From dc0eb0ec4674ee97a7bbf0070ce841afbf47b994 Mon Sep 17 00:00:00 2001
From: Christian Krinitsin <code@krinitsin.xyz>
Date: Wed, 26 Feb 2025 13:00:48 +0100
Subject: add nginx webserver with acme

---
 configuration.nix | 29 ++++++++++-------------------
 1 file changed, 10 insertions(+), 19 deletions(-)

(limited to 'configuration.nix')

diff --git a/configuration.nix b/configuration.nix
index 361aff7..e95f0cb 100644
--- a/configuration.nix
+++ b/configuration.nix
@@ -2,23 +2,19 @@
 
 {
   imports =
-    [ # Include the results of the hardware scan.
+    [
       ./hardware-configuration.nix
+      ./modules/ssh.nix
+      ./modules/user.nix
       ./modules/minecraft-server.nix
+      ./modules/webserver.nix
+      ./modules/syncthing.nix
+      ./modules/mailserver.nix
     ];
 
-  boot.loader.grub.enable = true;
-  boot.loader.grub.device = "/dev/vda";
-
   networking.hostName = "nixos";
-
   time.timeZone = "Europe/Berlin";
-
-  users.users.admin = {
-    isNormalUser = true;
-    extraGroups = [ "wheel" ];
-    openssh.authorizedKeys.keys = [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJZxiAIsF13XqqxG0QzGFhT3iLDMsu2snb0wJOPUUq8e chris@deskpin" ];
-  };
+  networking.firewall.enable = true;
 
   environment.systemPackages = with pkgs; [
     git
@@ -26,15 +22,10 @@
     openssh
     htop
     lazygit
-  ];
-
-  services.openssh.enable = true;
-  services.openssh.settings.PasswordAuthentication = false;
-  security.sudo.wheelNeedsPassword = false;
 
-  networking.firewall.enable = true;
-  networking.firewall.allowedTCPPorts = [ 22 ];
-  networking.firewall.allowedUDPPorts = [ ];
+    python312
+    python312Packages.flask
+  ];
 
   system.copySystemConfiguration = true;
   system.stateVersion = "24.11";
-- 
cgit v1.2.3