37785c2466f054ed1766173be",
+        "rev": "1d07739554fdc4f8481068f1b11d6ab4c1a4167a",
        "type": "github"
      },
      "original": {
--- a/hosts/vps1/default.nix
+++ b/hosts/vps1/default.nix
@@ -1,4 +1,4 @@
-{ config, lib, ... }:
+{ config, pkgs, lib, ... }:
 {
  imports = [
@@ -52,6 +52,7 @@
    domain = "auth.${baseDomain}";
    uri = "https://${domain}";
  in {
    package = pkgs.unstable.kanidm;
    enableClient = true;
    enableServer = true;
    clientSettings = {
@@ -79,6 +80,10 @@
  modules = rec {
    databases.postgresql.enable = true;
    networking = {
      netbird.enable = true;
      tailscale.enable = lib.mkForce false;
    };
    services = {
      borgmatic = {
        enable = true;
@@ -95,7 +100,7 @@
        matrixIntegration = true;
      };
      gitea.enable = true;
-      headscale.enable = true;
+      headscale.enable = false;
      matrix = {
        enable = true;
        bridges = {
--- a/modules/default.nix
+++ b/modules/default.nix
@@ -32,6 +32,7 @@
    ./editors/neovim
    ./editors/vscode.nix
    ./hardware/presonus-studio.nix
    ./networking/netbird.nix
    ./networking/tailscale.nix
    ./networking/wireless.nix
    ./security/gpg.nix
--- a/modules/networking/netbird.nix
+++ b/modules/networking/netbird.nix
@@ -0,0 +1,61 @@
 { config, lib, self, ... }:
 let
  cfg = config.modules.networking.netbird;
  hostname = config.networking.hostName;
 in {
  options.modules.networking.netbird = {
    enable = lib.mkEnableOption "netbird";
    coordinatorDomain = lib.mkOption {
      type = lib.types.str;
      default = "netbird.vimium.net";
    };
    meshDomain = lib.mkOption {
      type = lib.types.str;
      default = "mesh.vimium.net";
    };
  };
  config = lib.mkIf cfg.enable {
    age.secrets."passwords/services/netbird/data-store-encryption-key" = {
      file = "${self.inputs.secrets}/passwords/services/netbird/data-store-encryption-key.age";
    };
    services.netbird = {
      enable = true;
    };
    services.netbird.server = {
      domain = cfg.coordinatorDomain;
      enable = true;
      enableNginx = true;
      dashboard.settings.AUTH_AUTHORITY = "https://auth.vimium.com/oauth2/openid/netbird";
      management = rec {
        disableAnonymousMetrics = true;
        dnsDomain = cfg.meshDomain;
        oidcConfigEndpoint = "https://auth.vimium.com/oauth2/openid/netbird/.well-known/openid-configuration";
        settings = {
          DataStoreEncryptionKey = {
            _secret = config.age.secrets."passwords/services/netbird/data-store-encryption-key".path;
          };
          HttpConfig = {
            AuthAudience = "netbird";
          };
          StoreConfig = { Engine = "sqlite"; };
          TURNConfig = {
            Secret._secret = config.age.secrets."passwords/services/coturn/static-auth-secret".path;
            TimeBasedCredentials = true;
          };
        };
        singleAccountModeDomain = dnsDomain;
        turnDomain = config.services.coturn.realm;
        turnPort = config.services.coturn.listening-port;
      };
    };
    services.nginx.virtualHosts."netbird.vimium.net" = {
      enableACME = true;
      forceSSL = true;
    };
  };
 }
--- a/modules/services/matrix/default.nix
