1 files changed, 2 insertions, 207 deletions
diff --git a/bragi.nix b/bragi.nix
index 146defc8..156abdbc 100644
--- a/bragi.nix
+++ b/bragi.nix
@@ -40,22 +40,8 @@ in rec {
  nixpkgs = {
    overlays = [
      (selfPkgs: superPkgs: {
-        haskellPackages = superPkgs.haskellPackages.extend (selfH: superH: {
-          encoding = superPkgs.haskell.lib.overrideCabal superH.encoding ( oldAttrs: {
-            src = superPkgs.fetchFromGitHub { owner = "pngwjpgh"; repo = "encoding"; rev = "extended-version-bounds"; sha256 = "0pzxixp384a1ywzj56pl7xc4ln7i9x6mq8spqjwcs80y0pgfpp9s"; };
-            patches = [];
-          });
-          inherit
-            (lib.mapAttrs (name: superPkgs.haskell.lib.dontCheck) superH)
-            Glob filelock hedgehog scientific http-date;
-          bar = superPkgs.callPackage ./bragi/bar { haskellPackages = selfH; };
-        } // (import ./custom/thermoprint { callPackage = superPkgs.lib.callPackageWith (selfH // { inherit (superPkgs) stdenv makeWrapper runCommand; }); extraPackages = (p: with p; [ persistent-postgresql ]); }));
        jack2Full = superPkgs.jack2Full.override { dbus = null; };
        mpd = superPkgs.mpd.override { gmeSupport = false; pulseaudioSupport = false; };
-      
-        inherit (selfPkgs.haskellPackages) thermoprint-server thermoprint-webgui tprint bar;
      })
    ];
@@ -72,9 +58,7 @@ in rec {
    nfs-utils
    jack2Full
    tprint
-    samba
    rebuild-system
-    vnstat
  ];
  # List services that you want to enable:
@@ -87,33 +71,6 @@ in rec {
    rateLimitBurst = 0;
  };
    
-  systemd.automounts = [
-    {
-      wantedBy = [ "multi-user.target" ];
-      where = "/media/dellingr";
-      automountConfig.TimoutIdleSec = "30s";
-    }
-    {
-      wantedBy = [ "multi-user.target" ];
-      where = "/media/vali";
-      automountConfig.TimoutIdleSec = "5min";
-    }
-  ];
-  systemd.mounts = [
-    {
-      what = "/dev/disk/by-uuid/6436-3432";
-      where = "/media/dellingr";
-      type = "vfat";
-    }
-    {
-      what = "//VALI/Public";
-      where = "/media/vali";
-      type = "cifs";
-      options = "guest,dir_mode=0777,file_mode=0666,nounix,iocharset=utf8,sec=none";
-    }
-  ];
  systemd.globalEnvironment = {
    JACK_PROMISCUOUS_SERVER = "1";
  };
@@ -224,176 +181,14 @@ in rec {
    esac
  '';
-  services.samba = {
+  users.users.root = let
-    enable = true;
-    extraConfig = ''
-      domain master = no
-      workgroup = ASGARD
-      load printers = no
-      printing = bsd
-      printcap name = /dev/null
-      disable spoolss = yes
-    '';
-  };
-  users.extraUsers.root = let
    template = (import users/gkleen.nix);
    in {
        inherit (template) shell;
        openssh.authorizedKeys.keyFiles = template.openssh.authorizedKeys.keyFiles;
      };
-  users.extraUsers."thermoprint" = {
-    name = "thermoprint";
-    group = "lp";
-    isSystemUser = true;
-    createHome = true;
-    home = "/var/lib/thermoprint";
  };
-  systemd.services."thermoprint" = {
-    environment = {
-      THERMOPRINT_CONFIG = "${./bragi/thermoprint-server}";
-      THERMOPRINT_CACHE = "${users.extraUsers."thermoprint".home}/dyre";
-    };
-    requires = [ "postgresql.service" ];
-    wantedBy = [ "default.target" ];
-    serviceConfig = {
-      Type = "simple";
-      ExecStart = "${pkgs.thermoprint-server}/bin/thermoprint-server --force-reconf";
-      User = users.extraUsers."thermoprint".name;
-      Group = users.extraUsers."thermoprint".group;
-      WorkingDirectory = "~";
-    };
-  };
-  systemd.services."thermoprint-webgui" = {
-    wantedBy = [ "default.target" ];
-    serviceConfig = {
