Mirror/neoromantique-dotfiles
1
0
Fork 0
mirror of https://github.com/neoromantique/dotfiles.git synced 2026-03-13 21:53:20 +03:00
Code Issues Packages Projects Releases Wiki Activity

sync

Browse Source
This commit is contained in:
David Aizenberg
2025-12-09 13:23:23 +01:00
parent 66b9a60139
commit b309851423
14 changed files with 73 additions and 34 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
.chezmoi.toml.tmpl
View File

@@ -29,11 +29,18 @@
{{- $secretsPath = "~/secrets" -}} {{- $secretsPath = "~/secrets" -}}
{{- end -}} {{- end -}}
{{- /* Prompt for workspace PIN */ -}}
{{- $workspacePin := promptStringOnce . "workspacePin" "Workspace PIN (for protected workspaces) [1234]" -}}
{{- if eq $workspacePin "" -}}
{{- $workspacePin = "1234" -}}
{{- end -}}
[data] [data]
deviceProfile = {{ $deviceProfile | quote }} deviceProfile = {{ $deviceProfile | quote }}
hostname = {{ $hostname | quote }} hostname = {{ $hostname | quote }}
distro = {{ $distro | quote }} distro = {{ $distro | quote }}
secretsPath = {{ $secretsPath | quote }} secretsPath = {{ $secretsPath | quote }}
workspacePin = {{ $workspacePin | quote }}
# Device-specific configuration # Device-specific configuration
{{- if eq $deviceProfile "desktop" }} {{- if eq $deviceProfile "desktop" }}

32
home/.chezmoiscripts/run_once_setup-vpn-sudoers.sh.tmpl Normal file
View File

@@ -0,0 +1,32 @@
#!/bin/bash
# Setup sudoers rule for vpn-helper (passwordless VPN switching)
SUDOERS_FILE="/etc/sudoers.d/vpn-helper"
HELPER_PATH="{{ .chezmoi.homeDir }}/.local/bin/vpn-helper"
USER="{{ .chezmoi.username }}"
# Check if rule already exists
if [ -f "$SUDOERS_FILE" ] && grep -q "$HELPER_PATH" "$SUDOERS_FILE" 2>/dev/null; then
echo "Sudoers rule for vpn-helper already exists"
exit 0
fi
echo "Setting up sudoers rule for vpn-helper..."
echo "This will allow running VPN commands without password prompts."
echo ""
# Create the sudoers rule
RULE="$USER ALL=(ALL) NOPASSWD: $HELPER_PATH"
# Use sudo to write the rule
echo "$RULE" | sudo tee "$SUDOERS_FILE" > /dev/null
sudo chmod 440 "$SUDOERS_FILE"
# Validate the sudoers file
if sudo visudo -c -f "$SUDOERS_FILE" > /dev/null 2>&1; then
echo "Sudoers rule installed successfully"
else
echo "Error: Invalid sudoers file, removing..."
sudo rm -f "$SUDOERS_FILE"
exit 1
fi

0
home/private_dot_config/hypr/scripts/executable_scroll-audio-sink.sh → home/dot_local/bin/executable_audio-sink-cycle
View File

0
home/private_dot_config/hypr/scripts/executable_toggle_expo_on_primary.sh → home/dot_local/bin/executable_hypr-expo
View File

0
home/private_dot_config/hypr/scripts/executable_screenshot.sh → home/dot_local/bin/executable_screenshot
View File

0
home/private_dot_config/hypr/scripts/executable_vpn-switcher-helper.sh → home/dot_local/bin/executable_vpn-helper
View File

0
home/private_dot_config/waybar/scripts/executable_vpn-status.sh → home/dot_local/bin/executable_vpn-status
View File

16
home/private_dot_config/hypr/scripts/executable_vpn-switcher.sh.tmpl → home/dot_local/bin/executable_vpn-switcher.tmpl
View File

