beginning of big refactoring

2024-07-20 13:18:01 +02:00 · 2024-07-20 13:18:01 +02:00 · e09e7277eb
commit e09e7277eb
parent 6a5bf3373a
68 changed files with 358 additions and 2818 deletions
--- a/modules/options/system/module.nix
+++ b/modules/options/system/module.nix
@ -0,0 +1,118 @@
+{
+  config,
+  lib,
+  ...
+}: let
+  inherit (builtins) elemAt;
+  inherit (lib.options) mkOption mkEnableOption;
+  inherit (lib.modules) mkMerge;
+  inherit (lib.lists) optionals;
+  inherit (lib.types) enum listOf str nullOr bool package;
+in {
+  imports = [
+    # configuration options for nixos activation scripts
+    #  ./activation.nix
+
+    # boot/impermanence mounts
+    #  ./boot.nix
+    #  ./impermanence.nix
+
+    # network and overall hardening
+    ./networking
+    #  ./security.nix
+    #  ./encryption.nix
+
+    # filesystems
+    #  ./fs.nix
+
+    # emulation and virtualization
+    #  ./emulation.nix
+    #  ./virtualization.nix
+
+    # package and program related options
+    #  ./services
+    ./programs
+
+    # systemd-nspawn containers
+    #  ./containers.nix
+  ];
+  config = {
+    warnings = mkMerge [
+      (optionals (config.modules.system.users == []) [
+        ''
+          You have not added any users to be supported by your system. You may end up with an unbootable system!
+
+          Consider setting {option}`config.modules.system.users` in your configuration
+        ''
+      ])
+    ];
+  };
+
+  options.modules.system = {
+    mainUser = mkOption {
+      type = enum config.modules.system.users;
+      default = elemAt config.modules.system.users 0;
+      description = ''
+        The username of the main user for your system.
+
+        In case of a multiple systems, this will be the user with priority in ordered lists and enabled options.
+      '';
+    };
+
+    users = mkOption {
+      type = listOf str;
+      default = ["charlie"];
+      description = "A list of home-manager users on the system.";
+    };
+
+    autoLogin = mkOption {
+      type = bool;
+      default = false;
+      description = ''
+        Whether to enable passwordless login. This is generally useful on systems with
+        FDE (Full Disk Encryption) enabled. It is a security risk for systems without FDE.
+      '';
+    };
+
+    yubikeySupport = {
+      enable = mkEnableOption "yubikey support";
+      deviceType = mkOption {
+        type = nullOr (enum ["NFC5" "nano"]);
+        default = null;
+        description = "A list of device models to enable Yubikey support for";
+      };
+    };
+
+    sound = {
+      enable = mkEnableOption "sound related programs and audio-dependent programs";
+    };
+
+    video = {
+      enable = mkEnableOption "video drivers and programs that require a graphical user interface";
+    };
+
+    bluetooth = {
+      enable = mkEnableOption "bluetooth modules, drivers and configuration program(s)";
+    };
+
+    # should the device enable printing module and try to load common printer modules
+    # you might need to add more drivers to the printing module for your printer to work
+    printing = {
+      enable = mkEnableOption "printing";
+      extraDrivers = mkOption {
+        type = listOf str;
+        default = [];
+        description = "A list of extra drivers to enable for printing";
+      };
+
+      "3d" = {
+        enable = mkEnableOption "3D printing suite";
+        extraPrograms = mkOption {
+          type = listOf package;
+          default = [];
+          description = "A list of extra programs to enable for 3D printing";
+        };
+      };
+    };
+  };
+}
--- a/modules/options/system/networking/default.nix
+++ b/modules/options/system/networking/default.nix
@ -0,0 +1,7 @@
+{lib, ...}: let
+  inherit (lib) mkEnableOption mkOption types;
+in {
+  options.modules.system.networking = {
+    nftbles.enable = mkEnableOption "Nftables firewall";
+  };
+}
--- a/modules/options/system/programs/default.nix
+++ b/modules/options/system/programs/default.nix
@ -0,0 +1,53 @@
+{lib, ...}: let
+  inherit (lib) mkEnableOption mkOption types;
+in {
+  options.modules.system.programs = {
+    editors = {
+      emacs.enable = mkEnableOption "Emacs operatig system";
+      neovim.enable = mkEnableOption "Neovim text editor";
+      helix.enable = mkEnableOption "Helix text editor";
+      kakoune.enable = mkEnableOption "Kakoune text editor";
+    };
+
+    discord.enable = mkEnableOption "Discord messenger";
+    spotify.enable = mkEnableOption "Spotify music client";
+    zathura.enable = mkEnableOption "Zathura pdf viewer";
+    nextcloud.enable = mkEnableOption "Nextcloud sync client";
+    firefox.enable = mkEnableOption "Firefox web browser";
+
+    terminals = {
+      foot.enable = mkEnableOption "Foot terminal emulator";
+      kitty.enable = mkEnableOption "Kitty terminal emulator";
+    };
+
+    git = {
+      signingKey = mkOption {
+        type = types.str;
+        default = "";
+        description = "The default gpg key used for signing commits";
+      };
+    };
+    default = {
+      terminal = mkOption {
+        type = types.enum ["foot" "kitty"];
+        default = "foot";
+      };
+      fileManager = mkOption {
+        type = types.enum ["thunar" "dolphin" "nemo"];
+        default = "thunar";
+      };
+      browser = mkOption {
+        type = types.enum ["firefox" "librewolf" "chromium"];
+        default = "firefox";
+      };
+      editor = mkOption {
+        type = types.enum ["neovim" "helix" "emacs"];
+        default = "emacs";
+      };
+      launcher = mkOption {
+        type = types.enum ["anyrun" "rofi" "wofi"];
+        default = "anyrun";
+      };
+    };
+  };
+}