From d5dbefe219d632f6b162f3d536db785873e48a65 Mon Sep 17 00:00:00 2001
From: mc-fucker <dev@mc-fucker.cool>
Date: Mon, 10 Mar 2025 11:03:53 +0100
Subject: [PATCH] changes to mc7 configuration.nix

---
 systems/mc7/configuration.nix | 33 +++++++++++++++++++++++++++------
 1 file changed, 27 insertions(+), 6 deletions(-)

diff --git a/systems/mc7/configuration.nix b/systems/mc7/configuration.nix
index fe96b44..3233d35 100644
--- a/systems/mc7/configuration.nix
+++ b/systems/mc7/configuration.nix
@@ -5,17 +5,38 @@
       ./hardware-configuration.nix
       ./modules/generic.nix
       ./modules/borg.nix
-      ./modules/minecraft.nix
-      ./modules/rclone.nix
+      #./modules/minecraft.nix
+      #./modules/rclone.nix
       ./modules/authentik-server.nix
+      ./modules/authentik-ldap.nix
+      ./modules/powerdns-web.nix
+      ./modules/powerdns-admin.nix
+      ./modules/ihatemoney.nix
+      #./modules/postgresql.nix
+      ./modules/zabbix-server.nix
+      ./modules/vaultwarden.nix
+      ./modules/remotebuild/host.nix
     ];
 
-  services.rclone.cacheSize = "100G";
-
-  system.autoUpgrade = {
-    allowReboot = false;
+  services.postgresql = {
+    package = pkgs.postgresql_15;
   };
 
+
+  sops.secrets."authentik/ldap/mc7" = {};
+  services.authentik-ldap.token = builtins.readFile config.sops.secrets."authentik/ldap/mc7".path;
+
+  networking.firewall.interfaces.podman0.allowedUDPPorts = [ 53 ];
+  networking.firewall.interfaces.podman0.allowedTCPPorts = [ 5432 ];
+
+  #services.rclone.cacheSize = "100G";
+
+  #system.autoUpgrade = {
+  #  allowReboot = false;
+  #};
+
+  #nix.gc.automatic = false;
+
   system.stateVersion = "22.05";
 }