@@ -6,7 +6,7 @@ import os
# Secrets directory - configurable via chezmoi # Secrets directory - configurable via chezmoi
SECRETS_DIR = os.path.expanduser("{{ .secretsPath }}") SECRETS_DIR = os.path.expanduser("{{ .secretsPath }}")
VPN_DIR = os.path.join(SECRETS_DIR, "vpn") if os.path.isdir(os.path.join(os.path.expanduser("{{ .secretsPath }}"), "vpn")) else os.path.expanduser("~/cfg/vpn") VPN_DIR = os.path.join(SECRETS_DIR, "vpn") if os.path.isdir(os.path.join(os.path.expanduser("{{ .secretsPath }}"), "vpn")) else os.path.expanduser("~/cfg/vpn")
HELPER = os.path.expanduser("~/.config/hypr/scripts/vpn-switcher-helper.sh") HELPER = os.path.expanduser("~/.local/bin/vpn-helper")
WOFI_CMD = ["wofi", "--dmenu", "--width", "450", "--height", "350", "--prompt", "VPN Switcher", "--cache-file", "/dev/null"] WOFI_CMD = ["wofi", "--dmenu", "--width", "450", "--height", "350", "--prompt", "VPN Switcher", "--cache-file", "/dev/null"]
def run(cmd, check=False): def run(cmd, check=False):
@@ -137,18 +137,18 @@ def build_menu():
return "\n".join(lines) return "\n".join(lines)
def pkexec_helper(action, arg): def sudo_helper(action, arg):
"""Run helper script via pkexec.""" """Run helper script via sudo (configured for NOPASSWD)."""
subprocess.run(["pkexec", HELPER, action, arg], capture_output=True) subprocess.run(["sudo", HELPER, action, arg], capture_output=True)
def disconnect_all_wg(): def disconnect_all_wg():
"""Disconnect all WireGuard interfaces.""" """Disconnect all WireGuard interfaces."""
for iface in get_active_wg(): for iface in get_active_wg():
conf_path = os.path.join(VPN_DIR, f"{iface}.conf") conf_path = os.path.join(VPN_DIR, f"{iface}.conf")
if os.path.exists(conf_path): if os.path.exists(conf_path):
pkexec_helper("wg-down", conf_path) sudo_helper("wg-down", conf_path)
else: else:
pkexec_helper("wg-down", iface) sudo_helper("wg-down", iface)
def handle_selection(selection): def handle_selection(selection):
"""Handle the user's menu selection.""" """Handle the user's menu selection."""
@@ -173,7 +173,7 @@ def handle_selection(selection):
if name in active_wg: if name in active_wg:
# Turn off # Turn off
conf_path = os.path.join(VPN_DIR, f"{name}.conf") conf_path = os.path.join(VPN_DIR, f"{name}.conf")
pkexec_helper("wg-down", conf_path) sudo_helper("wg-down", conf_path)
notify(f"WireGuard: {name} disconnected") notify(f"WireGuard: {name} disconnected")
else: else:
# Turn on (disable others first) # Turn on (disable others first)
@@ -181,7 +181,7 @@ def handle_selection(selection):
if is_tailscale_up(): if is_tailscale_up():
run(["tailscale", "set", "--exit-node="]) run(["tailscale", "set", "--exit-node="])
conf_path = os.path.join(VPN_DIR, f"{name}.conf") conf_path = os.path.join(VPN_DIR, f"{name}.conf")
pkexec_helper("wg-up", conf_path) sudo_helper("wg-up", conf_path)
notify(f"WireGuard: {name} connected") notify(f"WireGuard: {name} connected")
return return

2
home/private_dot_config/hypr/scripts/executable_workspace-pin.sh → home/dot_local/bin/executable_workspace-pin.tmpl
View File

@@ -2,7 +2,7 @@
# Configuration # Configuration
WORKSPACE=$1 WORKSPACE=$1
CORRECT_PIN="1234" CORRECT_PIN="{{ .workspacePin }}"
LOG_FILE="$HOME/.workspace_access_log" LOG_FILE="$HOME/.workspace_access_log"
# Fuzzel colors - Nord theme # Fuzzel colors - Nord theme

2
home/private_dot_config/hypr/hypridle.conf.tmpl
View File

@@ -3,7 +3,7 @@
# Idle timeout: {{ .idleTimeout }} seconds # Idle timeout: {{ .idleTimeout }} seconds
general { general {
lock_cmd = pidof hyprlock || hyprlock lock_cmd = hyprctl switchxkblayout all 0; pidof hyprlock || hyprlock
before_sleep_cmd = loginctl lock-session before_sleep_cmd = loginctl lock-session
after_sleep_cmd = hyprctl dispatch dpms on after_sleep_cmd = hyprctl dispatch dpms on
} }

