Added configuration to set fish as the default shell for user harald. This improves user experience by providing a more friendly and powerful shell environment.
Moved the system defaults configuration block to follow the system activation script definition. This change organizes the code better, improving readability and maintainability.
Introduce a script to organize applications under /Applications/Nix Apps. This setup improves the management and accessibility of system applications by creating aliases for them.
Introduces a new configuration for setting the maintenance window start in the Nextcloud settings. This ensures better scheduling and coordination for maintenance activities.
The dlog alias now includes the '-p' flag to display patch output by default. This change helps users see inline differences along with the log entries.
Added systemd and PAM configuration to set NOFILE and MEMLOCK limits to 32768. This change enhances the system's capability to handle a larger number of open files and memory-locked segments.
Increased the file descriptor limit (NOFILE) from 32000 to 32768 in systemd and PAM settings. This adjustment aligns system limits with higher resource demands.
Added configuration to increase the system-wide file descriptor limit and memory lock limit. This change involves updating systemd and PAM settings to enhance resource management.
Set `submodule.recurse` to true in the git configuration. This change ensures that all submodules are automatically initialized and updated recursively.
Updated Avahi service configuration to support both IPv4 and IPv6 addressing. This change includes enabling nssmdns4 and nssmdns6, along with setting ipv4 and ipv6 to true.
Reorganized the configuration blocks for better readability. The `enabledPreviewProviders` list and `phpOptions` section now follow a more logical structure.
Disable the NIXOS_OZONE_WL environment variable in session variables to avoid potential conflicts. This change ensures the stability of the GUI service while leaving the intel-media-driver configuration untouched.
This commit enhances the Nextcloud configuration by enabling previews for WEBP image files. It adds "OC\\Preview\\WEBP" to the list of supported preview formats.
Update coturn service configuration with new port ranges and enhanced security options. Also, add ACME support for certificate management and configure firewall to allow necessary ports.
Ensure the coturn static-auth-secret has the correct owner and specifies restart units. This enhances security by assigning ownership and improves reliability by ensuring relevant units restart when secrets change.
Add coturn service definition for x86_64-linux systems with static-auth-secret and additional settings for Nextcloud integration. Includes secrets management via `sops` and secure TLS configurations.
Enabled Intel media driver support and set environment variables for better compatibility with Wayland. Also updated MPV configuration for hardware decoding and GPU settings.
Move and enhance OpenGL configuration in GUI services. The configuration now includes onevpl-intel-gpu and retains intel-compute-runtime from base services.
Added an HTTP SSL CA certificate configuration to enhance security and ensure trusted connections. This change sets the CA certificate file path to '/etc/ssl/certs/ca-certificates.crt'.
Added a custom shell script for qemu-system-x86_64 enabling UEFI support using OVMF. This ensures that the command uses the specified OVMF firmware for UEFI boot.
Add chromium and rustup to systemPackages, and move pcsctools and yubikey-personalization entries. Introduce environment session variable NIXOS_OZONE_WL for better Wayland support.
Updated LUKS device configurations to include allowDiscards option. This allows the system to send discard/TRIM commands to LUKS devices for better performance.
Removed unnecessary blank lines to improve readability and maintain consistency with the formatting guidelines. This change does not impact functionality but cleans up the code.
Enable temporary file storage on tmpfs and configure TMPDIR for the nix-daemon. Also, ensure temporary files are cleaned on boot and enable fstrim service for filesystem maintenance.
Added configuration to use the latest kernel packages for boot. This change ensures the system benefits from the most recent updates and security patches.
The extraConfig for resolved had an incorrect semicolon causing configuration issues. This change removes the semicolon to ensure proper configuration loading.
Enabled the Syncthing service in the fileserver configuration. Set the user to 'harald' and specified directories for data and configuration.
Signed-off-by: Harald Hoyer <harald@hoyer.xyz>
Changed the keyboard variant configuration in xserver to include a trailing comma. This ensures the variant setting is correctly parsed by the xserver.
Enabled ResolveUnicastSingleLabel option in systemd-resolved configuration. This ensures unicast single-label domain names can be resolved. Added in the extraConfig section.
The alacritty package entry was misaligned in the list of systemPackages. This fix ensures consistent indentation for better readability and maintainability.
This commit shifts the Alacritty terminal emulator from "tools" within the user-level configuration to "systemPackages" under the base services configuration. This change allows global access to Alacritty across the system.
Harald Hoyer