flake.nix

{
  description = "NixOS configuration";

  inputs = {
    # Pinned stable channel; the single source of truth for every host.
    nixpkgs.url = "nixpkgs/nixos-26.05";
    # Bleeding-edge channel, used only to pull individual packages via overlay.
    nixpkgs-unstable.url = "github:nixos/nixpkgs/nixos-unstable";
    # Home-manager release matched to the stable nixpkgs; `follows` keeps a single nixpkgs eval.
    home-manager.url = "github:nix-community/home-manager/release-26.05";
    home-manager.inputs.nixpkgs.follows = "nixpkgs";
    # WSL module for the EDaaS host; flake input avoids the impure <nixos-wsl> NIX_PATH lookup.
    nixos-wsl.url = "github:nix-community/NixOS-WSL";
    nixos-wsl.inputs.nixpkgs.follows = "nixpkgs";
    # Apple Silicon (Asahi) support for the MacBook host.
    nixos-apple-silicon.url = "github:nix-community/nixos-apple-silicon";
    nixos-apple-silicon.inputs.nixpkgs.follows = "nixpkgs";
    # nix-darwin: manage macOS hosts from this same flake.
    nix-darwin.url = "github:nix-darwin/nix-darwin/nix-darwin-26.05";
    nix-darwin.inputs.nixpkgs.follows = "nixpkgs";
    # nix-homebrew: declaratively own and install the Homebrew prefix on macOS.
    nix-homebrew.url = "github:zhaofengli/nix-homebrew";
    # Provides mkFlake: the systems/perSystem scaffolding used below.
    flake-parts.url = "github:hercules-ci/flake-parts";
    flake-parts.inputs.nixpkgs-lib.follows = "nixpkgs";
  };

  outputs =
    inputs@{
      flake-parts,
      nixpkgs,
      nixpkgs-unstable,
      home-manager,
      nixos-wsl,
      nixos-apple-silicon,
      nix-darwin,
      nix-homebrew,
      ...
    }:
    flake-parts.lib.mkFlake { inherit inputs; } (
      { lib, ... }:
      let
        # claude-code tracks nixpkgs-unstable regardless of the pinned nixpkgs.
        overlays = [
          (final: prev: {
            claude-code =
              (import nixpkgs-unstable {
                inherit (prev.stdenv.hostPlatform) system;
                config.allowUnfree = true;
              }).claude-code;
          })
        ];

        # Unfree packages permitted to be built (replaces blanket allowUnfree).
        unfreePackages = [
          "claude-code"
          "lens"
          "lens-desktop"
        ];

        # nixpkgs + nix-daemon settings shared by NixOS and Darwin hosts.
        commonModule = {
          nixpkgs.overlays = overlays;
          nixpkgs.config.allowUnfreePredicate = pkg: builtins.elem (lib.getName pkg) unfreePackages;
          nix.settings.experimental-features = [
            "nix-command"
            "flakes"
          ];
          # Make `nix shell nixpkgs#...` and <nixpkgs> use the pinned nixpkgs.
          nix.registry.nixpkgs.flake = nixpkgs;
          nix.nixPath = [ "nixpkgs=${nixpkgs}" ];
        };

        # Shared scaffolding for every NixOS host: common user, settings, home-manager.
        baseModules = [
          ./lyrathorpe/user.nix
          commonModule
          home-manager.nixosModules.home-manager
          {
            home-manager.useGlobalPkgs = true;
            home-manager.useUserPackages = true;
          }
        ];

        # mkHost :: { system, username, fullName, modules, homeModules } -> nixosSystem
        # Builds one machine by appending its host-specific modules to the shared
        # baseModules. The user identity (username/fullName) is threaded through
        # specialArgs so user.nix and the home modules stay host-agnostic, and the
        # home-manager profile is keyed by the host's username.
        mkHost =
          {
            system,
            username,
            fullName,
            modules,
            homeModules,
          }:
          nixpkgs.lib.nixosSystem {
            inherit system;
            specialArgs = { inherit inputs username fullName; };
            modules =
              baseModules
              ++ modules
              ++ [
                {
                  home-manager.extraSpecialArgs = { inherit inputs username fullName; };
                  home-manager.users.${username}.imports = homeModules;
                }
              ];
          };

