Merge

2025-03-01 12:35:17 +01:00
parent 18013b83df 6b4a76dd4a
commit 2b854183ac
7 changed files with 97 additions and 211 deletions
--- a/home-modules/calendar.nix
+++ b/home-modules/calendar.nix
@@ -40,13 +40,13 @@
      read-only = true;
      type = "ics";
    }
-    {
-      name = "Handball Männer";
-      url = "http://i.cal.to/ical/108/dhb/handball-nationalmannschaft/c687e97f.bc7c3eb6-11a0e356.ics";
-      color = "#880023";
-      read-only = true;
-      type = "ics";
-    }
+    # {
+    #   name = "Handball Männer";
+    #   url = "http://i.cal.to/ical/108/dhb/handball-nationalmannschaft/c687e97f.bc7c3eb6-11a0e356.ics";
+    #   color = "#880023";
+    #   read-only = true;
+    #   type = "ics";
+    # }
  ];
  default_set = {
    # name = 
--- a/home-modules/chatterino.nix
+++ b/home-modules/chatterino.nix
@@ -16,7 +16,6 @@ let
    "LEC"
    "lol_nemesis"
    "NASA"
-    "NNOPrime"
    "NoWay4u_Sir"
    "OfficialMikeShinoda"
    "Rekkles"
--- a/home-modules/hyprland.nix
+++ b/home-modules/hyprland.nix
@@ -349,7 +349,7 @@ in {
        "SUPER SHIFT, F1, movetoworkspace, 100"
        # "SUPER,       F2,"
        # "SUPER,       F3, toggleopaque"
-        # "SUPER,       F4,"
+        "SUPER,       F4, exec, rm /tmp/caldav_event_cache.json && notify-send Saved event deleted!"
        "SUPER,       F5, exec, nx_gcal_event force-lookup"
        "SUPER SHIFT, F5, exec, nx_gcal_event reauthenticate"
        "SUPER,       F6, exec, ${terminal-exec}'htop'"
--- a/home-modules/yazi.nix
+++ b/home-modules/yazi.nix
@@ -34,8 +34,8 @@
      	{ on = "<C-f>";           run = "arrow 100%";       desc = "Move cursor down one page"; }
      	{ on = "<PageUp>";        run = "arrow -100%";      desc = "Move cursor up one page"; }
      	{ on = "<PageDown>";      run = "arrow 100%";       desc = "Move cursor down one page"; }
-      	{ on = [ "g" "g" ];       run = "arrow -99999999";  desc = "Move cursor to the top"; }
-      	{ on = [ "g" "e" ];       run = "arrow 99999999";   desc = "Move cursor to the end"; }
+      	{ on = [ "g" "g" ];       run = "arrow down";       desc = "Move cursor to the top"; }
+      	{ on = [ "g" "e" ];       run = "arrow up";         desc = "Move cursor to the end"; }
      	{ on = [ "g" "h" ];       run = "cd ~";             desc = "Go to the home directory"; }
      	{ on = [ "g" "n" ];       run = "cd ~/nix-dots";    desc = "Go to the Nix-Dotfiles directory"; }
      	{ on = [ "g" "n" ];       run = "cd /nix/store";    desc = "Go to the Nix-Store"; }
@@ -205,38 +205,38 @@
          { run = ''unzip "$1"''; desc = "unzip"; }
        ];
        "image" = [
-          { run = ''imv "$@"''; desc = "imv"; }
-          { run = ''gimp "$@"''; desc = "gimp"; }
+          { run = ''imv "$@"''; desc = "imv"; orphan = true; }
+          { run = ''gimp "$@"''; desc = "gimp"; orphan = true; }
          { run = ''swww img --transition-type wipe --transition-angle 60 --transition-step 120 --transition-fps 120 "$@"''; desc = "swww wallpaper"; }
          { run = ''exiftool "$@"; echo "Press enter to exit"; read''; desc = "View Exif Data"; }
          { run = ''for f in "$@"; do magick "$f" -auto-orient "''${f%.*}.pdf"; done''; desc = "Convert to PDF"; }
        ];
        "svg" = [
-          { run = ''inkscape "$@"''; desc = "inkscape";}
-          { run = ''firefox "$@"''; desc = "firefox";}
+          { run = ''inkscape "$@"''; desc = "inkscape"; orphan = true; }
