flake/nixos/flake-modules/impermanence.nix

60 lines
1.3 KiB
Nix
Raw Normal View History

2023-11-23 06:23:03 +00:00
{
inputs,
lib,
...
}: {
imports = [
inputs.impermanence.nixosModules.impermanence
./sops-nix.nix
];
### sops-nix
sops.age.sshKeyPaths = lib.mkForce ["/nix/persist/system/etc/ssh/ssh_host_ed25519_key"];
2023-10-12 14:21:14 +00:00
2023-12-10 15:42:07 +00:00
fileSystems."/persist".neededForBoot = true;
environment.persistence."/persist" = {
hideMounts = true;
2023-10-12 14:21:14 +00:00
directories = [
2023-10-12 15:13:05 +00:00
"/var/log"
"/var/lib"
2023-10-12 14:21:14 +00:00
"/etc/clash-meta" # clash-meta
2023-12-10 15:42:07 +00:00
"/etc/secureboot" # sbctl, lanzaboote
2023-10-12 14:21:14 +00:00
];
files = [
"/etc/ssh/ssh_host_ed25519_key"
"/etc/ssh/ssh_host_ed25519_key.pub"
"/etc/ssh/ssh_host_rsa_key"
"/etc/ssh/ssh_host_rsa_key.pub"
];
2023-12-10 15:42:07 +00:00
users.guanranwang = {
directories = [
"Desktop"
"Documents"
"Downloads"
"Music"
"Pictures"
#"Public"
#"Templates"
"Videos"
".cache"
".local/share" # ".local/bin" is managed through home-manager
".local/state"
".ssh"
".librewolf"
".config/chromium"
".config/fcitx5"
".config/Mumble"
".config/nvim" # not managed with git because my configuration is trash and i do not want other people to see it
];
files = [
".config/sops/age/keys.txt"
".config/KDE/neochat.conf"
".config/neochatrc"
];
};
2023-10-12 14:21:14 +00:00
};
}