# Make readTree happy at this level.
_: { }
+# EXWM and other desktop configuration.
services = {
pipewire = {
enable = true;
alsa.enable = true;
pulse.enable = true;
};
+    };
blueman.enable = true;
xserver = {
enable = true;
layout = "us";
xkbOptions = "caps:super";
libinput.enable = true;
displayManager = {
+      displayManager = {
sessionCommands = "${pkgs.xorg.xhost}/bin/xhost +SI:localuser:$USER";
lightdm.enable = true;
+        lightdm.enable = true;
};
+      };
name = "exwm";
+        name = "exwm";
};
};
};
+  };
environment.sessionVariables = {
XMODIFIERS = "@im=exwm-xim";
GTK_IM_MODULE = "xim";
QT_IM_MODULE = "xim";
CLUTTER_IM_MODULE = "xim";
EDITOR = "emacsclient";
};
+  };
systemd.services.display-manager.restartIfChanged = lib.mkForce false;
# If something needs more than 10s to stop it should probably be
# killed.
systemd.extraConfig = ''
+  # killed.
'';
+    DefaultTimeoutStopSec=10s
+  '';
# Attempt at configuring reasonable font-rendering.
{ pkgs, ... }:
fonts = {
+  fonts = {
corefonts
dejavu_fonts
jetbrains-mono
noto-fonts-cjk
noto-fonts-emoji
];
+    ];
hinting.enable = true;
subpixel.lcdfilter = "light";
defaultFonts = {
monospace = [ "JetBrains Mono" ];
};
};
};
+  };
# Configuration for machines with HiDPI displays, which are a total
# mess, of course.
{ ... }:
+# mess, of course.
+{ ... }:
# Ensure a larger font size in early boot stage.
hardware.video.hidpi.enable = true;
+  environment.variables.HIDPI_SCREEN = "true";
services.xserver.dpi = 161;
+  hardware.video.hidpi.enable = true;
+  # Bump DPI across the board.
+  # TODO(tazjin): This should actually be set per monitor, but I
+  # haven't yet figured out the right interface for doing that.
+  services.xserver.dpi = 161;
+# Inject the right home-manager config for the machine.
users.users.tazjin = {
isNormalUser = true;
createHome = true;
+    createHome = true;
uid = 1000;
shell = pkgs.fish;
+    shell = pkgs.fish;
};
nix = {
+  nix = {
};
+  };
+  home-manager.useGlobalPkgs = true;
+  home-manager.users.tazjin = depot.users.tazjin.home."${config.networking.hostName}";
# Configuration specifically for laptops that move around.
{ ... }:
+{ ... }:
services.geoclue2.enable = true;
location.provider = "geoclue2";
services.localtime.enable = true;
# Enable power-saving features.
services.tlp.enable = true;
programs.light.enable = true;
+  programs.light.enable = true;
+# Configuration for persistent (non-home) data.
imports = [
+  imports = [
];
+  ];
directories = [
+    directories = [
"/etc/mullvad-vpn"
"/var/cache/mullvad-vpn"
"/var/lib/bluetooth"
"/var/lib/systemd/coredump"
"/var/lib/tailscale"
"/var/log"
];
files = [
"/etc/machine-id"
];
};
+  };
+  programs.fuse.userAllowOther = true;
# Default configuration settings for physical machines that I use.
{ pkgs, depot, ... }:
+{ pkgs, depot, ... }:
# Install all the default software.
environment.systemPackages =
# programs from the depot
(with depot; [
users.tazjin.screenLock
users.tazjin.emacs
third_party.agenix.cli
]) ++
+    ]) ++
(with pkgs; [
amber
audacity
bat
curl
ddcutil
direnv
dmd
dnsutils
electrum
+      electrum
exa
fd
file
firefox
fractal
gdb
gh
git
gnupg
google-chrome
gtk3 # for gtk-launch
htop
hyperfine
iftop
imagemagick
jq
lieer
man-pages
mosh
msmtp
mullvad-vpn
networkmanagerapplet
nix-prefetch-github
nmap
notmuch
openssh
openssl
paperlike-go
pass-otp
pavucontrol
pinentry
pinentry-emacs
pulseaudio # for pactl
pwgen
quasselClient
rink
ripgrep
rustup
screen
scrot
tig
tokei
tree
unzip
vlc
whois
xsecurelock
zoxide
]);
+    ]);
services = {
+  services = {
fwupd.enable = true;
};
+  };
fish.enable = true;
mosh.enable = true;
ssh.startAgent = true;
};
+  };
{ config, depot, lib, pkgs, ... }:
systemd.services.tgsa = {
description = "telegram -> SA bbcode thing";
wantedBy = [ "multi-user.target" ];
serviceConfig = {
DynamicUser = true;
Restart = "always";
ExecStart = "${depot.users.tazjin.tgsa}/bin/tgsa"
+    };
+  };
+  services.nginx.virtualHosts."tgsa" = {
+    serverName = "tgsa.tazj.in";
+    enableACME = true;
+    forceSSL = true;
+    locations."/" = {
+      proxyPass = "";
+    };
+  };
+# Configuration for my Zerotier network.
+  environment.persistence."/persist".directories = [
+    "/var/lib/zerotier-one"
+  ];
+  services.zerotierone.enable = true;
+  services.zerotierone.joinNetworks = [
+    "35c192ce9bd4c8c7"
+  ];
+  networking.firewall.trustedInterfaces = [ "zt7nnembs4" ];