feat: rearrange configs

configs/client.nix

@@ -0,0 +1,15 @@
+{pkgs, ...}: {
+  environment.systemPackages = with pkgs; [
+    nil
+    ffmpeg
+    yt-dlp
+    hyfetch
+  ];
+
+  hm.programs.keychain = {
+    enable = true;
+    agents = ["ssh"];
+    inheritType = "any";
+    keys = ["id_ed25519"];
+  };
+}

configs/common.nix

@@ -43,10 +43,6 @@ in {
       git
       curl
       wget
-      nil
-      ffmpeg
-      yt-dlp
-      hyfetch
       htop
     ];
 
@@ -55,16 +51,7 @@ in {
     };
   };
 
-  hm = {
-    home = {inherit stateVersion;};
-
-    programs.keychain = {
-      enable = true;
-      agents = ["ssh"];
-      inheritType = "any";
-      keys = ["id_ed25519"];
-    };
-  };
+  hm.home = {inherit stateVersion;};
 
   home-manager = {
     useGlobalPkgs = true;

configs/desktop.nix

@@ -1,5 +1,4 @@
 {
-  lib,
   pkgs,
   config,
   catppuccin,
@@ -10,20 +9,8 @@
   boot = {
     extraModulePackages = with config.boot.kernelPackages; [v4l2loopback];
     kernelModules = ["v4l2loopback"];
-
-    loader = {
-      systemd-boot.enable = lib.mkForce false;
-      efi.canTouchEfiVariables = true;
-    };
-
-    lanzaboote = {
-      enable = true;
-      pkiBundle = "/etc/secureboot";
-    };
   };
 
-  environment.systemPackages = with pkgs; [sbctl];
-
   fonts = {
     packages = with pkgs; [
       iosevka
@@ -76,8 +63,6 @@
         (vesktop.override {withSystemVencord = false;})
         wine-discord-ipc-bridge
       ];
-
-      stateVersion = "23.11";
     };
 
     services = {

configs/physical-computer.nix

@@ -0,0 +1,19 @@
+{
+  lib,
+  pkgs,
+  ...
+}: {
+  boot = {
+    loader = {
+      systemd-boot.enable = lib.mkForce false;
+      efi.canTouchEfiVariables = true;
+    };
+
+    lanzaboote = {
+      enable = true;
+      pkiBundle = "/etc/secureboot";
+    };
+  };
+
+  environment.systemPackages = with pkgs; [sbctl];
+}

configs/server.nix

@@ -0,0 +1,3 @@
+{
+  services.tailscale.extraUpFlags = ["--advertise-exit-node"];
+}

systems/default.nix

@@ -23,20 +23,29 @@
 
   mapNixOS = lib.mapAttrs (toSystem inputs.nixpkgs.lib.nixosSystem);
 
-  nixos = with inputs; [
+  _common = with inputs; [
     ../configs/common.nix
     agenix.nixosModules.default
     home-manager.nixosModules.home-manager
     vscode-server.nixosModules.default
   ];
 
+  physical-computer = with inputs; [
+    ../configs/physical-computer.nix
+    lanzaboote.nixosModules.lanzaboote
+  ];
+
+  client = [../configs/client.nix] ++ _common;
+
+  server = [../configs/server.nix] ++ _common;
+
   desktop = with inputs;
     [
       ../configs/desktop.nix
-      lanzaboote.nixosModules.lanzaboote
       catppuccin.nixosModules.catppuccin
     ]
-    ++ nixos;
+    ++ physical-computer
+    ++ client;
 in {
   flake.nixosConfigurations = mapNixOS {
     fuji = {
@@ -47,7 +56,7 @@ in {
     fuji-wsl = {
       system = "x86_64-linux";
       modules =
-        nixos
+        client
         ++ (with inputs; [
           nixos-wsl.nixosModules.default
         ]);
@@ -61,7 +70,8 @@ in {
     etna = {
       system = "x86_64-linux";
       modules =
-        nixos
+        server
+        ++ physical-computer
         ++ (with inputs; [
           api-rs.nixosModules.default
           ukubot-rs.nixosModules.default

systems/etna/default.nix

@@ -32,16 +32,11 @@ in {
     };
   };
 
-  boot = {
-    loader.systemd-boot.enable = true;
-    kernelPackages = lib.mkForce pkgs.linuxPackages_6_1;
-  };
+  boot.kernelPackages = lib.mkForce pkgs.linuxPackages_6_1;
 
   services = {
     openssh.openFirewall = true;
 
-    tailscale.extraUpFlags = ["--advertise-exit-node"];
-
     cloudflared = {
       enable = true;
       tunnels.${tunnelId} = {