+          { run = ''firefox "$@"''; desc = "firefox"; orphan = true; }
        ];
        "font" = [
-          { run = ''fontpreview "$@"''; desc = "fontpreview"; }
-          { run = ''fontforge "$@"''; desc = "fortforge"; }
+          { run = ''fontpreview "$@"''; desc = "fontpreview"; orphan = true; }
+          { run = ''fontforge "$@"''; desc = "fortforge"; orphan = true; }
        ];
        "document" = [
          { run = ''zathura "$@"''; desc = "zathura"; orphan = true; }
          { run = ''xournal "$@"''; desc = "xournal"; orphan = true; }
-          { run = ''firefox "$@"''; desc = "firefox"; }
+          { run = ''firefox "$@"''; desc = "firefox"; orphan = true; }
          { run = ''nxgs flip "$@"''; desc = "nxgs flip"; }
          { run = ''nxgs rotate "$@"''; desc = "nxgs rotate"; }
          { run = ''nxgs interactive-merge "$@"''; block = true; desc = "nxgs merge"; }
        ];
        "browser" = [
-          { run = ''firefox "$@"''; desc = "firefox"; }
-          { run = ''zen "$@"''; desc = "zen"; }
-          { run = ''chromium --enable-features=UseOzonePlatform --ozone-platform=wayland "$@"''; desc = "chromium"; }
+          { run = ''firefox "$@"''; desc = "firefox"; orphan = true; }
+          { run = ''zen "$@"''; desc = "zen"; orphan = true; }
+          { run = ''chromium --enable-features=UseOzonePlatform --ozone-platform=wayland "$@"''; desc = "chromium"; orphan = true; }
          { run = ''w3m "$@"''; desc = "w3m"; }
          { run = ''lynx "$@"''; desc = "lynx"; }
        ];
        "office" = [
-          { run = ''libreoffice "$@"''; desc = "libreoffice"; }
-          { run = ''libreoffice --view "$@"''; desc = "libreoffice read-only"; }
+          { run = ''libreoffice "$@"''; desc = "libreoffice"; orphan = true; }
+          { run = ''libreoffice --view "$@"''; desc = "libreoffice read-only"; orphan = true; }
        ];
        "shell" = [
          { run = ''bash -c "$@"''; desc = "bash -c"; }
--- a/system-modules/nx2site.nix
+++ b/system-modules/nx2site.nix
@@ -29,8 +29,9 @@ let dns-user = "cloudflare"; in
        Unit = "dynamic-dns.service";
      };
    };
-    services."dynamic-dns" = let 
-      u = let
+    services."dynamic-dns" = {
+      script = let 
+        dyn-dns = let
          account_id = secrets.email.gmail-online.mail;
          zone_id = "33fecab36e060f49d492127345ea95a0";
          record_id = { # curl --request GET --url https://api.cloudflare.com/client/v4/zones/33fecab36e060f49d492127345ea95a0/dns_records --header 'Content-Type: application/json' --header 'X-Auth-Email: <hidden>@gmail.com' --header "X-Auth-Key: <hiddenreadinsops>" -s | jq
@@ -42,178 +43,64 @@ let dns-user = "cloudflare"; in
            ssh6  = "f1ecb2d9d0522d4eec06437688ca76da";
          };
          passord-file-path = config.sops.secrets."nx2site/cloudflare/global-api-key".path;
-        log-file-path = "/var/log/couldflare.log";
-        count-file-path = "/var/log/cloudflare-count.txt";
        in pkgs.writers.writePython3Bin "dyn_dns" {
-        libraries = with pkgs.python311Packages; [ requests ];
-        flakeIgnore = [ "E501" "E305" "E701" "E704" "E302" "E114" "F841" "E121" "E261" "E303" ];
+      libraries = with pkgs.python3Packages; [ requests ];
+      flakeIgnore = [ "E302" "E305" "E226" "E501" "E261" ];
    } /* python */ ''
 import requests
 import subprocess
-        # from datetime import datetime

