Ittihadyya/adyya-flake
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

merge into: Ittihadyya:ntfy
Branches Tags
Ittihadyya:trunk
Ittihadyya:ntfy
...
pull from: Ittihadyya:trunk
Branches Tags
Ittihadyya:trunk
Ittihadyya:ntfy

45 commits
ntfy ... trunk

Author SHA1 Message Date
Ittihadyya
678df5f52f "smooth" scroll plugin
Some checks failed
/ Check formatting (push) Has been cancelled
Details
2025-03-14 20:01:17 +02:00
Ittihadyya
3ec21cacf6 whatsapp client 2025-03-14 20:01:07 +02:00
Ittihadyya
186d04dbcf more plugins
Some checks failed
/ Check formatting (push) Has been cancelled
Details
2025-02-18 20:24:43 +02:00
Ittihadyya
5045ba142a formatting 2025-02-18 20:24:30 +02:00
Ittihadyya
ad9d929e95 added droidcam to programs 2025-02-18 20:24:24 +02:00
Ittihadyya
e723c2f526 added snd-aloop kernel module 2025-02-18 20:24:01 +02:00
Ittihadyya
3343df51cc vscode extensions 2025-02-18 20:23:41 +02:00
Ittihadyya
4a2ddb2f65 moved gts overlay to fructose 2025-02-18 20:23:22 +02:00
Ittihadyya
2610f38b75 added comment 2025-02-18 20:23:07 +02:00
Ittihadyya
56eea3887a oops i forgot to cook the hashes
Some checks failed
/ Check formatting (push) Has been cancelled
Details
2025-02-13 00:31:24 +02:00
Ittihadyya
d583bce0fb turn the gts overlay on for fructose
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-02-13 00:18:39 +02:00
Ittihadyya
06ab75d92a Updated the gts packaging, because of https://gts.superseriousbusiness.org/@gotosocial/statuses/01JKXJPCK9XZ7NKDVBTYRJNNNE
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-02-12 20:34:27 +02:00
Ittihadyya
46fdb8d28b updated flake inputs and changed some vscode plugins 2025-02-12 20:34:12 +02:00
Ittihadyya
350de4586a removed varnish bc of an error
Some checks failed
/ Check formatting (push) Has been cancelled
Details
2025-02-10 14:58:42 +02:00
Ittihadyya
84456b03bc updated inputs
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-02-10 14:53:28 +02:00
Ittihadyya
3420f9c014 Merge branch 'trunk' of ssh://git.collective-conciousness.monster:222/Ittihadyya/adyya-flake into trunk 

