genebean · genebean · Jan 29, 2025 · genebean · Jan 30, 2025
diff --git a/.sops.yaml b/.sops.yaml
@@ -4,7 +4,7 @@ keys:
   - &system_hetznix01 age1rd55wsu0hhvxk25tm69d9h57z0z0u6556x4ypg09muj3vh4yqs5qaw23nu
   - &system_hetznix02 age180w4c04kga07097u0us6d72aslnv2523hx64x8fzgzu4tccrxuyqa50hpm
   - &system_kiosk_gene_desk age1an6t5f0rr6h55rzsv5ejycxju72rp46jka840fwvupwfk65jegrq7hmkl9
-  - &system_nixnas1 age1g4h5a4f5xfle2a6np8te342pphs3mcuan60emz2zp87nrwjzl5yquhr5vl
+  - &system_beancoin1 age1g4h5a4f5xfle2a6np8te342pphs3mcuan60emz2zp87nrwjzl5yquhr5vl
   - &system_nixnuc age1g24zhwvgenpc4wqejt63thvgd4rn5x9n7nnwwme7dm83nfqpp93se2vmq4
   - &system_rainbow_planet age15xlw5vnnjdx2ypz6rq0mqcywuaj3yx8y6lrgf95satafqf7y4qus6rv6ck
   - &user_airpuppet age1awdf9h0avajf57cudx0rjfmxu2wlxw8wf3sa7yvfk8rp4j6taecsu74x77
@@ -27,10 +27,10 @@ creation_rules:
     key_groups:
       - age:
           - *system_kiosk_gene_desk
-  - path_regex: nixnas1/secrets.yaml$
+  - path_regex: beancoin1/secrets.yaml$
     key_groups:
       - age:
-          - *system_nixnas1
+          - *system_beancoin1
   - path_regex: nixnuc/secrets.yaml$
     key_groups:
       - age:
@@ -58,7 +58,7 @@ creation_rules:
           - *system_hetznix01
           - *system_hetznix02
           - *system_kiosk_gene_desk
-          - *system_nixnas1
+          - *system_beancoin1
           - *system_nixnuc
           - *system_rainbow_planet
           - *user_airpuppet

diff --git a/flake.lock b/flake.lock
diff --git a/flake.nix b/flake.nix
@@ -34,6 +34,12 @@
       inputs.nixpkgs.follows = "nixpkgs";
     };
 
+    nix-bitcoin = {
+      url = "github:fort-nix/nix-bitcoin/nixos-24.11";
+      inputs.nixpkgs.follows = "nixpkgs";
+      inputs.nixpkgs-unstable.follows = "nixpkgs-unstable";
+    };
+
     # Controls system level software and settings including fonts on macOS
     nix-darwin = {
       url = "github:lnl7/nix-darwin/nix-darwin-24.11";
@@ -125,6 +131,9 @@
 
     # NixOS hosts
     nixosConfigurations = {
+      beancoin1 = localLib.mkNixBitcoinHost {
+        hostname = "beancoin1";
+      };
       bigboy = localLib.mkNixosHost {
         hostname = "bigboy";
         additionalModules = [

diff --git a/lib/default.nix b/lib/default.nix
@@ -1,7 +1,9 @@
 { inputs, ... }: let
   mkDarwinHost = import ./mkDarwinHost.nix { inherit inputs; };
   mkNixosHost = import ./mkNixosHost.nix { inherit inputs; };
+  mkNixBitcoinHost = import ./mkNixBitcoinHost.nix { inherit inputs; };
 in {
   inherit (mkDarwinHost) mkDarwinHost;
   inherit (mkNixosHost) mkNixosHost;
+  inherit (mkNixBitcoinHost) mkNixBitcoinHost;
 }
diff --git a/lib/mkNixBitcoinHost.nix b/lib/mkNixBitcoinHost.nix
@@ -0,0 +1,36 @@
+{ inputs, ... }: {
+  mkNixBitcoinHost = {
+    system ? "x86_64-linux",
+    hostname,
+    username ? "gene",
+    additionalModules ? [],
+    additionalSpecialArgs ? {}
+  }: inputs.nixpkgs.lib.nixosSystem {
+    inherit system;
+    specialArgs = { inherit inputs hostname username; } // additionalSpecialArgs;
+    modules = [
+      ./nixpkgs-settings.nix
+
+      inputs.disko.nixosModules.disko
+      inputs.nix-bitcoin.nixosModules.default
+      inputs.sops-nix.nixosModules.sops # system wide secrets management
+
+      ../modules/hosts/nixos # system-wide stuff
+      ../modules/hosts/nixos/${hostname} # host specific stuff
+
+      inputs.home-manager.nixosModules.home-manager {
+        home-manager = {
+          extraSpecialArgs = { inherit inputs hostname username; };
+          useGlobalPkgs = true;
+          useUserPackages = true;
+          users.${username}.imports = [
+            ../modules/hosts/common
+            ../modules/hosts/common/linux/home.nix
+            ../modules/hosts/nixos/${hostname}/home-${username}.nix
+          ];
+        };
+      }
+
+    ] ++ additionalModules;
+  };
+}