10
home/private_dot_config/hypr/hyprland.conf.tmpl
View File

@@ -181,17 +181,17 @@ bind = SUPER, bracketleft, exec, ~/Scripts/change_wallpaper.sh prev
bind = $mainMod, Q, exec, $terminal bind = $mainMod, Q, exec, $terminal
bind = $mainMod, K, killactive, bind = $mainMod, K, killactive,
bind = $mainMod, M, exit, bind = $mainMod, M, exit,
bind = $mainMod, E, exec, ~/.config/hypr/scripts/toggle_expo_on_primary.sh bind = $mainMod, E, exec, ~/.local/bin/hypr-expo
bind = $mainMod, V, togglefloating, bind = $mainMod, V, togglefloating,
bind = $mainMod, R, exec, $menu bind = $mainMod, R, exec, $menu
bind = $mainMod SHIFT, R, exec, hyprctl reload bind = $mainMod SHIFT, R, exec, hyprctl reload
bind = $mainMod, P, pseudo, bind = $mainMod, P, pseudo,
bind = $mainMod, J, togglesplit, bind = $mainMod, J, togglesplit,
bind = $mainMod, L, exec, pactl set-sink-mute @DEFAULT_SINK@ 1 && hyprlock bind = $mainMod, L, exec, hyprctl switchxkblayout all 0 && pactl set-sink-mute @DEFAULT_SINK@ 1 && hyprlock
bind = $mainMod, t, togglegroup bind = $mainMod, t, togglegroup
# VPN switcher # VPN switcher
bind = , F6, exec, ~/.config/hypr/scripts/vpn-switcher.sh bind = , F6, exec, ~/.local/bin/vpn-switcher
# Move focus with mainMod + arrow keys # Move focus with mainMod + arrow keys
bind = $mainMod, left, movefocus, l bind = $mainMod, left, movefocus, l
@@ -211,7 +211,7 @@ bind = $mainMod, 8, workspace, 8
bind = $mainMod, 9, workspace, 9 bind = $mainMod, 9, workspace, 9
# Special workspaces # Special workspaces
bind = SUPER, F12, exec, ~/.config/hypr/scripts/workspace-pin.sh 1337 bind = SUPER, F12, exec, ~/.local/bin/workspace-pin 1337
bind = , F12, togglespecialworkspace, org bind = , F12, togglespecialworkspace, org
bind = SUPER, A, togglespecialworkspace, org bind = SUPER, A, togglespecialworkspace, org
bind = SUPER SHIFT, F12, movetoworkspace, special:org bind = SUPER SHIFT, F12, movetoworkspace, special:org
@@ -237,7 +237,7 @@ bind = $mainMod SHIFT, 9, movetoworkspacesilent, 9
bind = $mainMod SHIFT, 0, movetoworkspacesilent, 10 bind = $mainMod SHIFT, 0, movetoworkspacesilent, 10
# Screenshot (selection, copies to clipboard) # Screenshot (selection, copies to clipboard)
bind = , Print, exec, ~/.config/hypr/scripts/screenshot.sh bind = , Print, exec, ~/.local/bin/screenshot
# Scroll through existing workspaces # Scroll through existing workspaces
bind = $mainMod, mouse_down, workspace, e+1 bind = $mainMod, mouse_down, workspace, e+1

8
home/private_dot_config/waybar/config.jsonc.tmpl
View File

@@ -62,8 +62,8 @@
"format-muted": "VOL muted", "format-muted": "VOL muted",
"on-click": "pavucontrol -t 3", "on-click": "pavucontrol -t 3",
"on-click-right": "pactl set-sink-mute @DEFAULT_SINK@ toggle", "on-click-right": "pactl set-sink-mute @DEFAULT_SINK@ toggle",
"on-scroll-up": "~/.config/hypr/scripts/scroll-audio-sink.sh up", "on-scroll-up": "~/.local/bin/audio-sink-cycle up",
"on-scroll-down": "~/.config/hypr/scripts/scroll-audio-sink.sh down" "on-scroll-down": "~/.local/bin/audio-sink-cycle down"
}, },
"pulseaudio#mic": { "pulseaudio#mic": {
@@ -116,9 +116,9 @@
"tray": { "spacing": 4 }, "tray": { "spacing": 4 },
"custom/vpn": { "custom/vpn": {
"exec": "~/.config/waybar/scripts/vpn-status.sh", "exec": "~/.local/bin/vpn-status",
"return-type": "json", "return-type": "json",
"interval": 5, "interval": 5,
"on-click": "~/.config/hypr/scripts/vpn-switcher.sh" "on-click": "~/.local/bin/vpn-switcher"
} }
} }

