- nixpkgs.overlays = builtins.attrValues (import ../../overlays);
- _module.args = {
- pkgsNext = import <nixpkgsNext> {};
- pkgsPrevious = import <nixpkgsPrevious> {};
- myconfig = {
- inherit privateFiles;
- env = import "${privateFiles}/environment.nix";
- };
+ networking.extraHosts = builtins.concatStringsSep "\n"
+ (lib.mapAttrsToList (n: v: "${v.config.hostEnv.ips.main.ip4} ${n}") nodes);
+
+ users.extraUsers.root.openssh.authorizedKeys.keys = [ config.myEnv.sshd.rootKeys.nix_repository ];
+ secrets.deleteSecretsVars = true;
+ secrets.gpgKeys = [
+ ../../nixops/public_keys/Immae.pub
+ ];
+
+ services.openssh.enable = true;
+
+ services.duplyBackup.profiles.system = {
+ rootDir = "/var/lib";
+ excludeFile = lib.mkAfter ''
+ + /var/lib/nixos
+ + /var/lib/udev
+ + /var/lib/udisks2
+ + /var/lib/systemd
+ + /var/lib/private/systemd
+ - /var/lib
+ '';