{ config, lib, pkgs, ... }: { imports = [ ./hardware-configuration.nix ../modules/apple-silicon-support ]; boot.loader.systemd-boot.enable = true; boot.loader.efi.canTouchEfiVariables = false; # Specify path to peripheral firmware files. # This lets the flake stay pure. hardware.asahi.peripheralFirmwareDirectory = ./asahi_firmware; # Or completely disable extraction and managemement of them completely: # hardware.asahi.extractPeripheralFirmware = false; boot.supportedFilesystems = [ "zfs" ]; networking.hostName = "kompakt"; networking.hostId = "9c8c0140"; boot.initrd.postDeviceCommands = lib.mkAfter '' zfs rollback -r rpool/local/root@blank ''; networking.wireless.iwd.enable = true; time.timeZone = "Asia/Seoul"; i18n.defaultLocale = "en_US.UTF-8"; console = { font = "ter-v32n"; packages = with pkgs; [ terminus_font ]; }; services.printing.enable = true; sound.enable = true; sops.defaultSopsFile = ./secrets/secrets.yaml; sops.secrets.root-password.neededForUsers = true; sops.secrets.sefidel-password.neededForUsers = true; users.mutableUsers = false; users.users = { root.passwordFile = config.sops.secrets.root-password.path; sefidel = { isNormalUser = true; shell = pkgs.zsh; passwordFile = config.sops.secrets.sefidel-password.path; extraGroups = [ "wheel" ]; # Enable ‘sudo’ for the user. }; }; services.openssh.enable = true; environment.systemPackages = with pkgs; [ git ]; environment.persistence."/persist".directories = [ "/etc/ssh" "/etc/nixos" ]; fileSystems."/persist".neededForBoot = true; # This value determines the NixOS release from which the default # settings for stateful data, like file locations and database versions # on your system were taken. It‘s perfectly fine and recommended to leave # this value at the release version of the first install of this system. # Before changing this value read the documentation for this option # (e.g. man configuration.nix or on https://nixos.org/nixos/options.html). system.stateVersion = "23.05"; # Did you read the comment? }