From 85119681737741600ae891a39cc8e2e724b08018 Mon Sep 17 00:00:00 2001
From: derped <derped@ophanim.de>
Date: Thu, 26 Dec 2019 01:00:46 +0100
Subject: [PATCH 1/2] Adapt to unstable option name changes.

---
 config/locale.nix          | 2 +-
 machines/Lilim/options.nix | 2 +-
 services/desktop.nix       | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/config/locale.nix b/config/locale.nix
index 2858139..34158ea 100644
--- a/config/locale.nix
+++ b/config/locale.nix
@@ -1,8 +1,8 @@
 { config, pkgs, ... }:
 
 {
+  console.keyMap = "de";
   i18n = {
-    consoleKeyMap = "de";
     defaultLocale = "en_US.UTF-8";
 
     inputMethod = {
diff --git a/machines/Lilim/options.nix b/machines/Lilim/options.nix
index 8c906dc..279c92e 100644
--- a/machines/Lilim/options.nix
+++ b/machines/Lilim/options.nix
@@ -60,7 +60,7 @@ with lib;
       allowedUDPPortRanges = [ { from = 1714; to = 1764; } ];
       allowedTCPPortRanges = [ { from = 1714; to = 1764; } ];
     };
-    desktop.wms = [ "i3" ];
+    desktop.wms = [ "none+i3" "i3" ];
   };
 
   config.system.copySysConf = {
diff --git a/services/desktop.nix b/services/desktop.nix
index 041de5c..6413af7 100644
--- a/services/desktop.nix
+++ b/services/desktop.nix
@@ -40,9 +40,9 @@ in mkIf (elem "desktop" cfg.services) {
     enable = !(elem "sway" cfg.desktop.wms);
     layout = "de";
     videoDrivers = [ "intel" ];
+    displayManager.defaultSession = ifelse (cfg.desktop.wms != []) (elemAt cfg.desktop.wms 0) null;
     windowManager = mkIf (cfg.desktop.wms != []) {
       i3 = mkIf (elem "i3" cfg.desktop.wms) (import ./desktop/i3.nix { inherit pkgs; });
-      default = elemAt cfg.desktop.wms 0;
     };
     libinput = {
       enable = true;

From 6379225731bcbd63cfe818219452a43136789309 Mon Sep 17 00:00:00 2001
From: derped <derped@ophanim.de>
Date: Wed, 11 Mar 2020 01:53:04 +0100
Subject: [PATCH 2/2] LetsEncrypt acme now requires an email and accepting
 their TOS.

---
 fn.nix               |  3 +++
 services/acme.nix    | 17 +++++++++++++++++
 services/default.nix |  1 +
 3 files changed, 21 insertions(+)
 create mode 100644 services/acme.nix

diff --git a/fn.nix b/fn.nix
index 411f7fd..bd0a071 100644
--- a/fn.nix
+++ b/fn.nix
@@ -5,6 +5,9 @@ with lib;
 
 rec {
   ifelse = a: b: c: if a then b else c;
+  fileContentsOr = a: b: (ifelse
+    (pathIsRegularFile a)
+    a b);
   cwd = toString ./.;
   lst = { p ? cwd, t ? "regular", b ? false }: (lists.forEach
     (attrNames
diff --git a/services/acme.nix b/services/acme.nix
new file mode 100644
index 0000000..6fd29f6
--- /dev/null
+++ b/services/acme.nix
@@ -0,0 +1,17 @@
+{ options, config, lib, pkgs, ... }:
+
+with builtins;
+with lib;
+
+let
+  fn = import (../. + (toPath "/fn.nix")) { inherit lib; };
+  cfg = config.machine;
+in mkIf (elem "acme" cfg.services) {
+  security.acme = {
+    # see https://letsencrypt.org/repository/
+    acceptTerms = true;
+    email = fn.fileContentsOr
+      (toPath "${cfg.secretPath}/acme.mailAddr")
+      "${(elemAt cfg.mailAccounts 0).name}@${cfg.domain}";
+  };
+}
diff --git a/services/default.nix b/services/default.nix
index 7dc3c30..cd37302 100644
--- a/services/default.nix
+++ b/services/default.nix
@@ -1,5 +1,6 @@
 {
   imports = [
+    ./acme.nix
     ./cups.nix
     ./docker.nix
     ./fail2ban.nix