harald/nixcfg
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Compare commits

base: harald:cb29ee3c9f0a3a497bca2e87f8ef7e4c06082f8b
Branches Tags
harald:main
harald:1
harald:b24.05
..
compare: harald:13bacc1ef1fb2f27f381a50d5d95f07e4761fa7d
Branches Tags
harald:main
harald:1
harald:b24.05

2 commits
cb29ee3c9f ... 13bacc1ef1

Author SHA1 Message Date
Harald Hoyer
13bacc1ef1 refactor(amd): remove duplicate ccache settings 
ccache is already enabled by metacfg.build module

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-17 19:21:03 +01:00
Harald Hoyer
06184eb1b3 refactor(nix): remove duplicate settings already provided by NixOS 
- Remove default-substituter options (NixOS adds cache.nixos.org)
- Remove "root" from trusted-users and allowed-users (NixOS defaults)
- Simplify substituters/trusted-public-keys to only include extras

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-17 19:20:57 +01:00
2 changed files with 4 additions and 24 deletions
Download patch file Download diff file Expand all files Collapse all files

24
modules/nixos/nix/default.nix
View file

@ -25,13 +25,6 @@ in
enable = mkBoolOpt false "Whether or not to manage nix configuration.";
package = mkOpt package pkgs.nix "Which nix package to use.";
default-substituter = {
url = mkOpt str "https://cache.nixos.org" "The url for the substituter.";
key =
mkOpt str "cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY="
"The trusted public key for the substituter.";
};
extra-substituters = mkOpt (attrsOf substituters-submodule) { } "Extra substituters to configure.";
};
@ -58,7 +51,6 @@ in
nix =
let
users = [
"root"
config.metacfg.user.name
]
++ optional config.services.hydra.enable "hydra";
@ -75,19 +67,11 @@ in
sandbox = true;
auto-optimise-store = true;
trusted-users = users;
allowed-users = [
"@users"
"root"
];
allowed-users = [ "@users" ];
substituters = [
cfg.default-substituter.url
]
++ (mapAttrsToList (name: value: name) extra-substituters);
trusted-public-keys = [
cfg.default-substituter.key
]
++ (mapAttrsToList (name: value: value.key) extra-substituters);
# NixOS already adds cache.nixos.org by default, only add extra substituters
substituters = mapAttrsToList (name: _: name) extra-substituters;
trusted-public-keys = mapAttrsToList (_: value: value.key) extra-substituters;
}
// (lib.optionalAttrs config.metacfg.tools.direnv.enable {

4
systems/x86_64-linux/amd/default.nix
View file

@ -1,7 +1,6 @@
{
pkgs,
lib,
config,
...
}:
with lib;
@ -19,9 +18,6 @@ with lib.metacfg;
22000
];
programs.ccache.enable = true;
nix.settings.extra-sandbox-paths = [ config.programs.ccache.cacheDir ];
services.tailscale.enable = true;
services.cratedocs-mcp.enable = true;