2026-03-09 03:53:11 +00:00
7 changed files with 112 additions and 136 deletions
--- a/hosts/muon/home.nix
+++ b/hosts/muon/home.nix
@ -1,11 +1,5 @@
-{
-  pkgs,
-  lib,
-  osConfig,
-  ...
-}: let
-  cfg = osConfig.mods;
-in {
+{ pkgs, lib, osConfig,... }:
+let cfg = osConfig.mods; in {
  # Modules
  mods.xdg.enable = true;
  mods.social.enable = true;
@ -17,22 +11,17 @@ in {
  mods.desktop.development.enable = true;
  mods.desktop.productivity.enable = true;
  mods.desktop.media.enable = true;
-  mods.zen.enable = true;
-  mods.obsidian.enable = true;

  # Hardware preferences

  ## Monitors
-  xsession.windowManager.i3.config.workspaceOutputAssign = [
-    {
+  xsession.windowManager.i3.config.workspaceOutputAssign = [{
    workspace = "1";
    output = "${cfg.monitors.primary.name}";
-    }
-    {
+  } {
    workspace = "2";
    output = "${cfg.monitors.secondary.name}";
-    }
-  ];
+  }];
  services.autorandr.enable = true;
  programs.autorandr = {
    enable = true;
--- a/modules/home/desktop/media.nix
+++ b/modules/home/desktop/media.nix
@ -14,7 +14,7 @@
      pavucontrol

      # Video
-      # (callPackage ./packages/stremio-linux-shell.nix {})
+      (callPackage ./packages/stremio-linux-shell.nix {})

      # Podcasts
      gpodder
--- a/modules/home/desktop/productivity.nix
+++ b/modules/home/desktop/productivity.nix
@ -17,8 +17,8 @@ in
      home.packages = with pkgs; [
        # ISO downloader
        qbittorrent
-        # xd
-        # biglybt
+        xd
+        biglybt
        # transmission_4-gtk

        # email
--- a/modules/nixos/core/network.nix
+++ b/modules/nixos/core/network.nix
@ -1,13 +1,10 @@
-{
-  pkgs,
-  lib,
-  config,
-  ...
-}: let
+{ pkgs, lib, config, ... }:
+
+let
  cfg = config.mods;
  wg = cfg.wireguard;
-in
-  with lib; {
+
+in with lib; {
  options.mods = {
    i2p.enable = mkEnableOption "enables i2p network";
    tailscale.enable = mkEnableOption "enables tailscale";
@ -22,8 +19,7 @@ in
      username = "${config.mods.user.name}";
      folder = "${config.users.users.${username}.home}/documents/openvpn/";
      file = "${config.mods.user.name}.ovpn";
-      in
-        mkOption {
+    in mkOption {
      description = "the config location";
      default = "${folder}${file}";
    };
@ -76,21 +72,20 @@ in
          "10.0.0.${toString wg.id}/24"
          "fdc9:281f:04d7:9ee9::${toString wg.id}/64"
        ];
-          # dns = ["10.0.0.1" "fdc9:281f:04d7:9ee9::1"];
+        dns = [ "10.0.0.1" "fdc9:281f:04d7:9ee9::1" ];
        mtu = 1500;
        privateKeyFile = "/home/muon/wireguard-keys/private";

-          peers = [
-            {
+        peers = [{
          publicKey = "2RF8GmTZwQdzVm2l2piYy6U0qiMU3wSxC7Lt8urAjwA=";
-              presharedKeyFile = "/home/muon/wireguard-keys/psk-${config.networking.hostName}";
+          presharedKeyFile =
+            "/home/muon/wireguard-keys/psk-${config.networking.hostName}";
          allowedIPs = [ "10.0.0.${toString wg.id}/24" ];
          # allowedIPs = [ "0.0.0.0/0" ];
          # ip route add 93.95.230.11 via 192.168.0.1
          endpoint = "93.95.230.11:51820";
          persistentKeepalive = 25;
-            }
-          ];
+        }];
      };
    };

@ -103,5 +98,6 @@ in

    # gateway =
    # "${pkgs.networkmanager}/bin/nmcli dev show ${interface} | ${pkgs.gnugrep}/bin/fgrep IP4.GATEWAY | ${pkgs.awk}/bin/awk {print $2}";
+
  };
 }
--- a/modules/nixos/server/audio.nix
+++ b/modules/nixos/server/audio.nix
@ -40,7 +40,6 @@ in with lib; {
      openFirewall = true;
      openRPCPort = true;
      port = arr.torrent.port;
-      package = pkgs.transmission_4;
      settings = {
        download-dir = "/storage1/download";
        rpc-port = arr.torrent.port;
--- a/modules/nixos/server/grav/default.nix
+++ b/modules/nixos/server/grav/default.nix
@ -23,7 +23,7 @@ in with lib; {
      inherit port;
      enable = true;
      root = cfg.grav.location;
-      phpPackage = pkgs.php83;
+      phpPackage = pkgs.php81;
    };
    users.users.${config.mods.user.name}.extraGroups = lib.mkAfter [ "grav" ];
  };
--- a/modules/nixos/server/nginx.nix
+++ b/modules/nixos/server/nginx.nix
@ -82,7 +82,7 @@ in
            add_header X-XSS-Protection          "1; mode=block" always;
            add_header X-Content-Type-Options    "nosniff" always;
            add_header Referrer-Policy           "no-referrer-when-downgrade" always;
-            add_header Content-Security-Policy   "default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self'; script-src 'self'; object-src 'none'; base-uri 'none';"; always;
+            add_header Content-Security-Policy   "default-src 'self' http: https: ws: wss: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
            add_header Permissions-Policy        "interest-cohort=()" always;
            # add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
          '';
@ -99,14 +99,6 @@ in
              "/" = {
                proxyPass = "http://${cfg.ip}:${toString port}/";
                proxyWebsockets = true;
-                extraConfig =
-                  # sh
-                  ''
-                    client_max_body_size 50000M;
-                    proxy_read_timeout   600s;
-                    proxy_send_timeout   600s;
-                    send_timeout         600s;
-                  '';
              };
            };
        in