 2025-02-10 14:50:29 +02:00
Ittihadyya
9351fcfc6b added mincreaft launchers 2025-02-10 14:50:00 +02:00
Ittihadyya
9d15e9ee37 added some LaTeX pkgs and added more comments to that file 2025-01-25 19:31:20 +02:00
Ittihadyya
c439126178 updated lockfile
Some checks failed
/ Check formatting (push) Has been cancelled
Details
2025-01-20 12:52:14 +02:00
Ittihadyya
d376131cf0 oh oops.
Some checks failed
/ Check formatting (push) Has been cancelled
Details
2025-01-17 16:47:46 +02:00
Ittihadyya
311072d517 formatted
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-17 16:12:49 +02:00
Ittihadyya
b7bec87784 updated lockfile, added fluffychat to apps, added/moved various comments.
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-17 16:12:10 +02:00
Ittihadyya
911fde7430 Merge pull request 'Set up a working conduwuit server' (#2) from conduit into trunk
Some checks failed
/ Check formatting (push) Has been cancelled
Details 
Reviewed-on: #2
 2025-01-13 19:24:42 +02:00
Ittihadyya
538a64868c world's most fuc,kign innatentive catgirl?>???
Some checks failed
/ Check formatting (push) Has been cancelled
Details
/ Check formatting (pull_request_target) Has been cancelled
Details
2025-01-13 18:59:37 +02:00
Ittihadyya
0d7b387a95 format Caddyfile properly and try to fix the fucking static response hello please ,,
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 18:55:37 +02:00
Ittihadyya
22befa5a0d i guess i forgot to escape my quotes
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 18:50:28 +02:00
Ittihadyya
3da156a146 try using a static response ffor matrix???
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 18:46:11 +02:00
Ittihadyya
38063d062d urgh
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 18:35:26 +02:00
Ittihadyya
16b425894e freaky shit with the matrix well-known
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 18:29:33 +02:00
Ittihadyya
b4bb6666ac oop
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 18:22:54 +02:00
Ittihadyya
cc857fdab3 i think matrix well-known is like hell 2025-01-13 18:22:49 +02:00
Ittihadyya
d7557053a4 it uh works now. also touched up the Caddyfile a bit.
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 15:25:56 +02:00
Ittihadyya
3bc33b7599 if it's this i will be slightly annoyed
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 15:22:32 +02:00
Ittihadyya
2fb7fd9f6c something strange is afoot
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 15:13:04 +02:00
Ittihadyya
ec10b73ded open firewall properly?
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 15:10:34 +02:00
Ittihadyya
f4e7a44e64 try this?
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 15:08:46 +02:00
Ittihadyya
adbd18e34d something weird is going on, try this?
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 15:06:07 +02:00
Ittihadyya
72cc84f1dc git rename blunder
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 14:52:33 +02:00
Ittihadyya
dbf6ef98d3 fuck me with hammers
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 14:52:04 +02:00
Ittihadyya
2b7f9fc73f fuck me, i guess
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 14:51:27 +02:00
Ittihadyya
95c7651fe9 fuck,, another type error
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 14:49:04 +02:00
Ittihadyya
90ab187a15 type error
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 14:48:04 +02:00
Ittihadyya
eb5cb48c9f ooh there's a separate conduwuit package
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 14:45:16 +02:00
Ittihadyya
094a819f4d fix some errors, add some binary caches, the usual B) -e
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-13 08:37:42 +02:00
Ittihadyya
2e59119a50 initial matrix/conduit stuff, i think?
Some checks are pending
/ Check formatting (push) Waiting to run
Details
2025-01-12 10:58:15 +02:00
20 changed files with 905 additions and 145 deletions
Show stats Expand all files Collapse all files

12
adyya-pkgs/adyya_pkgs.mod.nix
View file

@ -54,17 +54,21 @@
];
}
)
/*
({
];
fructose.modules = [
({
pkgs,
lib,
...
}: {
nixpkgs.overlays = [
(final: prev: {
gts = final.callPackage ./gts.nix {};
})
];
})
*/
# not needed right now. One: gts is now on fructose Two: The latest version of gts is now on nixpkgs
];
personal.modules = [
{
nixpkgs.overlays = [

6
adyya-pkgs/gts.nix
View file

@ -8,11 +8,11 @@
owner = "superseriousbusiness";
repo = "gotosocial";
version = "0.17.3";
version = "0.17.4";
web-assets = fetchurl {
url = "https://github.com/${owner}/${repo}/releases/download/v${version}/${repo}_${version}_web-assets.tar.gz";
hash = "sha256-85CmcWjcX8a+hZxkyRTfXErmkIx64R2scaaS2Fpf668=";
hash = "sha256-esip1xGB0NroYRlKLNEs/o3J2G2nQyOIZTdDpVuY5Ag=";
};
in
buildGoModule rec {
@ -22,7 +22,7 @@ in
src = fetchFromGitHub {
inherit owner repo;
rev = "refs/tags/v${version}";
hash = "sha256-ql0tDaMc/1NgsLUpPHZB6GoXJj9DwUpadTX3AYufR/o=";
hash = "sha256-OikJkTc2UK74eGy8AjEAk8cyRL57QReM0J6tXr9EAjw=";
};
vendorHash = null;

