GarandPLG
a435b7d0cc
- Turn on KDE Connect for desktop and laptop configurations - Add allowed TCP and UDP port ranges (1714‑1764) for KDE Connect - Update flake.lock with newer revisions, hashes, and add secondary inputs - Set nh program package explicitly - Adjust GTK settings for dark theme handling - Disable KDE Connect indicator in service config - Refactor noctalia plugins to use a shared source URL, add kde‑connect plugin, bump version - Add KDE Connect widget to the right bar - Remove always_allow_tool_actions from Zed agent settings
50 lines
1.0 KiB
Nix
50 lines
1.0 KiB
Nix
{
|
|
host,
|
|
options,
|
|
...
|
|
}: let
|
|
inherit (import ../../hosts/${host}/variables.nix) hostId;
|
|
in {
|
|
# Defensive assertion for hostname validity (clearer message at eval time)
|
|
assertions = [
|
|
{
|
|
assertion = builtins.match "^[[:alnum:]]([[:alnum:]_-]{0,61}[[:alnum:]])?$" host != null;
|
|
message = "Invalid hostname '${host}'. Must be 1-63 chars, start/end alphanumeric; allowed middle chars: letters, digits, '-' or '_'.";
|
|
}
|
|
];
|
|
|
|
networking = {
|
|
hostName = "${host}";
|
|
hostId = hostId;
|
|
networkmanager.enable = true;
|
|
timeServers = options.networking.timeServers.default ++ ["pool.ntp.org"];
|
|
firewall = {
|
|
enable = true;
|
|
allowedTCPPorts = [
|
|
22
|
|
80
|
|
443
|
|
59010
|
|
59011
|
|
8080
|
|
];
|
|
allowedTCPPortRanges = [
|
|
{
|
|
from = 1714;
|
|
to = 1764;
|
|
}
|
|
];
|
|
allowedUDPPorts = [
|
|
59010
|
|
59011
|
|
];
|
|
allowedUDPPortRanges = [
|
|
{
|
|
from = 1714;
|
|
to = 1764;
|
|
}
|
|
];
|
|
};
|
|
};
|
|
}
|