        # Shared scaffolding for every Darwin (macOS) host.
        darwinBaseModules = [
          commonModule
          nix-homebrew.darwinModules.nix-homebrew
          home-manager.darwinModules.home-manager
          {
            home-manager.useGlobalPkgs = true;
            home-manager.useUserPackages = true;
          }
        ];

        # mkDarwinHost :: { system, username, fullName, modules, homeModules } -> darwinSystem
        # Darwin counterpart of mkHost. macOS already owns the login user, so we
        # only attach the platform and home-manager; no NixOS user module here.
        mkDarwinHost =
          {
            system,
            username,
            fullName,
            modules,
            homeModules,
          }:
          nix-darwin.lib.darwinSystem {
            specialArgs = { inherit inputs username fullName; };
            modules =
              darwinBaseModules
              ++ modules
              ++ [
                {
                  nixpkgs.hostPlatform = system;
                  # macOS owns the account; point home-manager at its home dir.
                  users.users.${username}.home = "/Users/${username}";
                  home-manager.extraSpecialArgs = { inherit inputs username fullName; };
                  home-manager.users.${username}.imports = homeModules;
                }
              ];
          };

        # Host table — declarative registry of every machine. To add a host:
        # give it a name, its `system`, the owning user, and the module lists.
        # mapAttrs below turns each entry into a nixosConfiguration of the same name.
        hosts = {
          lyrathorpe-mbp = {
            system = "aarch64-linux";
            username = "lyrathorpe";
            fullName = "Lyra Thorpe";
            modules = [
              ./system/machine/MBP-Asahi/configuration.nix
              nixos-apple-silicon.nixosModules.default
              ./lyrathorpe/swaywm.nix
            ];
            homeModules = [
              ./lyrathorpe/home
              ./lyrathorpe/home/desktop.nix
            ];
          };

          lyrathorpe-x1c = {
            system = "x86_64-linux";
            username = "lyrathorpe";
            fullName = "Lyra Thorpe";
            modules = [
              ./system/machine/X1/configuration.nix
              ./lyrathorpe/swaywm.nix
            ];
            homeModules = [
              ./lyrathorpe/home
              ./lyrathorpe/home/desktop.nix
            ];
          };

          emmathorpe-edaas = {
            system = "x86_64-linux";
            username = "emmathorpe";
            fullName = "Emma Thorpe";
            modules = [
              ./system/machine/EDaaS/configuration.nix
              nixos-wsl.nixosModules.default
              ./lyrathorpe/swaywm.nix
            ];
            homeModules = [
              ./lyrathorpe/home
              ./system/modules/work/default.nix
            ];
          };
        };

        # Darwin host table — macOS machines built via mkDarwinHost. The shared
        # ./lyrathorpe/home modules (shell, git, editor) are reused; the Linux-only
        # desktop/sway modules are intentionally left out.
        darwinHosts = {
          lyrathorpe-mac = {
            system = "aarch64-darwin";
            username = "lyrathorpe";
            fullName = "Lyra Thorpe";
            modules = [
              ./system/machine/Darwin/configuration.nix
            ];
            homeModules = [
              ./lyrathorpe/home
            ];
          };
        };
      in
      {
        systems = [
          "x86_64-linux"
          "aarch64-linux"
          "aarch64-darwin"
          "x86_64-darwin"
        ];

        # perSystem is evaluated once per entry in `systems`; `pkgs` is the
        # nixpkgs instance for that system. Outputs here become per-system
        # attrsets automatically (e.g. devShells.<system>.default).
        perSystem =
          { pkgs, ... }:
          {
            # `nix fmt` formatter for the repo.
            formatter = pkgs.nixfmt;

            # `nix develop` shell with the tooling needed to hack on this flake.
            devShells.default = pkgs.mkShellNoCC {
              packages = with pkgs; [
                nixfmt
                nil
                git
              ];
            };

            checks.formatting =
              pkgs.runCommandLocal "check-formatting" { nativeBuildInputs = [ pkgs.nixfmt ]; }
                ''
                  # Generated hardware-configuration.nix files are excluded.
                  nixfmt --check $(find ${./.} -name '*.nix' -not -name 'hardware-configuration.nix') && touch $out
                '';
          };

