remove clear password

add CLAUDE.md
Add claude and debug waybar-update,sh
2026-01-22 00:01:25 +01:00 · 2026-01-21 22:13:08 +01:00 · 2026-01-21 21:53:17 +01:00 · 2026-01-21 21:06:53 +01:00 · 2026-01-20 11:56:45 +01:00 · 2026-01-19 12:49:36 +01:00
15 changed files with 90 additions and 129 deletions
--- a/flake.lock
+++ b/flake.lock
@@ -7,11 +7,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1769524058,
-        "narHash": "sha256-zygdD6X1PcVNR2PsyK4ptzrVEiAdbMqLos7utrMDEWE=",
+        "lastModified": 1768923567,
+        "narHash": "sha256-GVJ0jKsyXLuBzRMXCDY6D5J8wVdwP1DuQmmvYL/Vw/Q=",
        "owner": "nix-community",
        "repo": "disko",
-        "rev": "71a3fc97d80881e91710fe721f1158d3b96ae14d",
+        "rev": "00395d188e3594a1507f214a2f15d4ce5c07cb28",
        "type": "github"
      },
      "original": {
@@ -54,11 +54,11 @@
    },
    "nixpkgs-unstable": {
      "locked": {
-        "lastModified": 1770115704,
-        "narHash": "sha256-KHFT9UWOF2yRPlAnSXQJh6uVcgNcWlFqqiAZ7OVlHNc=",
+        "lastModified": 1768886240,
+        "narHash": "sha256-C2TjvwYZ2VDxYWeqvvJ5XPPp6U7H66zeJlRaErJKoEM=",
        "owner": "nixos",
        "repo": "nixpkgs",
-        "rev": "e6eae2ee2110f3d31110d5c222cd395303343b08",
+        "rev": "80e4adbcf8992d3fd27ad4964fbb84907f9478b0",
        "type": "github"
      },
      "original": {
@@ -84,11 +84,11 @@
        ]
      },
      "locked": {
-        "lastModified": 1770145881,
-        "narHash": "sha256-ktjWTq+D5MTXQcL9N6cDZXUf9kX8JBLLBLT0ZyOTSYY=",
+        "lastModified": 1768863606,
+        "narHash": "sha256-1IHAeS8WtBiEo5XiyJBHOXMzECD6aaIOJmpQKzRRl64=",
        "owner": "Mic92",
        "repo": "sops-nix",
-        "rev": "17eea6f3816ba6568b8c81db8a4e6ca438b30b7c",
+        "rev": "c7067be8db2c09ab1884de67ef6c4f693973f4a2",
        "type": "github"
      },
      "original": {
--- a/modules/core/default.nix
+++ b/modules/core/default.nix
@@ -5,7 +5,6 @@
  imports = [
    ./grub.nix
    ./packages.nix
-    ./sops.nix
    ./ssh.nix
    ./system.nix
    ./tty.nix
--- a/modules/core/packages.nix
+++ b/modules/core/packages.nix
@@ -15,7 +15,6 @@
    pkgs.unzip
    pkgs.sops
    pkgs.ssh-to-age
-    pkgs.age
    pkgs.nixos-anywhere
    pkgs.nixos-generators
    pkgs.efibootmgr
@@ -26,7 +25,7 @@
    pkgs.fzf
    pkgs.bc
    pkgs.wakeonlan
-    pkgs.openssl
+    pkgs.samba
  ];
  services = {
    locate = {
--- a/modules/core/sops.nix
+++ b/modules/core/sops.nix
@@ -1,19 +0,0 @@
-{
-  inputs,
-  ...
-}:
-let
-  secretsPath = builtins.toString inputs.mysecrets;
-in
-{
-  sops = {
-    defaultSopsFile = "${secretsPath}/secrets.yaml";
-    age = {
-      sshKeyPaths = [
-        "/etc/ssh/ssh_host_ed25519_key"
-      ];
-      keyFile = "/var/lib/sops-nix/key.txt";
-      generateKey = true;
-    };
-  };
-}
--- a/modules/core/users.nix
+++ b/modules/core/users.nix
@@ -5,11 +5,6 @@
  ...
