894e7241f1
- Add speckit workflow infrastructure (.claude, .specify) - Create NixOS configuration skeleton (flake.nix, configuration.nix, hosts/ops-jrz1.nix) - Add sanitization scripts with 22 rules for personal info removal - Add validation scripts with gitleaks integration - Configure git hooks (pre-commit, pre-push) for security validation - Add project documentation (README, LICENSE) - Add comprehensive .gitignore for Nix, secrets, staging Phase 1 and Phase 2 complete. Foundation ready for module extraction from ops-base.
35 lines
965 B
Nix
35 lines
965 B
Nix
{ config, pkgs, ... }:
|
|
|
|
{
|
|
# ops-jrz1 dev/test server configuration
|
|
# This file will be populated with Matrix platform modules and server-specific settings
|
|
|
|
imports = [
|
|
# Hardware configuration will be added based on server specs
|
|
# ./hardware-configuration.nix
|
|
|
|
# Matrix platform modules (to be imported after extraction)
|
|
# ../modules/matrix-continuwuity.nix
|
|
# ../modules/mautrix-slack.nix
|
|
# ../modules/mautrix-whatsapp.nix
|
|
# ../modules/mautrix-gmessages.nix
|
|
# ../modules/security/fail2ban.nix
|
|
# ../modules/security/ssh-hardening.nix
|
|
];
|
|
|
|
# System configuration
|
|
networking.hostName = "ops-jrz1";
|
|
|
|
# Placeholder for Matrix homeserver configuration
|
|
# services.matrix-continuwuity = {
|
|
# enable = true;
|
|
# domain = "REPLACE_ME"; # ops-jrz1 domain
|
|
# port = 8008;
|
|
# };
|
|
|
|
# Placeholder for bridge configurations
|
|
# Bridges will be configured after modules are extracted
|
|
|
|
system.stateVersion = "24.05";
|
|
}
|