{ config, pkgs, ... }:

{
  fileSystems."/" =
    { device = "/dev/disk/by-partlabel/primary";
      fsType = "btrfs";
    };
  fileSystems."/boot" =
    { device = "/dev/disk/by-partlabel/ESP";
      fsType = "vfat";
    };

  # hardware
  hardware.enableRedistributableFirmware = true;
  networking.networkmanager.enable = true;

  # Bootloader
  boot.loader.systemd-boot.enable = true;
  boot.loader.efi.canTouchEfiVariables = true;

  # Kernel
  boot.kernelPackages = pkgs.linuxPackages_latest;

  # Nix
  system.stateVersion = "23.05";
  nix.settings.experimental-features = [ "nix-command" "flakes" ];
  nixpkgs.config.allowUnfree = true;

  # Location & internationalisation
  time.timeZone = "America/Los_Angeles";
  i18n.defaultLocale = "en_US.UTF-8";
  i18n.extraLocaleSettings = {
    LC_ADDRESS = "en_US.UTF-8";
    LC_IDENTIFICATION = "en_US.UTF-8";
    LC_MEASUREMENT = "en_US.UTF-8";
    LC_MONETARY = "en_US.UTF-8";
    LC_NAME = "en_US.UTF-8";
    LC_NUMERIC = "en_US.UTF-8";
    LC_PAPER = "en_US.UTF-8";
    LC_TELEPHONE = "en_US.UTF-8";
    LC_TIME = "en_US.UTF-8";
  };

  # Services
  services.printing.enable = true;
  sound.enable = true;
  hardware.pulseaudio.enable = false;
  security.rtkit.enable = true;
  services.pipewire = {
    enable = true;
    alsa.enable = true;
    alsa.support32Bit = true;
    pulse.enable = true;
  };
  services.openssh.enable = true;
  programs.java.enable = true; 
  security.polkit.enable = true;
  
  # System packages
  environment.systemPackages = with pkgs; [
    git
    curl
    file
    gdb
    unar
    lsof
    pciutils
    htop
    sysstat
    nmap
    powertop
    gnupg
    p7zip
    rsync
    bumblebee
    glxinfo
    libgdiplus
    zerotierone
  ];

  services.xserver.excludePackages = [ pkgs.xterm ];
  documentation.nixos.enable = false; 

  # GNUPG Stuff 
  services.pcscd.enable = true;
  programs.gnupg.agent = {
    enable = true;
    pinentryFlavor = "gnome3";
    enableSSHSupport = true;
  };
}