 }:
 {
-  sops.secrets = {
-    "users_password/beastie" = {
-      neededForUsers = true;
-    };
-  };
  users = {
    users = {
      ${username} = {
@@ -23,7 +18,7 @@
          "video"
        ];
        openssh.authorizedKeys.keys = [
-          "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAKMJ3TkEmRQcX7RQijNa2km6a2xXJk6M6FERh7C9nTJ"
+          config.sops.secrets."ssh_keys/beastie_priv".path
        ];
        shell = pkgs.zsh;
      };
--- a/modules/optionnals/desktop/code.nix
+++ b/modules/optionnals/desktop/code.nix
@@ -95,7 +95,5 @@ in
    pkgs.ansible
    pkgs.python313
    pkgs.claude-code
-    pkgs.nodejs
-    pkgs.php
  ];
 }
--- a/modules/optionnals/desktop/config/etc/xdg/hypr/hyprland.conf
+++ b/modules/optionnals/desktop/config/etc/xdg/hypr/hyprland.conf
@@ -314,11 +314,8 @@ bindl = , XF86AudioPrev, exec, playerctl previous
 # windowrule = nofocus,class:^$,title:^$,xwayland:1,floating:1,fullscreen:0,pinned:0

 # Supprimer la transparence pour des applications spécifiques
-# Opacity order : active, inactive, fullscreen
-windowrule = match:class firefox, opacity 1.0 override 0.95 override 1.0 override
-windowrule = match:class chromium, opacity 1.0 override 0.95 override 1.0 override
-windowrule = match:class mpv, opacity 0.95 override 0.80 override 1.0 override
-
-#windowrule = match:class mpv, fullscreen override
-#windowrulev2 = fullscreen,class:^(mpv)$
+windowrulev2 = opacity 1.0 override,class:^(firefox)$
+windowrulev2 = opacity 1.0 override,class:^(chromium)$
+windowrulev2 = opacity 1.0 override,class:^(mpv)$

+windowrulev2 = fullscreen,class:^(mpv)$
--- a/modules/optionnals/desktop/packages.nix
+++ b/modules/optionnals/desktop/packages.nix
@@ -26,11 +26,6 @@
    pkgs.catppuccin-cursors
    pkgs.catppuccin-gtk
    pkgs.postman
-    pkgs.samba
-    pkgs.openldap
-    pkgs.argocd
-    pkgs.talosctl
-    pkgs.talhelper
  ];
  fonts.packages = [
    pkgs.nerd-fonts.dejavu-sans-mono
--- a/modules/optionnals/desktop/virt-manager.nix
+++ b/modules/optionnals/desktop/virt-manager.nix
@@ -4,4 +4,4 @@
 {
  programs.virt-manager.enable = true;
  virtualisation.spiceUSBRedirection.enable = true;
-}
+}
--- a/modules/optionnals/docker.nix
+++ b/modules/optionnals/docker.nix
@@ -1,8 +0,0 @@
-{
-  username,
-  ...
-}:
-{
-  virtualisation.docker.enable = true;
-  users.users.${username}.extraGroups = [ "docker" ];
-}
--- a/modules/optionnals/hosts/home-nix.nix
+++ b/modules/optionnals/hosts/home-nix.nix
@@ -7,7 +7,6 @@
  imports = [
    #../ai.nix
    ../autologin.nix
-    ../docker.nix
    ../k8s.nix
    ../libvirt.nix
    ../openfortivpn.nix
@@ -81,8 +80,6 @@
      #172.18.20.37   sso.grandbesancon.fr
      #172.18.20.229  auth.grandbesancon.fr
      #172.18.20.181  traefikauth.grandbesancon.fr
-      172.18.21.174     test-patchmon.grandbesancon.fr
-      172.18.229.240    test-mycarto-autonome.grandbesancon.fr
    '';
    wireguard = {
      interfaces = {
--- a/modules/optionnals/hosts/work-nix.nix
+++ b/modules/optionnals/hosts/work-nix.nix
@@ -6,7 +6,6 @@
 {
  imports = [
    ../autologin.nix
-    ../docker.nix
    ../k8s.nix
    ../libvirt.nix
    ../openfortivpn.nix
@@ -35,8 +34,7 @@
  networking = {
    networkmanager.enable = true;
    extraHosts = ''
-      carto-interavtive               172.18.20.134
-      test-patchmon.grandbesancon.fr  172.18.21.174
+      carto-interavtive 172.18.20.134
      test-crowdsec.grandbesancon.fr  172.18.21.67
      test-syslog.grandbesancon.fr    172.18.21.67
    '';
--- a/modules/optionnals/libvirt.nix
+++ b/modules/optionnals/libvirt.nix
@@ -4,9 +4,6 @@
  ...
 }:
 {
-  users.users.${username} = {
-    extraGroups = [ "libvirtd" ];
-  };
  virtualisation = {
    libvirtd = {
      enable = true;
@@ -15,13 +12,11 @@
        #package = pkgs.qemu;
        runAsRoot = true;
        swtpm.enable = true;
-        vhostUserPackages = [
-          pkgs.virtiofsd
-        ];
      };
    };
+
+  };
+  users.users.${username} = {
+    extraGroups = [ "libvirtd" ];
  };
-  environment.systemPackages = with pkgs; [
-    virtiofsd
-  ];
 }
--- a/modules/optionnals/sops-desktop.nix
+++ b/modules/optionnals/sops-desktop.nix
@@ -1,61 +1,76 @@
 {
+  inputs,
  username,
  ...