+++ b/modules/services/matrix/default.nix
@@ -171,6 +171,10 @@ in {
      };
    } else {});
    nixpkgs.config.permittedInsecurePackages = [
      "jitsi-meet-1.0.8043"
    ];
    services.matrix-synapse = {
      enable = true;
      enableRegistrationScript = true;
--- a/overlays/gnome.nix
+++ b/overlays/gnome.nix
@@ -4,7 +4,7 @@ final: prev:
    mutter = gsuper.mutter.overrideAttrs (oldAttrs: {
      src = prev.fetchurl {
        url = "https://gitlab.gnome.org/Community/Ubuntu/mutter/-/archive/triple-buffering-v4-46/mutter-triple-buffering-v4-46.tar.gz";
-        sha256 = "mmFABDsRMzYnLO3+Cf3CJ60XyUBl3y9NAUj+vs7nLqE=";
+        sha256 = "9MVb53tcOTkcXJ025bF2kX1+fGSfffliA43q00x2c/Y=";
      };
    });
  });
Author	SHA1	Message	Date
Jordan Holt	e35154a5ea	Bump GNOME overlay All checks were successful Check flake / build-amd64-linux (push) Successful in 3m51s Details	2024-08-23 09:44:00 +01:00
Jordan Holt	367d5f08a1	flake.lock: Update Flake lock file updates: • Updated input 'disko': 'github:nix-community/disko/276a0d055a720691912c6a34abb724e395c8e38a' (2024-08-15) → 'github:nix-community/disko/435737144be0259559ca3b43f7d72252b1fdcc1b' (2024-08-22) • Updated input 'nixos-hardware': 'github:NixOS/nixos-hardware/c54cf53e022b0b3c1d3b8207aa0f9b194c24f0cf' (2024-08-10) → 'github:NixOS/nixos-hardware/b09c46430ffcf18d575acf5c339b38ac4e1db5d2' (2024-08-19) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/c3d4ac725177c030b1e289015989da2ad9d56af0' (2024-08-15) → 'github:NixOS/nixpkgs/224042e9a3039291f22f4f2ded12af95a616cca0' (2024-08-21) • Updated input 'nixpkgs-unstable': 'github:NixOS/nixpkgs/c3aa7b8938b17aebd2deecf7be0636000d62a2b9' (2024-08-14) → 'github:NixOS/nixpkgs/c374d94f1536013ca8e92341b540eba4c22f9c62' (2024-08-21) • Updated input 'nixvim': 'github:nix-community/nixvim/0b6aa80acbcb8387f2a4affb3dd22960ac2899aa' (2024-08-13) → 'github:nix-community/nixvim/9b5bb1a7695fa1ab041982347b2444d87bb53c32' (2024-08-22) • Updated input 'nixvim/git-hooks': 'github:cachix/git-hooks.nix/c7012d0c18567c889b948781bc74a501e92275d1' (2024-08-09) → 'github:cachix/git-hooks.nix/6cedaa7c1b4f82a266e5d30f212273e60d62cb0d' (2024-08-21) • Updated input 'nixvim/nix-darwin': 'github:lnl7/nix-darwin/91010a5613ffd7ee23ee9263213157a1c422b705' (2024-08-06) → 'github:lnl7/nix-darwin/a8968d88e5a537b0491f68ce910749cd870bdbef' (2024-08-22) • Updated input 'nixvim/treefmt-nix': 'github:numtide/treefmt-nix/349de7bc435bdff37785c2466f054ed1766173be' (2024-08-12) → 'github:numtide/treefmt-nix/1d07739554fdc4f8481068f1b11d6ab4c1a4167a' (2024-08-16) • Updated input 'plasma-manager': 'github:nix-community/plasma-manager/8726ecaa8b8c06910ef31abced57bf08a59730a1' (2024-08-16) → 'github:nix-community/plasma-manager/0b7f9b5eed2d221db4b6ed4dade0b4e9f50dfd6f' (2024-08-22) • Updated input 'secrets': 'git+ssh://git@git.vimium.com/jordan/nix-secrets.git?ref=refs/heads/master&rev=db951141cab2de0b4176f4f6fc42a50b30dd3950' (2024-08-11) → 'git+ssh://git@git.vimium.com/jordan/nix-secrets.git?ref=refs/heads/master&rev=7f5901bb5d6eeaa94d7e1f18f66093be9df014e4' (2024-08-19)	2024-08-23 09:42:09 +01:00
Jordan Holt	decc27afd7	Add NetBird module	2024-08-23 09:40:55 +01:00
Jordan Holt	bdd73f1ef8	Use unstable kanidm	2024-08-18 23:09:47 +01:00