-        def get_public_ip(ipv6=False):
+def get_public_ip(ipv6: bool = False) -> str:
    return subprocess.run(['${pkgs.curl}/bin/curl', '-s', '-6' if ipv6 else '-4', 'https://ifconfig.me'], capture_output=True, text=True).stdout.strip()

+def update_record(record_id: str, record_name: str, ip: str, type: str, proxied: bool, pw: str) -> None:
+    return requests.patch(
+        f'https://api.cloudflare.com/client/v4/zones/${zone_id}/dns_records/{record_id}',
+        headers={
+            'Content-Type': 'application/json',
+            'X-Auth-Email': '${account_id}',
+            'X-Auth-Key': pw
+        },
+        json={
+            "comment": "Domain verification record",
+            "name": record_name,
+            "proxied": proxied,
+            "settings": {},
+            "tags": [],
+            "ttl": 1, # automatic
+            "content": ip,
+            "type": type
+        }
+    )
+
 def main():
    my_ip = get_public_ip()
    my_ip6 = get_public_ip(ipv6=True)

-            # with open("${count-file-path}", "r") as f:
-            #     content = f.read()
-            #     if content == "": count = 0
-            #     else: count = int(content)
-            # count += 1
-            # with open("${count-file-path}", "w") as f:
-            #     f.write(str(count))
-
-            # 4
    with open("${passord-file-path}", 'r') as pw_file:
        pw = pw_file.read().strip()

    # Perform DNS updates
    # https://developers.cloudflare.com/api/operations/dns-records-for-a-zone-update-dns-record
-            resp_base = requests.patch(
-              'https://api.cloudflare.com/client/v4/zones/${zone_id}/dns_records/${record_id.base}',
-              headers={
-                'Content-Type': 'application/json',
-                'X-Auth-Email': '${account_id}',
-                'X-Auth-Key': pw
-              },
-              json={
-                "comment": "Domain verification record",
-                "name": "${domain}",
-                "proxied": True,
-                "settings": {},
-                "tags": [],
-                "ttl": 1, # automatic
-                "content": my_ip,
-                "type": "A"
-              }
-            )
+    r = update_record(record_id="${record_id.base}", record_name="${domain}", ip=my_ip, type="A", proxied=True, pw=pw)
+    _ = update_record(record_id="${record_id.sub}", record_name="*.${domain}", ip=my_ip, type="A", proxied=True, pw=pw)
+    _ = update_record(record_id="${record_id.ssh}", record_name="ssh.${domain}", ip=my_ip, type="A", proxied=False, pw=pw)

-            resp_subd = requests.patch(
-              'https://api.cloudflare.com/client/v4/zones/${zone_id}/dns_records/${record_id.sub}',
-              headers={
-                'Content-Type': 'application/json',
-                'X-Auth-Email': '${account_id}',
-                'X-Auth-Key': pw
-              },
-              json={
-                "comment": "Domain verification record",
-                "name": "*.${domain}",
-                "proxied": True,
-                "settings": {},
-                "tags": [],
-                "ttl": 1, # automatic
-                "content": my_ip,
-                "type": "A"
-              }
-            )
+    if r.status_code != 200:
+        print(r.text)

-            resp_sshd = requests.patch(
-              'https://api.cloudflare.com/client/v4/zones/${zone_id}/dns_records/${record_id.ssh}',
-              headers={
-                'Content-Type': 'application/json',
-                'X-Auth-Email': '${account_id}',
-                'X-Auth-Key': pw
-              },
-              json={
-                "comment": "Domain verification record",
-                "name": "ssh.${domain}",
-                "proxied": False,
-                "settings": {},
-                "tags": [],
-                "ttl": 1, # automatic
-                "content": my_ip,
-                "type": "A"
-              }
-            )
+    r = update_record(record_id="${record_id.base6}", record_name="${domain}", ip=my_ip6, type="AAAA", proxied=True, pw=pw)
+    _ = update_record(record_id="${record_id.sub6}", record_name="*.${domain}", ip=my_ip6, type="AAAA", proxied=True, pw=pw)
+    _ = update_record(record_id="${record_id.ssh6}", record_name="ssh.${domain}", ip=my_ip6, type="AAAA", proxied=False, pw=pw)

