minor fixes

TODO.md

@@ -1,5 +1,7 @@
 # TODO
 
+* move nginx config to respective profiles
+* ocis confid and metadata backup (take zfs snapshot and backup it)
 * grafana for all services
 * move some profiles to modules (like vpn.nix)
 * use sops for all occurrences of hashedPassword

machines/NixOS-VPS/default.nix

@@ -10,7 +10,6 @@
     customModules.devices
     customModules.libvirt-guests
     customModules.persist
-    customModules.rustic
     customModules.users
 
     customProfiles.hardened

machines/NixOS-VPS/services/xtls.nix

@@ -6,6 +6,7 @@ let
   nginx-conf = config.sops.secrets."nginx.conf".path;
   marzban-env = config.sops.secrets.marzban.path;
 in {
+  imports = [ inputs.ataraxiasjel-nur.nixosModules.ocis ];
   networking.firewall.allowedTCPPorts = [ 80 443 ];
 
   sops.secrets = let

profiles/workspace/hyprland/default.nix

@@ -277,6 +277,7 @@ in with config.deviceSpecific; with lib; {
           windowrule=opaque,virt-manager
           windowrulev2=opaque,class:^(.*winbox64.exe)$
           windowrulev2=tile,class:^(.*winbox64.exe)$
+          windowrulev2=tile,class:^(starrail.exe)$
 
           windowrule=opaque,.*jellyfin.*
         '' ''

profiles/workspace/misc.nix

@@ -15,6 +15,7 @@ with config.deviceSpecific; {
   services.gvfs.enable = !isServer;
   services.upower.enable = isLaptop;
   xdg.portal.enable = true;
+  xdg.portal.config.common.default = "*";
   xdg.portal.xdgOpenUsePortal = true;
 
   home-manager.users.${config.mainuser} = {