2023-06-05 12:31:07 +02:00
|
|
|
{ pkgs, lib, ... }:
|
2023-01-21 19:03:24 +01:00
|
|
|
{
|
2023-06-05 12:31:07 +02:00
|
|
|
|
2023-12-01 15:05:38 +01:00
|
|
|
# fixes qt and themes
|
2023-06-05 12:31:07 +02:00
|
|
|
environment.variables = {
|
|
|
|
"QT_STYLE_OVERRIDE" = lib.mkForce "kvantum";
|
|
|
|
"QT_QPA_PLATFORMTHEME" = lib.mkForce "Dracula";
|
2023-12-23 17:31:54 +01:00
|
|
|
"_JAVA_AWT_WM_NONREPARENTING" = "1";
|
2023-12-01 15:05:38 +01:00
|
|
|
"GTK_THEME" = "Dracula";
|
2023-06-05 12:31:07 +02:00
|
|
|
};
|
2023-06-03 21:42:12 +02:00
|
|
|
# open ports for kde connect
|
|
|
|
networking.firewall = rec {
|
|
|
|
allowedTCPPortRanges = [{ from = 1714; to = 1764; }];
|
|
|
|
allowedUDPPortRanges = allowedTCPPortRanges;
|
|
|
|
};
|
2023-11-24 09:57:15 +01:00
|
|
|
# enable xdg portals for sway
|
|
|
|
xdg.portal = {
|
|
|
|
enable = true;
|
|
|
|
extraPortals = [
|
|
|
|
pkgs.xdg-desktop-portal-wlr
|
2024-01-22 01:07:30 +01:00
|
|
|
pkgs.xdg-desktop-portal-gtk
|
2023-11-24 09:57:15 +01:00
|
|
|
];
|
2023-12-17 17:22:51 +01:00
|
|
|
config = {
|
|
|
|
common = {
|
|
|
|
default = [ "wlr" ];
|
|
|
|
};
|
2024-01-22 01:07:30 +01:00
|
|
|
"org.freedesktop.impl.portal.FileChooser" = {
|
|
|
|
default = [ "gtk" ];
|
|
|
|
};
|
2023-12-17 17:22:51 +01:00
|
|
|
"org.freedesktop.impl.portal.Secret" = {
|
|
|
|
default = [ "gnome-keyring" ];
|
|
|
|
};
|
|
|
|
};
|
2023-11-24 09:57:15 +01:00
|
|
|
};
|
2023-07-09 22:49:16 +02:00
|
|
|
# wayland keylogger needs setuid
|
|
|
|
programs.wshowkeys.enable = true;
|
2023-12-01 15:05:38 +01:00
|
|
|
# home manager needs dconf
|
|
|
|
programs.dconf.enable = true;
|
2023-01-21 19:03:24 +01:00
|
|
|
# fixes pam entries for swaylock
|
|
|
|
security.pam.services.swaylock.text = ''
|
|
|
|
# Account management.
|
|
|
|
account required pam_unix.so
|
|
|
|
|
|
|
|
# Authentication management.
|
|
|
|
|
|
|
|
auth sufficient pam_unix.so nullok likeauth try_first_pass
|
2023-12-17 17:22:51 +01:00
|
|
|
auth sufficient ${pkgs.pam_u2f}/lib/security/pam_u2f.so
|
2023-01-21 19:03:24 +01:00
|
|
|
auth sufficient ${pkgs.fprintd}/lib/security/pam_fprintd.so
|
|
|
|
auth required pam_deny.so
|
|
|
|
|
|
|
|
# Password management.
|
|
|
|
password sufficient pam_unix.so nullok sha512
|
|
|
|
|
|
|
|
# Session management.
|
|
|
|
session required pam_env.so conffile=/etc/pam/environment readenv=0
|
|
|
|
session required pam_unix.so
|
|
|
|
'';
|
2023-11-24 09:57:15 +01:00
|
|
|
# global wrapper for ausweisapp
|
|
|
|
programs.ausweisapp = {
|
|
|
|
enable = true;
|
2024-05-16 20:44:47 +02:00
|
|
|
openFirewall = true;
|
2023-11-24 09:57:15 +01:00
|
|
|
};
|
|
|
|
# home manager steam is borderline broken
|
|
|
|
programs.steam.enable = true;
|
|
|
|
|
|
|
|
# enable java black magic
|
|
|
|
programs.java.enable = true;
|
2023-01-21 19:03:24 +01:00
|
|
|
}
|