-            if resp_base.status_code != 200:
-                print(resp_base.text)
-
-
-            # now_str = datetime.now().strftime('%Y/%m/%d-%R')
-            # log_entry = f"At {now_str} - to {my_ip} - Response {resp_base.status_code}\n"
-            # print(log_entry, end="")
-            # with open("${log-file-path}", 'a') as log_file:
-            #     log_file.write(log_entry)
-
-            # Perform DNS updates
-            # https://developers.cloudflare.com/api/operations/dns-records-for-a-zone-update-dns-record
-            resp_base = requests.patch(
-              'https://api.cloudflare.com/client/v4/zones/${zone_id}/dns_records/${record_id.base6}',
-              headers={
-                'Content-Type': 'application/json',
-                'X-Auth-Email': '${account_id}',
-                'X-Auth-Key': pw
-              },
-              json={
-                "comment": "Domain verification record",
-                "name": "${domain}",
-                "proxied": True,
-                "settings": {},
-                "tags": [],
-                "ttl": 1, # automatic
-                "content": my_ip6,
-                "type": "AAAA"
-              }
-            )
-
-            resp_subd = requests.patch(
-              'https://api.cloudflare.com/client/v4/zones/${zone_id}/dns_records/${record_id.sub6}',
-              headers={
-                'Content-Type': 'application/json',
-                'X-Auth-Email': '${account_id}',
-                'X-Auth-Key': pw
-              },
-              json={
-                "comment": "Domain verification record",
-                "name": "*.${domain}",
-                "proxied": True,
-                "settings": {},
-                "tags": [],
-                "ttl": 1, # automatic
-                "content": my_ip6,
-                "type": "AAAA"
-              }
-            )
-
-            resp_sshd = requests.patch(
-              'https://api.cloudflare.com/client/v4/zones/${zone_id}/dns_records/${record_id.ssh6}',
-              headers={
-                'Content-Type': 'application/json',
-                'X-Auth-Email': '${account_id}',
-                'X-Auth-Key': pw
-              },
-              json={
-                "comment": "Domain verification record",
-                "name": "ssh.${domain}",
-                "proxied": False,
-                "settings": {},
-                "tags": [],
-                "ttl": 1, # automatic
-                "content": my_ip6,
-                "type": "AAAA"
-              }
-            )
-
-            if resp_base.status_code != 200:
-                print(resp_base.text)
-
-            # now_str = datetime.now().strftime('%Y/%m/%d-%R')
-            # log_entry = f"At {now_str} - to {my_ip6} - Response {resp_base.status_code}\n"
-            # print(log_entry, end="")
-            # with open("${log-file-path}", 'a') as log_file: log_file.write(log_entry)
+    if r.status_code != 200:
+        print(r.text)

 if __name__ == "__main__":
    main()
-      '';
-    in {
-      script = ''
-        set -eu
-        ${u}/bin/dyn_dns 
+      ''; in /* bash */ ''
+        set -e
+        ${dyn-dns}/bin/dyn_dns 
      '';
      serviceConfig = {
        Type = "oneshot";
@@ -221,19 +108,19 @@ let dns-user = "cloudflare"; in
      };
    };
  };
-  networking.hosts = { # docker network inspect nx2site_default | grep -E "Name|IPv4" | tr "\n" " " | sed -r 's- +- -g;s-\n?"Name": -\n-g' | sed -r '1d;2d;s-"(.+?)", "IPv4Address": "(.+)/16",-  "\2" = [ "\1.docker" ];-g'
+  # networking.hosts = { # docker network inspect nx2site_default | grep -E "Name|IPv4" | tr "\n" " " | sed -r 's- +- -g;s-\n?"Name": -\n-g' | sed -r '1d;2d;s-"(.+?)", "IPv4Address": "(.+)/16",-  "\2" = [ "\1.docker" ];-g'
    # "172.1.2.1" = [ "staticweb.docker" ]; 
    # "172.1.3.1" = [ "matrix.docker" ]; 
    # "172.1.0.9" = [ "matrixdb.docker" ]; 
    # "172.1.4.1" = [ "matrix-ss.docker" ]; 
    # "172.1.0.7" = [ "matrix-ssdb.docker" ]; 
    # "172.1.5.1" = [ "pw.docker" ]; 
-    "172.1.6.1" = [ "git.docker" ]; 
+    # "172.1.6.1" = [ "git.docker" ]; 
    # "172.1.0.10" = [ "gitdb.docker" ];
    # "172.1.7.1" = [ "nn.docker" ]; 
    # "172.1.8.1" = [ "llm.docker" ]; 
    # "172.1.9.1" = [ "proxy.docker" ]; 
    # "172.1.10.1" = [ "share.docker" ]; 
    # "172.1.11.1" = [ "odq.docker" ]; 
-  };
+  # };
 }
--- a/system-modules/nx2site/radicale.nix
+++ b/system-modules/nx2site/radicale.nix
@@ -1,7 +1,7 @@
 { config, domain, ... }:
 {
  sops.secrets = { 
-    "nx2site/radicale-htpasswd" = {
+    "nx2site/radicale/htpasswd" = {
      owner = "radicale";
    };
  };
@@ -20,7 +20,7 @@
        ];
        auth = {
          type = "htpasswd";
-          htpasswd_filename = config.sops.secrets."nx2site/radicale-htpasswd".path;
+          htpasswd_filename = config.sops.secrets."nx2site/radicale/htpasswd".path;
          htpasswd_encryption = "bcrypt";
        };
      };