8
apps.mod.nix
View file

@ -42,6 +42,11 @@
(
{pkgs, ...}: {
users.users.emv.extraGroups = ["video"];
nixpkgs.config.permittedInsecurePackages = [
"fluffychat-linux-1.23.0" # it uses an insecure implementation of olm. but the devs are allegedly trying to move to vodozemac (which is an implementation that is not (at least publically announced as) insecure) . Using it instead of element because 1) i don't think the vulnerability is very relevant to our current threat model (as far as we're aware, it requires network or even hardware access, at which point you can already beat me with a baseball bat) and 2) out of the desktop clients, this seems to be one of the only ones with proper multi-account support??
"olm-3.2.16" # tbh i still find it funny that a cryptographic library with a vuln known for several years before this is still used.
# "Note that these are not cryptographically secure implementations. They have no resistence to side-channel attacks and should not be used in contexts that need cryptographically secure implementations. These algorithms are not optimized for speed or space. They are primarily designed to be easy to read, although some basic optimization techniques have been employed."
];
}
)
];
@ -54,8 +59,11 @@
vlc
signal-desktop
discord
element-desktop
fluffychat
obsidian
mumble
wasistlos # this is just whatsapp
# calibre # still borked apparently, what the hell # still!!!
libreoffice
];

2
cluster/virtualisation.mod.nix
View file

@ -18,7 +18,7 @@
containers.enable = true;
podman = {
enable = true;
dockerCompat = false;
dockerCompat = true;
defaultNetwork.settings.dns_enabled = config.networking.hostName == "glucose"; # TODO: fix this stupid shit ssometime -e
};
oci-containers.backend = "podman";

5
dev.mod.nix
View file

@ -29,16 +29,17 @@
programs.vscode = {
enable = true;
package = pkgs.vscodium;
mutableExtensionsDir = false;
mutableExtensionsDir = false; # turning this one makes it not build.
extensions = with pkgs.vscode-extensions; [
rust-lang.rust-analyzer
tuttieee.emacs-mcx
tamasfe.even-better-toml
vadimcn.vscode-lldb
# vadimcn.vscode-lldb# currently doesn't work
jnoortheen.nix-ide
mkhl.direnv
matthewpi.caddyfile-support
vue.volar
zxh404.vscode-proto3
];
};
}

4
emacs.mod.nix
View file

@ -12,6 +12,7 @@
epkgs.auctex # latex
epkgs.preview-dvisvgm # in-line latex preview
epkgs.latex-preview-pane
epkgs.good-scroll
epkgs.pdf-tools
epkgs.obsidian
epkgs.hydra # should be fun
@ -62,6 +63,9 @@
;; obsidian hydra
(bind-key (kbd "C-c M-o") 'obsidian-hydra/body 'obsidian-mode-map)
;; pixel scrolling
(good-scroll-mode 1)
'';
};
}

845
flake.lock
View file

File diff suppressed because it is too large Load diff

4
flake.nix
View file

@ -3,7 +3,7 @@
inputs = {
nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";
nixpkgs-stable.url = "github:NixOS/nixpkgs/nixos-24.05";
nixpkgs-stable.url = "github:NixOS/nixpkgs/nixos-24.11";
home-manager.url = "github:nix-community/home-manager";
home-manager.inputs.nixpkgs.follows = "nixpkgs";
@ -21,7 +21,7 @@
vscode-server.url = "github:nix-community/nixos-vscode-server";
#niri.url = "github:sodiboo/niri-flake";
conduwuit.url = "github:girlbossceo/conduwuit";
};
outputs = {

3
fonts.mod.nix
View file

@ -3,6 +3,9 @@
(
{pkgs, ...}: {
fonts.packages = with pkgs; [
noto-fonts
noto-fonts-cjk-sans
noto-fonts-emoji
dina-font
wqy_zenhei # this is so that hanzi doesn't look like pixel art
nerd-fonts.noto

2
games.mod.nix
View file

@ -19,6 +19,8 @@
lutris
bottles
heroic
prismlauncher
atlauncher
r2modman
];
programs.mangohud.enable = true;

