adds docker to dnsc-vps-sm

2025-07-07 09:09:28 +02:00 · 2025-07-07 09:09:28 +02:00 · c93db5a8f0
commit c93db5a8f0
parent 1736bb1e6d
3 changed files with 34 additions and 11 deletions
--- a/README.md
+++ b/README.md
@ -4,3 +4,4 @@
 - [ ] Creation of SSH Keys
 - [ ] Restic root SSH config & keys (even better: do not run restic as root)
 - [ ] Splitpro
--- a/hosts/dnsc-vps-sm/default.nix
+++ b/hosts/dnsc-vps-sm/default.nix
@ -5,7 +5,8 @@
  config,
  pkgs,
  ...
-}: {
+}:
 {
  imports = [
    ./hardware-configuration.nix
    ./networking.nix
@ -14,6 +15,7 @@
    ../../modules/vaultwarden
    ../../modules/uptime-kuma
    ../../modules/homepage
    ../../modules/docker
  ];
  # Secrets
@ -42,11 +44,11 @@
  # Launch fish shell
  programs.bash = {
    interactiveShellInit = ''
-    if [[ $(${pkgs.procps}/bin/ps --no-header --pid=$PPID --format=comm) != "fish" && -z ''${BASH_EXECUTION_STRING} ]]
+      if [[ $(${pkgs.procps}/bin/ps --no-header --pid=$PPID --format=comm) != "fish" && -z ''${BASH_EXECUTION_STRING} ]]
-    then
+      then
-      shopt -q login_shell && LOGIN_OPTION='--login' || LOGIN_OPTION=""
+        shopt -q login_shell && LOGIN_OPTION='--login' || LOGIN_OPTION=""
-      exec ${pkgs.fish}/bin/fish $LOGIN_OPTION
+        exec ${pkgs.fish}/bin/fish $LOGIN_OPTION
-    fi
+      fi
    '';
  };
@ -84,7 +86,10 @@
    description = "dennis";
    initialPassword = "admin";
    isNormalUser = true;
-    extraGroups = [ "wheel" "networkmanager" ];
+    extraGroups = [
      "wheel"
      "networkmanager"
    ];
    openssh.authorizedKeys.keys = [
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILvXWZOPOJJDAoF+Sx/ZLoAVu6G/7/MAWoknBgMAzjul dennis@dnsc-mac"
      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKnmuxDkpDIku5t1Tykz21u78xoQ7LJR8JEcfth32LGu dennis@dnsc-work"
@ -101,7 +106,10 @@
  };
  # Enable new Nix CLI and flakes
-  nix.settings.experimental-features = [ "nix-command" "flakes" ];
+  nix.settings.experimental-features = [
    "nix-command"
    "flakes"
  ];
  # Install system wide packages
  environment.systemPackages = with pkgs; [
@ -109,6 +117,7 @@
    btop
    neovim
    wget
    docker-compose
  ];
  # Programs
@ -160,6 +169,9 @@
    virtualHosts."home.dnsc.io".extraConfig = ''
      reverse_proxy localhost:9001
    '';
    virtualHosts."split.dnsc.io".extraConfig = ''
      reverse_proxy localhost:9002
    '';
  };
  # Environment variables
@ -175,4 +187,3 @@
  # For more information, see `man configuration.nix` or https://nixos.org/manual/nixos/stable/options#opt-system.stateVersion .
  system.stateVersion = "23.11";
 }
--- a/modules/docker/default.nix
+++ b/modules/docker/default.nix
@ -0,0 +1,11 @@
 {
  virtualization.docker = {
    enable = true;
    rootless = {
      enable = true;
      setSocketVariable = true;
    };
  };
  users.users.dennis.extraGroups = [ "docker" ];
 }