-      Type = "simple";
-      ExecStart = ''
-        ${pkgs.thermoprint-webgui}/bin/thermoprint-webgui -P 80 -A localhost -F /thermoprint/api/ -a "localhost" -p 8081
-      '';
-      User = users.extraUsers."thermoprint".name;
-      Group = users.extraUsers."thermoprint".group;
-      WorkingDirectory = "~";
-    };
-  };
-  users.extraUsers."bar" = {
-    name = "bar";
-    group = "nogroup";
-    isSystemUser = true;
-    createHome = true;
-    home = "/var/lib/bar";
-  };
-  systemd.services."bar" = let
-    ghc = pkgs.haskellPackages.ghcWithPackages (p: with p; [yesod persistent-postgresql]);
-  in {
-    environment = {
-      PORT = "8082";
-      HOST = "::1";
-      TPRINT_BASEURL = "http://localhost:80/thermoprint/api";
-      APPROOT = "/bar";
-      IP_FROM_HEADER = "true";
-    };
-    bindsTo = [ "postgresql.service" ];
-    after = [ "postgresql.service" ];
-    wantedBy = [ "default.target" ];
-    path = with pkgs; [ bar ];
-    script = ''
-      exec bar
-    '';
-    serviceConfig = {
-      Type = "notify";
-      User = users.extraUsers."bar".name;
-      Group = users.extraUsers."bar".group;
-      WorkingDirectory = "~";
-    };
-  };
-  services.nginx = {
-    enable = true;
-    httpConfig = ''
-      default_type application/octet-stream;
-      log_format main
-              '$remote_addr - $remote_user [$time_local] '
-              '"$request" $status $bytes_sent '
-              '"$http_referer" "$http_user_agent" '
-              '"$gzip_ratio"';
-      client_header_timeout 10m;
-      client_body_timeout 10m;
-      send_timeout 10m;
-      connection_pool_size 256;
-      client_header_buffer_size 1k;
-      large_client_header_buffers 4 2k;
-      request_pool_size 4k;
-      gzip on;
-      gzip_min_length 1100;
-      gzip_buffers 4 8k;
-      gzip_types text/plain;
-      output_buffers 1 32k;
-      postpone_output 1460;
-      sendfile on;
-      tcp_nopush on;
-      tcp_nodelay on;
-      keepalive_timeout 75 20;
-      ignore_invalid_headers on;
-      access_log stderr;
-      error_log stderr;
-      server {
-        listen *:80;
-        server_name _;
-        location /thermoprint/api/ {
-          proxy_pass http://[::1]:8080/;
-          proxy_http_version 1.1;
-          proxy_set_header Upgrade $http_upgrade;
-          proxy_set_header Connection "upgrade";
-        }
-        location /thermoprint/ {
-          proxy_pass http://localhost:8081/;
-        }
-        location /bar/ {
-          proxy_pass http://[::1]:8082/;
-        }
-      }
-    '';
-  };
-  services.postgresql = {
-    enable = true;
-    enableTCPIP = true;
-    authentication = lib.mkForce ''
-      local all all peer
-      host all all 10.141.0.0/16 md5
-    '';
-    initialScript = pkgs.writeText "schema.sql" ''
-      CREATE USER thermoprint;
-      CREATE DATABASE thermoprint WITH OWNER = thermoprint;
-      GRANT ALL ON DATABASE thermoprint TO thermoprint;
-      CREATE USER bar;
-      CREATE DATABASE bar WITH OWNER = bar;
-      GRANT ALL ON DATABASE bar TO bar;
-    '';
-  };
-  services.vnstat.enable = true;
  nix = {
    daemonIONiceLevel = 3;
    daemonNiceLevel = 10;
@@ -405,7 +200,7 @@ in rec {
  };
  system.autoUpgrade.enable = true;
-  system.nixos.stateVersion = "16.09";
+  system.stateVersion = "16.09";
  systemd.services."nixos-upgrade".path = with pkgs; [ git ];
  systemd.services."nixos-upgrade".preStart = ''

diff --git a/bragi.nix b/bragi.nix index 146defc8..156abdbc 100644 --- a/bragi.nix +++ b/bragi.nix
@@ -40,22 +40,8 @@ in rec {
40	nixpkgs = {	40	nixpkgs = {
41	overlays = [	41	overlays = [
42	(selfPkgs: superPkgs: {	42	(selfPkgs: superPkgs: {
