Added oddjob VM

README.md

@@ -20,9 +20,9 @@ exit
 
 # Install NixOS
 nixos-install --no-channel-copy --no-root-password --flake git+https://git.bulthuis.dev/Jan/nixos-config#(system)
-cd /mnt/persist/system/etc/sops
 
 # Set up host credentials for access to the secrets
+cd /mnt/persist/system/etc/sops
 touch sops_ed25519_key 
 chmod 600 sops_ed25519_key
 nano sops_ed25519_key

flake.lock

@@ -161,11 +161,11 @@
     },
     "secrets": {
       "locked": {
-        "lastModified": 1748613807,
-        "narHash": "sha256-awE+2QvMkGP4OOPGniFMldvYnLYj60n4izgEJXcJUv0=",
+        "lastModified": 1749133396,
+        "narHash": "sha256-St9GzTMi/Bx9Zs84LfNbcH7Qbs825UTg9hvzNg1ZI3A=",
         "ref": "refs/heads/main",
-        "rev": "d120fcc272429517649402cf2ccefb9334f50535",
-        "revCount": 7,
+        "rev": "51679f68977cb3246a02791a59841fa31659136e",
+        "revCount": 8,
         "type": "git",
         "url": "ssh://gitea@git.bulthuis.dev/Jan/nixos-secrets"
       },

hosts/20212060/configuration.nix

@@ -1,4 +1,4 @@
-{ flake, ... }:
+{ inputs, ... }:
 
 {
   # State version
@@ -13,6 +13,17 @@
     "wireshark"
   ];
 
+  # Set up kerberos
+  security.krb5 = {
+    enable = true;
+    settings = {
+      libdefaults = {
+        rdns = false;
+      };
+      realms = (inputs.secrets.gewis.krb5Realm);
+    };
+  };
+
   # Enable virtualisation for VMs
   virtualisation.libvirtd.enable = true;
 

hosts/vm-oddjob/configuration.nix

@@ -0,0 +1,22 @@
+{
+  lib,
+  pkgs,
+  config,
+  ...
+}:
+
+{
+  # State version
+  system.stateVersion = "24.11";
+
+  # Machine hostname
+  networking.hostName = "vm-vpn";
+
+  # Enabled modules
+  modules = {
+    profiles.vm.enable = true;
+  };
+
+  # Setup NAS Backup Job
+
+}

hosts/vm-oddjob/users/local.nix

@@ -0,0 +1,7 @@
+{ ... }:
+
+{
+  home.stateVersion = "24.11";
+
+  modules.profiles.base.enable = true;
+}

profiles/home/jan.nix

@@ -38,6 +38,7 @@ in
       prismlauncher
       foliate
       wireshark
+      obsidian
     ];
 
     modules = {