1
hardware.mod.nix
View file

@ -80,6 +80,7 @@ in
boot.kernelModules = [
"usbmon"
"v4l2loopback"
"snd-aloop"
];
boot.extraModulePackages = [];
}

4
nerd.mod.nix
View file

@ -3,12 +3,12 @@
(
{pkgs, ...}: {
home.packages = with pkgs; [
geogebra6 # geogebra5 currently does not work?
# geogebra6 # geogebra5 currently does not work?
gimp
chemtool
avogadro2
];
programs.sagemath.enable = true;
# programs.sagemath.enable = true;
}
)
];

3
networking/firewall.mod.nix
View file

@ -37,11 +37,13 @@
64738 # murmur tcp
6700 # grafana web
6750 # prometheus
7893 # matrix/conduwuit
];
allowedUDPPorts = [
64738 # murmur udp
6700 # grafana web
6750 # prometheus data ap
7893 # matrix/conduwuit
];
};
}
@ -55,6 +57,7 @@
80 # http
222 # forgejo ssh
443 # https
8448 # matrix/conduwuit port, i think ?
64738 # murmur tcp
];
interfaces.eth0.allowedUDPPorts = [

15
nix.mod.nix
View file

@ -127,6 +127,12 @@ in {
nix.settings.trusted-users = ["remote-builder"];
}
)
{
nix.settings = {
substituters = ["https://cache.nixos.org?priority=3"];
trusted-public-keys = ["cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY="];
};
}
(
{
config,
@ -140,11 +146,18 @@ in {
)
{
nix.settings = {
substituters = ["https://cache.collective-conciousness.monster"];
substituters = ["https://cache.collective-conciousness.monster?priority=1"];
trusted-public-keys = ["adyya-flake:PAbC0hnAiNj/kHcm9wIykmKIf25FDeXB6JusqlX2ghs="];
};
}
)
{
nix.settings = {
# binary caches for conduwuit
substituters = ["https://attic.kennel.juneis.dog/conduit?priority=5" "https://attic.kennel.juneis.dog/conduwuit?priority=7"];
trusted-public-keys = ["conduit:eEKoUwlQGDdYmAI/Q/0slVlegqh/QmAvQd7HBSm21Wk=" "conduwuit:BbycGUgTISsltcmH0qNjFR9dbrQNYgdIAcmViSGoVTE="];
};
}
];
personal.modules = [
{

9
peripherals.mod.nix
View file

@ -7,5 +7,14 @@
services.udev.packages = [pkgs.android-udev-rules];
}
)
({
pkgs,
lib,
config,
...
}: {
programs.droidcam.enable = true;
environment.systemPackages = [pkgs.droidcam];
})
];
}