 }:
+let
+  secretsPath = builtins.toString inputs.mysecrets;
+in
 {
-  sops.secrets = {
-    "users_password/beastie" = {
-      neededForUsers = true;
+  sops = {
+    defaultSopsFile = "${secretsPath}/secrets.yaml";
+    age = {
+      sshKeyPaths = [
+        "/etc/ssh/ssh_host_ed25519_key"
+      ];
+      keyFile = "/var/lib/sops-nix/key.txt";
+      generateKey = true;
    };
-    "ssh_keys/default_pub" = {
-      owner = "${username}";
-      mode = "0644";
-      path = "/home/${username}/.ssh/id_ed25519.pub";
-    };
-    "ssh_keys/default_priv" = {
-      owner = "${username}";
-      mode = "0600";
-      path = "/home/${username}/.ssh/id_ed25519";
-    };
-    "ssh_keys/ansible_pub" = {
-      owner = "${username}";
-      mode = "0644";
-      path = "/home/${username}/.ssh/id_ed25519_ansible.pub";
-    };
-    "ssh_keys/ansible_priv" = {
-      owner = "${username}";
-      mode = "0600";
-      path = "/home/${username}/.ssh/id_ed25519_ansible";
-    };
-    "ssh_keys/beastie_pub" = {
-      owner = "${username}";
-      mode = "0644";
-      path = "/home/${username}/.ssh/id_ed25519_beastie.pub";
-    };
-    "ssh_keys/beastie_priv" = {
-      owner = "${username}";
-      mode = "0600";
-      path = "/home/${username}/.ssh/id_ed25519_beastie";
-    };
-    "ssh_keys/gitea_semaphore_pub" = {
-      owner = "${username}";
-      mode = "0644";
-      path = "/home/${username}/.ssh/id_ed25519_gitea_semaphore.pub";
-    };
-    "ssh_keys/gitea_semaphore_priv" = {
-      owner = "${username}";
-      mode = "0600";
-      path = "/home/${username}/.ssh/id_ed25519_gitea_semaphore";
-    };
-    "ssh_keys/wol_pub" = {
-      owner = "${username}";
-      mode = "0644";
-      path = "/home/${username}/.ssh/id_ed25519_wol";
-    };
-    "ssh_keys/wol_priv" = {
-      owner = "${username}";
-      mode = "0600";
-      path = "/home/${username}/.ssh/id_ed25519_wol.priv";
+
+    secrets = {
+      "users_password/beastie" = {
+        neededForUsers = true;
+      };
+      "ssh_keys/default_pub" = {
+        owner = "${username}";
+        mode = "0644";
+        path = "/home/${username}/.ssh/id_ed25519.pub";
+      };
+      "ssh_keys/default_priv" = {
+        owner = "${username}";
+        mode = "0600";
+        path = "/home/${username}/.ssh/id_ed25519";
+      };
+      "ssh_keys/ansible_pub" = {
+        owner = "${username}";
+        mode = "0644";
+        path = "/home/${username}/.ssh/id_ed25519_ansible.pub";
+      };
+      "ssh_keys/ansible_priv" = {
+        owner = "${username}";
+        mode = "0600";
+        path = "/home/${username}/.ssh/id_ed25519_ansible";
+      };
+      "ssh_keys/beastie_pub" = {
+        owner = "${username}";
+        mode = "0644";
+        path = "/home/${username}/.ssh/id_ed25519_beastie.pub";
+      };
+      "ssh_keys/beastie_priv" = {
+        owner = "${username}";
+        mode = "0600";
+        path = "/home/${username}/.ssh/id_ed25519_beastie";
+      };
+      "ssh_keys/gitea_semaphore_pub" = {
+        owner = "${username}";
+        mode = "0644";
+        path = "/home/${username}/.ssh/id_ed25519_gitea_semaphore.pub";
+      };
+      "ssh_keys/gitea_semaphore_priv" = {
+        owner = "${username}";
+        mode = "0600";
+        path = "/home/${username}/.ssh/id_ed25519_gitea_semaphore";
+      };
+      "ssh_keys/wol_pub" = {
+        owner = "${username}";
+        mode = "0644";
+        path = "/home/${username}/.ssh/id_ed25519_wol";
+      };
+      "ssh_keys/wol_priv" = {
+        owner = "${username}";
+        mode = "0600";