        # Realise the host tables: each entry becomes a {nixos,darwin}Configuration.
        flake.nixosConfigurations = lib.mapAttrs (_name: mkHost) hosts;
        flake.darwinConfigurations = lib.mapAttrs (_name: mkDarwinHost) darwinHosts;
      }
    );
}
Add Nix files 2025-05-21 19:47:51 +01:00			`{`
			`description = "NixOS configuration";`

			`inputs = {`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`# Pinned stable channel; the single source of truth for every host.`
			`nixpkgs.url = "nixpkgs/nixos-26.05";`
			`# Bleeding-edge channel, used only to pull individual packages via overlay.`
			`nixpkgs-unstable.url = "github:nixos/nixpkgs/nixos-unstable";`
			# Home-manager release matched to the stable nixpkgs; `follows` keeps a single nixpkgs eval.
			`home-manager.url = "github:nix-community/home-manager/release-26.05";`
			`home-manager.inputs.nixpkgs.follows = "nixpkgs";`
			`# WSL module for the EDaaS host; flake input avoids the impure <nixos-wsl> NIX_PATH lookup.`
			`nixos-wsl.url = "github:nix-community/NixOS-WSL";`
			`nixos-wsl.inputs.nixpkgs.follows = "nixpkgs";`
			`# Apple Silicon (Asahi) support for the MacBook host.`
			`nixos-apple-silicon.url = "github:nix-community/nixos-apple-silicon";`
			`nixos-apple-silicon.inputs.nixpkgs.follows = "nixpkgs";`
feat(darwin): add nix-darwin support with a default macOS host 2026-06-02 15:46:19 +00:00			`# nix-darwin: manage macOS hosts from this same flake.`
			`nix-darwin.url = "github:nix-darwin/nix-darwin/nix-darwin-26.05";`
			`nix-darwin.inputs.nixpkgs.follows = "nixpkgs";`
feat(darwin): wire nix-homebrew and make Homebrew authoritative 2026-06-02 15:56:37 +00:00			`# nix-homebrew: declaratively own and install the Homebrew prefix on macOS.`
			`nix-homebrew.url = "github:zhaofengli/nix-homebrew";`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`# Provides mkFlake: the systems/perSystem scaffolding used below.`
			`flake-parts.url = "github:hercules-ci/flake-parts";`
			`flake-parts.inputs.nixpkgs-lib.follows = "nixpkgs";`
Add Nix files 2025-05-21 19:47:51 +01:00			`};`

Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`outputs =`
			`inputs@{`
			`flake-parts,`
			`nixpkgs,`
			`nixpkgs-unstable,`
			`home-manager,`
			`nixos-wsl,`
			`nixos-apple-silicon,`
feat(darwin): add nix-darwin support with a default macOS host 2026-06-02 15:46:19 +00:00			`nix-darwin,`
feat(darwin): wire nix-homebrew and make Homebrew authoritative 2026-06-02 15:56:37 +00:00			`nix-homebrew,`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`...`
			`}:`
			`flake-parts.lib.mkFlake { inherit inputs; } (`
			`{ lib, ... }:`
			`let`
			`# claude-code tracks nixpkgs-unstable regardless of the pinned nixpkgs.`
			`overlays = [`
			`(final: prev: {`
			`claude-code =`
			`(import nixpkgs-unstable {`
			`inherit (prev.stdenv.hostPlatform) system;`
			`config.allowUnfree = true;`
			`}).claude-code;`
			`})`
			`];`

			`# Unfree packages permitted to be built (replaces blanket allowUnfree).`
			`unfreePackages = [`
			`"claude-code"`
			`"lens"`
			`"lens-desktop"`
			`];`

feat(darwin): add nix-darwin support with a default macOS host 2026-06-02 15:46:19 +00:00			`# nixpkgs + nix-daemon settings shared by NixOS and Darwin hosts.`
			`commonModule = {`
			`nixpkgs.overlays = overlays;`
			`nixpkgs.config.allowUnfreePredicate = pkg: builtins.elem (lib.getName pkg) unfreePackages;`
			`nix.settings.experimental-features = [`
			`"nix-command"`
			`"flakes"`
			`];`
			# Make `nix shell nixpkgs#...` and <nixpkgs> use the pinned nixpkgs.
			`nix.registry.nixpkgs.flake = nixpkgs;`
			`nix.nixPath = [ "nixpkgs=${nixpkgs}" ];`
			`};`