85
services/caddy/Caddyfile
View file

@ -1,58 +1,65 @@
{
layer4 {
:222 {
@a ssh
route @a {
proxy 10.24.1.9:222
}
}
:64738 {
route {
proxy 10.24.1.4:64738
}
}
}
layer4 {
:222 {
@a ssh
route @a {
proxy 10.24.1.9:222
}
}
:64738 {
route {
proxy 10.24.1.4:64738
}
}
}
}
https://collective-conciousness.monster {
encode zstd gzip
header {
Strict-Transport-Security "max-age=31536001; includeSubdomains; preload"
}
root * /var/www/public
file_server {
precompressed zstd br gzip
}
https://collective-conciousness.monster, http://collective-conciousness.monster {
encode zstd gzip
header {
Strict-Transport-Security "max-age=31536001; includeSubdomains; preload"
}
reverse_proxy /_matrix* 10.24.1.4:7893 # allegedly this might not be needed, but it doesn't seem to hurt so
respond /.well-known/matrix/server "{\"m.server\": \"matrix.collective-conciousness.monster:443\"}"
root * /var/www/public
file_server {
precompressed zstd br gzip
}
}
https://git.collective-conciousness.monster {
reverse_proxy 10.24.1.9:3000
reverse_proxy 10.24.1.9:3000
}
https://obs.collective-conciousness.monster {
reverse_proxy 10.24.1.4:5894
https://obs.collective-conciousness.monster {
reverse_proxy 10.24.1.4:5894
}
https://gts.collective-conciousness.monster {
# Optional, but recommended, compress the traffic using proper protocols
encode zstd gzip
# Optional, but recommended, compress the traffic using proper protocols
encode zstd gzip
# The actual proxy configuration to port 8080 (unless you've chosen another port number)
reverse_proxy 10.24.1.9:8080 {
# Flush immediately, to prevent buffered response to the client
flush_interval -1
}
# The actual proxy configuration to port 8080 (unless you've chosen another port number)
reverse_proxy 10.24.1.9:8080 {
# Flush immediately, to prevent buffered response to the client
flush_interval -1
}
}
https://cache.collective-conciousness.monster {
encode zstd gzip
reverse_proxy 10.24.1.4:5020
https://cache.collective-conciousness.monster {
encode zstd gzip
reverse_proxy 10.24.1.4:5020
}
https://grf.collective-conciousness.monster {
encode zstd gzip
encode zstd gzip
reverse_proxy 10.24.1.4:6700
reverse_proxy 10.24.1.4:6700
}
}
http://matrix.collective-conciousness.monster, https://matrix.collective-conciousness.monster, matrix.collective-conciousness.monster, matrix.collective-conciousness.monster:8448, collective-conciousness.monster:8448 {
reverse_proxy 10.24.1.4:7893
}

2
services/monitoring/prometheus.mod.nix
View file

@ -7,7 +7,7 @@
enabledCollectors = ["systemd"];
port = 6703;
};
varnish.enable = true;
varnish.enable = false; # this currently throws an error. boo-hoo
};
}
];

27
services/social/conduwuit.mod.nix Normal file
View file

@ -0,0 +1,27 @@
{conduwuit, ...}: {
glucose.modules = [
({
lib,
config,
...
}: {
services.conduwuit = {
enable = true;
package = conduwuit.packages.x86_64-linux.default;
settings.global = {
server_name = "collective-conciousness.monster";
max_request_size = 1024 * 1024 * 1024;
address = ["0.0.0.0"];
port = [7893];
/*
well-known = {
client = "https://matrix.collective-conciousness.monster";
server = "collective-conciousness.monster:8448";
};
*/
# database_path = lib.mkForce "/var/services/conduwuit/";
};
};
})
];
}

5
sway.mod.nix
View file

@ -110,7 +110,7 @@
### TODO : Resize mode and automatic floating
assigns = {
"1:" = [{title = "^Signal$|Discord$";}];
"1:" = [{title = "^Signal$|Discord$|FluffyChat$";}];
"2:main" = [{title = "VSCodium$";}];
"3:browsing" = [{title = "LibreWolf$";}];
"4:misc" = [];
@ -123,11 +123,12 @@
};
/*
# commented out as they're automagically handled by stylix
colors = {
# should probably use a let ... in ... here
background = "#212121";
focused = {
# border = "#2b83a6"; # test to see if stylix does magic
border = "#2b83a6";
background = "#2b83a6";
text = "#ffffff";
indicator = "#dddddd";

8
tex.mod.nix
View file

@ -12,16 +12,20 @@
dvisvgm
dvipng # in-place output
wrapfig
amsmath
amsmath # METH - I MEAN MATH !!!
ulem
hyperref
capt-of
etoolbox # various for the default config from emacs
latex-uni8
mlmodern # annoying font stuff
asymptote
asymptote # image things
systeme
xstring
tikzfill # dependency of tcolorbox
pdfcol #
pdfcolfoot # dependencies of tcolorbox
tcolorbox # fancy color environments !!!
;
#(setq org-latex-compiler "pdflatex")
#(setq org-preview-latex-default-process "dvisvgm")