+        path = "/home/${username}/.ssh/id_ed25519_wol.priv";
+      };
    };
  };
 }
--- a/modules/optionnals/wakeonlan.nix
+++ b/modules/optionnals/wakeonlan.nix
@@ -17,7 +17,7 @@
  };
  environment.systemPackages = [ pkgs.ethtool ];

-  my.wolipv6address = "2a01:e0a:f5d:3400:6b2c:41d7:e9f5";
+  my.wolipv6address = "2a01:e0a:9cc:99d0:8f3a:6b2c:41d7:e9f5";

  boot.initrd = {
    network = {
@@ -32,7 +32,7 @@
      };
      postCommands = ''
        ip -6 addr add ${config.my.wolipv6address}/64 dev ${config.my.laninterface}
-        ip -6 route add default via fe80::3a07:16ff:fe11:45a8 dev ${config.my.laninterface}
+        ip -6 route add default via fe80::224:d4ff:fea5:65bd dev ${config.my.laninterface}
      '';
    };
    availableKernelModules = [ "r8169" ];
Author	SHA1	Message	Date
Jérémie SALVI	80508b51b3	remove clear password	2026-01-22 00:01:25 +01:00
Jérémie SALVI	4aeee1d44b	add CLAUDE.md	2026-01-21 22:13:08 +01:00
Jérémie SALVI	5f1e856e54	Add claude and debug waybar-update,sh	2026-01-21 21:53:17 +01:00
Jérémie SALVI	4656fb5e8e	add samba	2026-01-21 21:06:53 +01:00
Jérémie SALVI	e479b3c031	add hosts	2026-01-20 11:56:45 +01:00
Jérémie SALVI	d02417acc3	add wireguard-tools	2026-01-19 12:49:36 +01:00
Jérémie SALVI	c81ac96c23	before update	2026-01-19 12:10:21 +01:00
Jérémie SALVI	6cec214598	Update and debug hyprland due to new version	2026-01-09 05:52:10 +01:00
Jérémie SALVI	07a9659b7e	Drnug gaming skils	2026-01-09 02:42:11 +01:00
Jérémie SALVI	3679f36e67	Add gaming skills	2025-12-21 18:32:18 +01:00
Jérémie SALVI	d10cc381df	add nextcloud to desktop	2025-12-21 17:47:38 +01:00
Jérémie SALVI	cc6ebd5224	Install nextcloud-client additions	2025-12-12 22:53:03 +01:00
Jérémie SALVI	d51e8ed455	Add /dev/sda luks partition to crypttab, and install nextcloud-client	2025-12-12 22:04:23 +01:00
Jérémie SALVI	2a751ee1d4	configure remote wake on lan and ipv6	2025-12-12 07:50:43 +01:00
Jérémie SALVI	792fe03d93	Add wake online	2025-12-12 04:42:32 +01:00
Jérémie SALVI	918d42ff71	Add wake online	2025-12-12 04:42:20 +01:00
Jérémie SALVI	87993b83fe	restore qemu to kemu_full	2025-12-11 15:16:47 +01:00
Jérémie SALVI	74962924b8	revert flake to a working build	2025-12-09 01:46:47 +01:00
Jérémie SALVI	520f40e1bc	revert flake	2025-12-08 13:14:03 +01:00
Jérémie SALVI	1655f3096d	before flake update	2025-12-08 12:04:41 +01:00
Jérémie SALVI	5fb0c51777	flake update	2025-12-02 16:30:27 +01:00
Jérémie SALVI	91e8ccbb4f	flake update	2025-12-02 16:25:57 +01:00
Jérémie SALVI	ff17f33531	Creating kvm test server	2025-11-22 13:05:42 +01:00
Jérémie SALVI	59b184cc2c	before flake update	2025-11-21 10:17:59 +01:00
Jérémie SALVI	a925119154	flake update	2025-11-08 15:14:53 +01:00
Jérémie SALVI	e406793840	flake update	2025-11-08 15:10:23 +01:00
Jérémie SALVI	9c0bf5fabf	add libvirt and virt manager	2025-10-29 21:27:18 +01:00
Jérémie SALVI	7fa9f95ce4	after flake update	2025-10-29 14:26:06 +01:00
Jérémie SALVI	e5e4fe04ea	after flake update	2025-10-28 14:17:30 +01:00
Jérémie SALVI	73cc922bed	Add aider	2025-10-20 12:51:18 +02:00
Jérémie SALVI	3e07666c13	after flake update	2025-10-20 11:36:11 +02:00
Jérémie SALVI	b4cd147221	add autosuggestions to zsh	2025-10-20 03:30:41 +02:00
Jérémie SALVI	4a65f5e537	use only nmcli with nmaplet	2025-10-16 00:29:12 +02:00
Jérémie SALVI	f16f941daf	use only nmcli	2025-10-16 00:19:15 +02:00
Jérémie SALVI	24fa6a4700	some work improvments	2025-10-15 23:22:24 +02:00
Jérémie SALVI	3b74e79fed	Change waybar colors	2025-10-13 20:29:02 +02:00
Jérémie SALVI	18cc8751c9	Improve waybar and custom scripts	2025-10-13 20:23:43 +02:00