43	haskellPackages = superPkgs.haskellPackages.extend (selfH: superH: {
44	encoding = superPkgs.haskell.lib.overrideCabal superH.encoding ( oldAttrs: {
45	src = superPkgs.fetchFromGitHub { owner = "pngwjpgh"; repo = "encoding"; rev = "extended-version-bounds"; sha256 = "0pzxixp384a1ywzj56pl7xc4ln7i9x6mq8spqjwcs80y0pgfpp9s"; };
46	patches = [];
47	});
48	inherit
49	(lib.mapAttrs (name: superPkgs.haskell.lib.dontCheck) superH)
50	Glob filelock hedgehog scientific http-date;
51	bar = superPkgs.callPackage ./bragi/bar { haskellPackages = selfH; };
52	} // (import ./custom/thermoprint { callPackage = superPkgs.lib.callPackageWith (selfH // { inherit (superPkgs) stdenv makeWrapper runCommand; }); extraPackages = (p: with p; [ persistent-postgresql ]); }));
53
54	jack2Full = superPkgs.jack2Full.override { dbus = null; };	43	jack2Full = superPkgs.jack2Full.override { dbus = null; };
55
56	mpd = superPkgs.mpd.override { gmeSupport = false; pulseaudioSupport = false; };	44	mpd = superPkgs.mpd.override { gmeSupport = false; pulseaudioSupport = false; };
57
58	inherit (selfPkgs.haskellPackages) thermoprint-server thermoprint-webgui tprint bar;
59	})	45	})
60	];	46	];
61		47
@@ -72,9 +58,7 @@ in rec {
72	nfs-utils	58	nfs-utils
73	jack2Full	59	jack2Full
74	tprint	60	tprint
75	samba
76	rebuild-system	61	rebuild-system
77	vnstat
78	];	62	];
79		63
80	# List services that you want to enable:	64	# List services that you want to enable:
@@ -87,33 +71,6 @@ in rec {
87	rateLimitBurst = 0;	71	rateLimitBurst = 0;
88	};	72	};
89		73
90	systemd.automounts = [
91	{
92	wantedBy = [ "multi-user.target" ];
93	where = "/media/dellingr";
94	automountConfig.TimoutIdleSec = "30s";
95	}
96	{
97	wantedBy = [ "multi-user.target" ];
98	where = "/media/vali";
99	automountConfig.TimoutIdleSec = "5min";
100	}
101	];
102
103	systemd.mounts = [
104	{
105	what = "/dev/disk/by-uuid/6436-3432";
106	where = "/media/dellingr";
107	type = "vfat";
108	}
109	{
110	what = "//VALI/Public";
111	where = "/media/vali";
112	type = "cifs";
113	options = "guest,dir_mode=0777,file_mode=0666,nounix,iocharset=utf8,sec=none";
114	}
115	];
116
117	systemd.globalEnvironment = {	74	systemd.globalEnvironment = {
118	JACK_PROMISCUOUS_SERVER = "1";	75	JACK_PROMISCUOUS_SERVER = "1";
119	};	76	};
@@ -224,176 +181,14 @@ in rec {
224	esac	181	esac
225	'';	182	'';
226		183
227	services.samba = {	184	users.users.root = let
228	enable = true;
229	extraConfig = ''
230	domain master = no
231	workgroup = ASGARD
232	load printers = no
233	printing = bsd
234	printcap name = /dev/null
235	disable spoolss = yes
236	'';
237	};
238
239	users.extraUsers.root = let
240	template = (import users/gkleen.nix);	185	template = (import users/gkleen.nix);
241	in {	186	in {
242	inherit (template) shell;	187	inherit (template) shell;
243	openssh.authorizedKeys.keyFiles = template.openssh.authorizedKeys.keyFiles;	188	openssh.authorizedKeys.keyFiles = template.openssh.authorizedKeys.keyFiles;
244	};	189	};
245
246	users.extraUsers."thermoprint" = {
247	name = "thermoprint";
248	group = "lp";
249	isSystemUser = true;
250	createHome = true;
251	home = "/var/lib/thermoprint";
252	};	190	};
253		191
254	systemd.services."thermoprint" = {
255	environment = {
256	THERMOPRINT_CONFIG = "${./bragi/thermoprint-server}";
257	THERMOPRINT_CACHE = "${users.extraUsers."thermoprint".home}/dyre";
258	};
259	requires = [ "postgresql.service" ];
260	wantedBy = [ "default.target" ];
261	serviceConfig = {
262	Type = "simple";
263	ExecStart = "${pkgs.thermoprint-server}/bin/thermoprint-server --force-reconf";
264	User = users.extraUsers."thermoprint".name;
