ingress/configuration.nix

{
  inputs,
  lib,
  config,
  pkgs,
  ...
} : {
  system.stateVersion = "23.11";

  #boot.loader.systemd-boot.enable = true;
  #boot.loader.efi.canTouchEfiVariables = true;

  # PROXMOX
  services.qemuGuest.enable = true;

  # USER MANAGEMENT
  nix.settings.trusted-users = [ "nixos" ];
  users.users.nixos =
    {
      isNormalUser = true;
      extraGroups = [ "wheel" ];
      openssh.authorizedKeys.keys = [
        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICXAlzwziqfUUb2qmFwNF/nrBYc5MNT1MMOx81ohBmB+ tine@little.sys.tjo.space"
      ];
    };
  services.openssh = {
    enable = true;
    settings.PasswordAuthentication = false;
    settings.KbdInteractiveAuthentication = false;
    settings.PermitRootLogin = "no";
  };
  security.sudo.wheelNeedsPassword = false;

  # NGINX
  services.nginx.enable = true;

  environment.systemPackages = [
    pkgs.nginx
  ];
}