From ab009108dda42def1b9255e8516a7d6a060d5715 Mon Sep 17 00:00:00 2001
From: Ranomier <>
Date: Mon, 30 Jun 2025 21:41:39 +0200
Subject: [PATCH] feat: initial configuration for galene

---
 certificates/id_ed25519_srv-videoconf.pub      |  1 +
 hosts/srv-videoconf/boot.nix                   | 12 ++++++++++++
 hosts/srv-videoconf/default.nix                | 15 +++++++++++++++
 hosts/srv-videoconf/hardware-configuration.nix | 10 ----------
 outputs.nix                                    |  2 +-
 5 files changed, 29 insertions(+), 11 deletions(-)
 create mode 100644 certificates/id_ed25519_srv-videoconf.pub
 create mode 100644 hosts/srv-videoconf/boot.nix

diff --git a/certificates/id_ed25519_srv-videoconf.pub b/certificates/id_ed25519_srv-videoconf.pub
new file mode 100644
index 0000000..058cd61
--- /dev/null
+++ b/certificates/id_ed25519_srv-videoconf.pub
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPel38K6eMnz1kS/od+4znlq0/wqUk1HifXVerv/DZUZ srv-videoconf
diff --git a/hosts/srv-videoconf/boot.nix b/hosts/srv-videoconf/boot.nix
new file mode 100644
index 0000000..24a7a29
--- /dev/null
+++ b/hosts/srv-videoconf/boot.nix
@@ -0,0 +1,12 @@
+{
+  # Use the GRUB 2 boot loader.
+  boot.loader.grub = {
+    enable = true;
+    # efiSupport = true;
+    # efiInstallAsRemovable = true;
+    # Define on which hard drive you want to install Grub.
+    device = "/dev/vda"; # or "nodev" for efi only
+  };
+  # boot.loader.efi.efiSysMountPoint = "/boot/efi";
+}
+
diff --git a/hosts/srv-videoconf/default.nix b/hosts/srv-videoconf/default.nix
index a1a0222..c816902 100644
--- a/hosts/srv-videoconf/default.nix
+++ b/hosts/srv-videoconf/default.nix
@@ -1,7 +1,22 @@
 {rootPath, ...}: {
   imports = [
+    ./boot.nix
     ./hardware-configuration.nix
 
     (rootPath + /system_profiles/server.nix)
   ];
+  services.galene = {
+    enable = true;
+
+    insecure = true;
+  };
+
+  users = let
+    username = "root";
+  in {
+    users."${username}".openssh.authorizedKeys.keyFiles = [
+      (rootPath + /certificates/id_ed25519_srv-videoconf.pub)
+    ];
+  };
+
 }
diff --git a/hosts/srv-videoconf/hardware-configuration.nix b/hosts/srv-videoconf/hardware-configuration.nix
index e26ed92..368ee81 100644
--- a/hosts/srv-videoconf/hardware-configuration.nix
+++ b/hosts/srv-videoconf/hardware-configuration.nix
@@ -3,7 +3,6 @@
 # to /etc/nixos/configuration.nix instead.
 {
   lib,
-  modulesPath,
   ...
 }: {
   boot = {
@@ -13,15 +12,6 @@
     extraModulePackages = [];
   };
 
-  fileSystems."/" = {
-    device = "/dev/disk/by-uuid/d290e12c-d93c-45f6-b737-135b551c1951";
-    fsType = "ext4";
-  };
-
-  swapDevices = [
-    {device = "/dev/disk/by-uuid/8c56f52e-568a-4e03-b22c-6d1c7de7c118";}
-  ];
-
   # Enables DHCP on each ethernet and wireless interface. In case of scripted networking
   # (the default) this is the recommended approach. When using systemd-networkd it's
   # still possible to use this option, but it's recommended to use it in conjunction
diff --git a/outputs.nix b/outputs.nix
index 5c64096..436b714 100644
--- a/outputs.nix
+++ b/outputs.nix
@@ -15,7 +15,7 @@ in {
   nixosConfigurations = builtins.mapAttrs (hostName: hostOptions: (hostHelper hostName hostOptions)) {
     crocoite = {stateVersion = "24.05";};
 
-    #srv-videoconf = {stateVersion = "24.11";};
+    srv-videoconf = {stateVersion = "25.05";};
 
     game-luanti = {stateVersion = "25.05";};