Merge pull request #764 from kylerisse/dev_server_monitoring

Add libvirtd to devServer and update Kyle's keys

nix/machines/_common/users.nix

@@ -35,7 +35,11 @@
       isNormalUser = true;
       uid = 2007;
       extraGroups = [ "wheel" ];
-      openssh.authorizedKeys.keys = [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMlEPbMnefiPfCTKb9lOzPzfnOVAohO08myWWMm9EJxZ" ];
+      openssh.authorizedKeys.keys = [
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPcTYYr/TGH4vRCaY4WU4Qc7RlzzBOHv2XYxGwCzV+fg p"
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKX8NM1OQECwhNTQE0qAm422uq9L0i0Y/hvPPc4tHIOX a"
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMlEPbMnefiPfCTKb9lOzPzfnOVAohO08myWWMm9EJxZ"
+      ];
     };
     ruebenramirez = {
       isNormalUser = true;

nix/machines/devServer/default.nix

@@ -1,6 +1,9 @@
 { config, pkgs, ... }:
 
 {
+  imports = [
+    ./libvirt.nix
+  ];
   # remove the annoying experimental warnings
   nix.extraOptions = ''
     experimental-features = nix-command flakes

nix/machines/devServer/hardware-configuration.nix

@@ -56,8 +56,8 @@
     efiSupport = true;
     efiInstallAsRemovable = true;
     mirroredBoots = [
-        { devices = [ "nodev" ]; path = "/boot"; }
-        { devices = [ "nodev" ]; path = "/boot2"; }
+      { devices = [ "nodev" ]; path = "/boot"; }
+      { devices = [ "nodev" ]; path = "/boot2"; }
     ];
   };
 

nix/machines/devServer/libvirt.nix

@@ -0,0 +1,17 @@
+{ config, ... }:
+{
+  security.polkit.enable = true;
+
+  virtualisation.libvirtd = {
+    enable = true;
+    qemu = {
+      ovmf.enable = true;
+      runAsRoot = false;
+    };
+    onBoot = "ignore";
+    onShutdown = "shutdown";
+  };
+
+  # Add any users in the 'wheel' group to the 'libvirt' group.
+  users.groups.libvirt.members = builtins.filter (x: builtins.elem "wheel" config.users.users."${x}".extraGroups) (builtins.attrNames config.users.users);
+}