			`# Shared scaffolding for every NixOS host: common user, settings, home-manager.`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`baseModules = [`
refactor: rename config dir to lyrathorpe and host labels 2026-06-02 15:06:10 +00:00			`./lyrathorpe/user.nix`
feat(darwin): add nix-darwin support with a default macOS host 2026-06-02 15:46:19 +00:00			`commonModule`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`home-manager.nixosModules.home-manager`
			`{`
			`home-manager.useGlobalPkgs = true;`
			`home-manager.useUserPackages = true;`
			`}`
			`];`

feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`# mkHost :: { system, username, fullName, modules, homeModules } -> nixosSystem`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`# Builds one machine by appending its host-specific modules to the shared`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`# baseModules. The user identity (username/fullName) is threaded through`
			`# specialArgs so user.nix and the home modules stay host-agnostic, and the`
			`# home-manager profile is keyed by the host's username.`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`mkHost =`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`{`
			`system,`
			`username,`
			`fullName,`
			`modules,`
			`homeModules,`
			`}:`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`nixpkgs.lib.nixosSystem {`
			`inherit system;`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`specialArgs = { inherit inputs username fullName; };`
			`modules =`
			`baseModules`
			`++ modules`
			`++ [`
			`{`
			`home-manager.extraSpecialArgs = { inherit inputs username fullName; };`
			`home-manager.users.${username}.imports = homeModules;`
			`}`
			`];`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`};`

feat(darwin): add nix-darwin support with a default macOS host 2026-06-02 15:46:19 +00:00			`# Shared scaffolding for every Darwin (macOS) host.`
			`darwinBaseModules = [`
			`commonModule`
feat(darwin): wire nix-homebrew and make Homebrew authoritative 2026-06-02 15:56:37 +00:00			`nix-homebrew.darwinModules.nix-homebrew`
feat(darwin): add nix-darwin support with a default macOS host 2026-06-02 15:46:19 +00:00			`home-manager.darwinModules.home-manager`
			`{`
			`home-manager.useGlobalPkgs = true;`
			`home-manager.useUserPackages = true;`
			`}`
			`];`

			`# mkDarwinHost :: { system, username, fullName, modules, homeModules } -> darwinSystem`
			`# Darwin counterpart of mkHost. macOS already owns the login user, so we`
			`# only attach the platform and home-manager; no NixOS user module here.`
			`mkDarwinHost =`
			`{`
			`system,`
			`username,`
			`fullName,`
			`modules,`
			`homeModules,`
			`}:`
			`nix-darwin.lib.darwinSystem {`
			`specialArgs = { inherit inputs username fullName; };`
			`modules =`
			`darwinBaseModules`
			`++ modules`
			`++ [`
			`{`
			`nixpkgs.hostPlatform = system;`
			`# macOS owns the account; point home-manager at its home dir.`
			`users.users.${username}.home = "/Users/${username}";`
			`home-manager.extraSpecialArgs = { inherit inputs username fullName; };`
			`home-manager.users.${username}.imports = homeModules;`
			`}`
			`];`
			`};`

Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`# Host table — declarative registry of every machine. To add a host:`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			# give it a name, its `system`, the owning user, and the module lists.
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`# mapAttrs below turns each entry into a nixosConfiguration of the same name.`
			`hosts = {`
refactor: rename config dir to lyrathorpe and host labels 2026-06-02 15:06:10 +00:00			`lyrathorpe-mbp = {`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`system = "aarch64-linux";`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`username = "lyrathorpe";`
			`fullName = "Lyra Thorpe";`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`modules = [`
			`./system/machine/MBP-Asahi/configuration.nix`
			`nixos-apple-silicon.nixosModules.default`
refactor: rename config dir to lyrathorpe and host labels 2026-06-02 15:06:10 +00:00			`./lyrathorpe/swaywm.nix`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`];`
			`homeModules = [`
refactor: rename config dir to lyrathorpe and host labels 2026-06-02 15:06:10 +00:00			`./lyrathorpe/home`
			`./lyrathorpe/home/desktop.nix`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`];`
			`};`

