add SOPS, etc.

2024-04-07 17:54:27 -05:00 · 2024-04-07 17:54:27 -05:00 · 10c6af76f2
commit 10c6af76f2
parent e1f0194350
25 changed files with 435 additions and 413 deletions
--- a/nixos/t14/backups.nix
+++ b/nixos/t14/backups.nix
@ -0,0 +1,32 @@
+{config, ...}: {
+  sops = {
+    defaultSopsFile = ../../secrets/restic.yaml;
+    age.keyFile = "/home/e/.config/sops/age/keys.txt";
+    secrets = {
+      "b2-home/env" = {};
+      "b2-home/repo" = {};
+      "b2-home/password" = {};
+    };
+  };
+  services.restic.backups = {
+    b2-home = {
+      initialize = true;
+      environmentFile = config.sops.secrets."b2-home/env".path;
+      repositoryFile = config.sops.secrets."b2-home/repo".path;
+      passwordFile = config.sops.secrets."b2-home/password".path;
+
+      paths = [
+        "/home/e/backmeup"
+        "/home/e/.ssh"
+        "/home/e/.librewolf"
+        "/home/e/.runelite"
+      ];
+      timerConfig = {
+        OnCalendar = "01:00";
+      };
+      pruneOpts = [
+        "--keep-last 14"
+      ];
+    };
+  };
+}
--- a/nixos/t14/configuration.nix
+++ b/nixos/t14/configuration.nix
@ -9,6 +9,7 @@ in {
  imports = [
    ./hardware-configuration.nix
    ./nano.nix
+    ./backups.nix
  ];
  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;
@ -16,7 +17,6 @@ in {
  environment.systemPackages = with pkgs; [
    cryptsetup
    nfs-utils
-    comma
  ];
  environment.extraInit = "[[ -f ${homeManagerSessionVars} ]] && source ${homeManagerSessionVars} && echo 'x' > /tmp/test";

@ -48,7 +48,6 @@ in {

  # Services
  virtualisation = {
-    libvirtd.enable = true;
    podman = {
      enable = true;
      dockerCompat = true;
@ -77,29 +76,8 @@ in {
    enable = true;
    settings = {
      WIFI_PWR_ON_BAT = "off";
-      CPU_BOOST_ON_BAT = "0";
-      CPU_BOOST_ON_AC = "1";
-
-      PLATFORM_PROFILE_ON_AC = "low-power";
-      PLATFORM_PROFILE_ON_BAT = "low-power";
-      CPU_SCALING_GOVERNOR_ON_AC = "powersave";
-      CPU_SCALING_GOVERNOR_ON_BAT = "powersave";
-
-      CPU_ENERGY_PERF_POLICY_ON_BAT = "power";
-      CPU_ENERGY_PERF_POLICY_ON_AC = "power";
-
-      CPU_MIN_PERF_ON_AC = 0;
-      CPU_MAX_PERF_ON_AC = 100;
-      CPU_MIN_PERF_ON_BAT = 0;
-      CPU_MAX_PERF_ON_BAT = 25;
-      RADEON_DPM_STATE_ON_AC = "performance";
-      RADEON_DPM_STATE_ON_BAT = "battery";
-      RADEON_POWER_PROFILE_ON_AC = "high";
-      RADEON_POWER_PROFILE_ON_BAT = "low";
-
-      #Optional helps save long term battery health
-      START_CHARGE_THRESH_BAT0 = 80; # bellow it starts to charge
-      STOP_CHARGE_THRESH_BAT0 = 95; # above it stops charging
+      START_CHARGE_THRESH_BAT0 = 80;
+      STOP_CHARGE_THRESH_BAT0 = 85;
    };
  };