peritia/Nyx-Modules
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat: add swtpm

Browse source
This commit is contained in:
Peritia 2025-10-02 15:43:28 +02:00
parent f1b88ffb81
commit 0ca53c0a9b
2 changed files with 61 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
Modules/System/Application/cli/vm.nix
View file

@ -50,6 +50,7 @@ in {
enable = true;
qemu.runAsRoot = true;
};
virtualisation.libvirtd.qemu.swtpm.enable = true;
users.groups.libvirtd.members = [cfg.username];
users.groups.kvm.members = [cfg.username];

60
Modules/System/Service/xrdp.nix Normal file
View file

@ -0,0 +1,60 @@
# nyx-module/system/service/xrdp.nix
#
# XRDP (System Module)
#
# Provides:
# - XRDP remote desktop service
# - Desktop environment selection for RDP sessions
# - Optional automatic firewall rule opening
#
# Options:
# - enable -> Enable XRDP system module
# - defaultWindowManager -> Select Plasma / XFCE / GNOME for remote sessions
# - port -> TCP port for XRDP (default: 3389)
# - openFirewall -> Open firewall for XRDP port (default: true)
#
{ lib, config, pkgs, ... }:
with lib;
let
cfg = config.nyx-module.system.service.xrdp;
in
{
options.nyx-module.system.service.xrdp = {
enable = mkEnableOption "XRDP remote desktop service";
defaultWindowManager = mkOption {
type = types.enum [ "plasma" "xfce" "gnome" ];
example = "xfce";
description = ''
Desktop environment to start for XRDP sessions.
'';
};
port = mkOption {
type = types.port;
default = 3389;
description = "TCP port for XRDP to listen on.";
};
openFirewall = mkOption {
type = types.bool;
default = true;
description = ''
If true, open the system firewall for the XRDP TCP port.
'';
};
};
config = mkIf cfg.enable {
services.xrdp = {
enable = true;
defaultWindowManager = cfg.defaultWindowManager;
port = cfg.port;
};
networking.firewall.allowedTCPPorts = mkIf cfg.openFirewall [ cfg.port ];
};
}