refactor: rename config dir to lyrathorpe and host labels 2026-06-02 15:06:10 +00:00			`lyrathorpe-x1c = {`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`system = "x86_64-linux";`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`username = "lyrathorpe";`
			`fullName = "Lyra Thorpe";`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`modules = [`
			`./system/machine/X1/configuration.nix`
refactor: rename config dir to lyrathorpe and host labels 2026-06-02 15:06:10 +00:00			`./lyrathorpe/swaywm.nix`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`];`
			`homeModules = [`
refactor: rename config dir to lyrathorpe and host labels 2026-06-02 15:06:10 +00:00			`./lyrathorpe/home`
			`./lyrathorpe/home/desktop.nix`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`];`
			`};`

			`emmathorpe-edaas = {`
			`system = "x86_64-linux";`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`username = "emmathorpe";`
			`fullName = "Emma Thorpe";`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`modules = [`
feat: add initial suport for EDaaS setup at work 2025-06-16 14:44:08 +00:00			`./system/machine/EDaaS/configuration.nix`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`nixos-wsl.nixosModules.default`
refactor: rename config dir to lyrathorpe and host labels 2026-06-02 15:06:10 +00:00			`./lyrathorpe/swaywm.nix`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`];`
			`homeModules = [`
refactor: rename config dir to lyrathorpe and host labels 2026-06-02 15:06:10 +00:00			`./lyrathorpe/home`
feat(user): switch primary identity to lyrathorpe / Lyra Thorpe 2026-06-02 14:58:26 +00:00			`./system/modules/work/default.nix`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`];`
			`};`
			`};`
feat(darwin): add nix-darwin support with a default macOS host 2026-06-02 15:46:19 +00:00
			`# Darwin host table — macOS machines built via mkDarwinHost. The shared`
			`# ./lyrathorpe/home modules (shell, git, editor) are reused; the Linux-only`
			`# desktop/sway modules are intentionally left out.`
			`darwinHosts = {`
			`lyrathorpe-mac = {`
			`system = "aarch64-darwin";`
			`username = "lyrathorpe";`
			`fullName = "Lyra Thorpe";`
			`modules = [`
			`./system/machine/Darwin/configuration.nix`
			`];`
			`homeModules = [`
			`./lyrathorpe/home`
			`];`
			`};`
			`};`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`in`
			`{`
			`systems = [`
			`"x86_64-linux"`
			`"aarch64-linux"`
feat(darwin): add nix-darwin support with a default macOS host 2026-06-02 15:46:19 +00:00			`"aarch64-darwin"`
			`"x86_64-darwin"`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`];`

			# perSystem is evaluated once per entry in `systems`; `pkgs` is the
			`# nixpkgs instance for that system. Outputs here become per-system`
			`# attrsets automatically (e.g. devShells.<system>.default).`
			`perSystem =`
			`{ pkgs, ... }:`
			`{`
			# `nix fmt` formatter for the repo.
			`formatter = pkgs.nixfmt;`

			# `nix develop` shell with the tooling needed to hack on this flake.
			`devShells.default = pkgs.mkShellNoCC {`
			`packages = with pkgs; [`
			`nixfmt`
			`nil`
			`git`
			`];`
			`};`

			`checks.formatting =`
			`pkgs.runCommandLocal "check-formatting" { nativeBuildInputs = [ pkgs.nixfmt ]; }`
			`''`
			`# Generated hardware-configuration.nix files are excluded.`
			`nixfmt --check $(find ${./.} -name '*.nix' -not -name 'hardware-configuration.nix') && touch $out`
			`'';`
			`};`

feat(darwin): add nix-darwin support with a default macOS host 2026-06-02 15:46:19 +00:00			`# Realise the host tables: each entry becomes a {nixos,darwin}Configuration.`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`flake.nixosConfigurations = lib.mapAttrs (_name: mkHost) hosts;`
feat(darwin): add nix-darwin support with a default macOS host 2026-06-02 15:46:19 +00:00			`flake.darwinConfigurations = lib.mapAttrs (_name: mkDarwinHost) darwinHosts;`
Refactor/flake dedup and wsl input (#3 ) 2026-06-02 07:40:25 -07:00			`}`
			`);`
Add Nix files 2025-05-21 19:47:51 +01:00			`}`