added kaylee configuration

2025-12-06 08:48:34 -05:00 · 2025-10-10 01:37:48 +00:00 · 2025-10-10 01:37:48 +00:00 · 682b99d550
commit 682b99d550
parent 157571bd49
3 changed files with 105 additions and 2 deletions
--- a/dot_config/flake/machines/kaylee/configuration.nix
+++ b/dot_config/flake/machines/kaylee/configuration.nix
@ -4,10 +4,14 @@
  lib,
  pkgs,
  ...
-}: {
+}: let
+  secrets = builtins.fromTOML (builtins.readFile ./secrets.toml);
+in {
  imports = [
    # Include the results of the hardware scan.
    ./hardware-configuration.nix
+
+    ../../modules/nixos/docker.nix
  ];

  nixpkgs = {
@ -31,6 +35,47 @@
    nixPath = lib.mapAttrsToList (n: _: "${n}=flake:${n}") flakeInputs;
  };

+  # forgejo
+  virtualisation.oci-containers = {
+    backend = "docker";
+    containers = {
+      baszel = {
+        image = "henrygd/beszel-agent:latest";
+        autoStart = true;
+        environment = {
+          PORT = "45876";
+          KEY = secrets.baszel_key;
+          HUB_URL = "http://10.0.0.2:8090";
+          TOKEN = secrets.baszel_token;
+        };
+        volumes = [
+          "/var/run/docker.sock:/var/run/docker.sock"
+        ];
+      };
+      forgejo-runner = {
+        # serviceName = "forgejo-runner";
+        autoStart = true;
+        privileged = true;
+        cmd = ["forgejo-runner" "--config" "/data/config.yml" "daemon"];
+        user = "1000:131";
+        networks = ["forgejo"];
+        image = "data.forgejo.org/forgejo/runner:11";
+        environment = {
+          DOCKER_HOST = "unix:///var/run/docker.sock";
+        };
+        ports = [
+          "8080:8080"
+        ];
+        volumes = [
+          "/var/run/docker.sock:/var/run/docker.sock"
+          "/home/tyler/.config/forgejo:/data"
+          "/home/tyler/.local/cache/forgejo:/cache"
+          "/home/tyler/.local/share/forgejo:/workspace"
+        ];
+      };
+    };
+  };
+
  # Use the systemd-boot EFI boot loader.
  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;
@ -44,12 +89,16 @@

  networking.hostName = "kaylee";
  services.dnsmasq.enable = true;
+  services.avahi = {
+    enable = true;
+    nssmdns4 = true;
+  };

  services.xserver.xkb.layout = "us";

  users.users.tyler = {
    isNormalUser = true;
-    extraGroups = ["wheel"]; # Enable ‘sudo’ for the user.
+    extraGroups = ["wheel" "docker"]; # Enable ‘sudo’ for the user.
    shell = pkgs.fish;
  };

@ -60,6 +109,9 @@
    restic
    git
    chezmoi
+    git
+    curl
+    unzip
  ];

  programs.fish.enable = true;