flake/nixos/profiles/common/opt-in/impermanence.nix

54 lines
1.2 KiB
Nix
Raw Normal View History

2023-12-10 15:56:40 +00:00
{lib, ...}: {
2023-11-23 06:23:03 +00:00
### sops-nix
2023-12-21 00:03:59 +00:00
sops.age.sshKeyPaths = lib.mkForce ["/persist/etc/ssh/ssh_host_ed25519_key"];
2023-10-12 14:21:14 +00:00
2023-12-10 15:42:07 +00:00
fileSystems."/persist".neededForBoot = true;
environment.persistence."/persist" = {
hideMounts = true;
2023-10-12 14:21:14 +00:00
directories = [
2023-10-12 15:13:05 +00:00
"/var/log"
"/var/lib"
2023-12-10 15:42:07 +00:00
"/etc/secureboot" # sbctl, lanzaboote
2023-10-12 14:21:14 +00:00
];
files = [
"/etc/ssh/ssh_host_ed25519_key"
"/etc/ssh/ssh_host_ed25519_key.pub"
"/etc/ssh/ssh_host_rsa_key"
"/etc/ssh/ssh_host_rsa_key.pub"
];
2023-12-10 15:42:07 +00:00
users.guanranwang = {
directories = [
"Desktop"
"Documents"
"Downloads"
"Music"
"Pictures"
#"Public"
#"Templates"
"Videos"
".cache"
".local/share" # ".local/bin" is managed through home-manager
".local/state"
".ssh"
".librewolf"
2024-01-07 15:45:20 +00:00
".thunderbird"
2023-12-10 15:42:07 +00:00
".config/chromium"
".config/fcitx5"
".config/Mumble"
2023-12-27 04:42:45 +00:00
".config/spotify"
2024-01-01 08:26:18 +00:00
".config/obs-studio"
".config/qBittorrent"
2024-01-03 21:03:46 +00:00
".config/VSCodium" # UI states, GitHub account state, etc
2023-12-10 15:42:07 +00:00
];
files = [
".config/sops/age/keys.txt"
2024-01-15 09:02:06 +00:00
#".config/KDE/neochat.conf"
#".config/neochatrc"
2023-12-10 15:42:07 +00:00
];
};
2023-10-12 14:21:14 +00:00
};
}