20
legacy/shell/.bashrc
View File

@@ -158,16 +158,16 @@ echo -e "\033]11;#000000\a"
# >>> mamba initialize >>> # >>> mamba initialize >>>
# !! Contents within this block are managed by 'mamba init' !! # !! Contents within this block are managed by 'mamba init' !!
export MAMBA_EXE="/home/neo/.micromamba/bin/micromamba"; export MAMBA_EXE="$HOME/.micromamba/bin/micromamba";
export MAMBA_ROOT_PREFIX="/home/neo/micromamba"; export MAMBA_ROOT_PREFIX="$HOME/micromamba";
__mamba_setup="$('/home/neo/.micromamba/bin/micromamba' shell hook --shell bash --prefix '/home/neo/micromamba' 2> /dev/null)" __mamba_setup="$('$HOME/.micromamba/bin/micromamba' shell hook --shell bash --prefix '$HOME/micromamba' 2> /dev/null)"
if [ $? -eq 0 ]; then if [ $? -eq 0 ]; then
eval "$__mamba_setup" eval "$__mamba_setup"
else else
if [ -f "/home/neo/micromamba/etc/profile.d/micromamba.sh" ]; then if [ -f "$HOME/micromamba/etc/profile.d/micromamba.sh" ]; then
. "/home/neo/micromamba/etc/profile.d/micromamba.sh" . "$HOME/micromamba/etc/profile.d/micromamba.sh"
else else
export PATH="/home/neo/micromamba/bin:$PATH" # extra space after export prevents interference from conda init export PATH="$HOME/micromamba/bin:$PATH" # extra space after export prevents interference from conda init
fi fi
fi fi
unset __mamba_setup unset __mamba_setup
@@ -175,14 +175,14 @@ unset __mamba_setup
# >>> conda initialize >>> # >>> conda initialize >>>
# !! Contents within this block are managed by 'conda init' !! # !! Contents within this block are managed by 'conda init' !!
__conda_setup="$('/home/neo/micromamba/bin/conda' 'shell.bash' 'hook' 2> /dev/null)" __conda_setup="$('$HOME/micromamba/bin/conda' 'shell.bash' 'hook' 2> /dev/null)"
if [ $? -eq 0 ]; then if [ $? -eq 0 ]; then
eval "$__conda_setup" eval "$__conda_setup"
else else
if [ -f "/home/neo/micromamba/etc/profile.d/conda.sh" ]; then if [ -f "$HOME/micromamba/etc/profile.d/conda.sh" ]; then
. "/home/neo/micromamba/etc/profile.d/conda.sh" . "$HOME/micromamba/etc/profile.d/conda.sh"
else else
export PATH="/home/neo/micromamba/bin:$PATH" export PATH="$HOME/micromamba/bin:$PATH"
fi fi
fi fi
unset __conda_setup unset __conda_setup

10
legacy/shell/.zshrc
View File

@@ -35,7 +35,7 @@ alias did="vim +'normal Go' +'r!date' ~/did.txt"
alias genpass="apg -a 1 -M lnc -n 9 -m 26" alias genpass="apg -a 1 -M lnc -n 9 -m 26"
export GOPATH=$HOME/go export GOPATH=$HOME/go
PATH=$GOPATH/bin:/home/neo/mongoClient::$PATH PATH=$GOPATH/bin:$HOME/mongoClient::$PATH
source /etc/profile.d/go.sh source /etc/profile.d/go.sh
source ~/.private.env source ~/.private.env
@@ -159,14 +159,14 @@ eval "$(scw autocomplete script shell=zsh)"
# >>> conda initialize >>> # >>> conda initialize >>>
# !! Contents within this block are managed by 'conda init' !! # !! Contents within this block are managed by 'conda init' !!
__conda_setup="$('/home/neo/micromamba/bin/conda' 'shell.zsh' 'hook' 2> /dev/null)" __conda_setup="$('$HOME/micromamba/bin/conda' 'shell.zsh' 'hook' 2> /dev/null)"
if [ $? -eq 0 ]; then if [ $? -eq 0 ]; then
eval "$__conda_setup" eval "$__conda_setup"
else else
if [ -f "/home/neo/micromamba/etc/profile.d/conda.sh" ]; then if [ -f "$HOME/micromamba/etc/profile.d/conda.sh" ]; then
. "/home/neo/micromamba/etc/profile.d/conda.sh" . "$HOME/micromamba/etc/profile.d/conda.sh"
else else
export PATH="/home/neo/micromamba/bin:$PATH" export PATH="$HOME/micromamba/bin:$PATH"
fi fi
fi fi
unset __conda_setup unset __conda_setup