265	Group = users.extraUsers."thermoprint".group;
266	WorkingDirectory = "~";
267	};
268	};
269
270	systemd.services."thermoprint-webgui" = {
271	wantedBy = [ "default.target" ];
272	serviceConfig = {
273	Type = "simple";
274	ExecStart = ''
275	${pkgs.thermoprint-webgui}/bin/thermoprint-webgui -P 80 -A localhost -F /thermoprint/api/ -a "localhost" -p 8081
276	'';
277	User = users.extraUsers."thermoprint".name;
278	Group = users.extraUsers."thermoprint".group;
279	WorkingDirectory = "~";
280	};
281	};
282
283	users.extraUsers."bar" = {
284	name = "bar";
285	group = "nogroup";
286	isSystemUser = true;
287	createHome = true;
288	home = "/var/lib/bar";
289	};
290
291	systemd.services."bar" = let
292	ghc = pkgs.haskellPackages.ghcWithPackages (p: with p; [yesod persistent-postgresql]);
293	in {
294	environment = {
295	PORT = "8082";
296	HOST = "::1";
297	TPRINT_BASEURL = "http://localhost:80/thermoprint/api";
298	APPROOT = "/bar";
299	IP_FROM_HEADER = "true";
300	};
301	bindsTo = [ "postgresql.service" ];
302	after = [ "postgresql.service" ];
303	wantedBy = [ "default.target" ];
304	path = with pkgs; [ bar ];
305	script = ''
306	exec bar
307	'';
308	serviceConfig = {
309	Type = "notify";
310	User = users.extraUsers."bar".name;
311	Group = users.extraUsers."bar".group;
312	WorkingDirectory = "~";
313	};
314	};
315
316	services.nginx = {
317	enable = true;
318	httpConfig = ''
319	default_type application/octet-stream;
320
321	log_format main
322	'$remote_addr - $remote_user [$time_local] '
323	'"$request" $status $bytes_sent '
324	'"$http_referer" "$http_user_agent" '
325	'"$gzip_ratio"';
326
327	client_header_timeout 10m;
328	client_body_timeout 10m;
329	send_timeout 10m;
330
331	connection_pool_size 256;
332	client_header_buffer_size 1k;
333	large_client_header_buffers 4 2k;
334	request_pool_size 4k;
335
336	gzip on;
337	gzip_min_length 1100;
338	gzip_buffers 4 8k;
339	gzip_types text/plain;
340
341	output_buffers 1 32k;
342	postpone_output 1460;
343
344	sendfile on;
345	tcp_nopush on;
346	tcp_nodelay on;
347
348	keepalive_timeout 75 20;
349
350	ignore_invalid_headers on;
351
352	access_log stderr;
353	error_log stderr;
354
355	server {
356	listen *:80;
357	server_name _;
358
359	location /thermoprint/api/ {
360	proxy_pass http://[::1]:8080/;
361	proxy_http_version 1.1;
362	proxy_set_header Upgrade $http_upgrade;
363	proxy_set_header Connection "upgrade";
364	}
365
366	location /thermoprint/ {
367	proxy_pass http://localhost:8081/;
368	}
369
370	location /bar/ {
371	proxy_pass http://[::1]:8082/;
372	}
373	}
374	'';
375	};
376
377	services.postgresql = {
378	enable = true;
379	enableTCPIP = true;
380	authentication = lib.mkForce ''
381	local all all peer
382	host all all 10.141.0.0/16 md5
383	'';
384	initialScript = pkgs.writeText "schema.sql" ''
385	CREATE USER thermoprint;
386	CREATE DATABASE thermoprint WITH OWNER = thermoprint;
387	GRANT ALL ON DATABASE thermoprint TO thermoprint;
388
389	CREATE USER bar;
390	CREATE DATABASE bar WITH OWNER = bar;
391	GRANT ALL ON DATABASE bar TO bar;
392	'';
393	};
394
395	services.vnstat.enable = true;
396
397	nix = {	192	nix = {
398	daemonIONiceLevel = 3;	193	daemonIONiceLevel = 3;
399	daemonNiceLevel = 10;	194	daemonNiceLevel = 10;
@@ -405,7 +200,7 @@ in rec {
405	};	200	};
406		201
407	system.autoUpgrade.enable = true;	202	system.autoUpgrade.enable = true;
408	system.nixos.stateVersion = "16.09";	203	system.stateVersion = "16.09";
409		204
410	systemd.services."nixos-upgrade".path = with pkgs; [ git ];	205	systemd.services."nixos-upgrade".path = with pkgs; [ git ];
411	systemd.services."nixos-upgrade".preStart = ''	206	systemd.services."nixos-upgrade".preStart = ''