nevaforget
ac2b210a1f
All checks were successful
Update PKGBUILD version / update-pkgver (push) Successful in 3s
- CI Dockerfile: verify act_runner SHA256, restrict sudoers to safe pacman arguments (S-C1, S-C2) - cliphist: split into cliphist-text + cliphist-image services with Type=simple for proper PID tracking and restart (Q-C3) - batsaver-toggle: validate sysfs input as numeric, check state file write (Q-C2, S-W2) - udev battery rule: add ACTION=="add" filter to avoid firing on every battery event (Q-W3) - cpugov: replace eval with direct expansion, switch waybar module to signal-based updates, send SIGRTMIN+10 after toggle (Q-W1, S-W1, P-W4) - Remove docker group auto-assignment from install scripts (S-I1)
205 lines
6.0 KiB
Bash
Executable File
205 lines
6.0 KiB
Bash
Executable File
#!/bin/bash
|
|
# ABOUTME: Post-install script for Moonarch — installs moonarch-git package and configures the system.
|
|
# ABOUTME: Run as regular user after the archinstall base installation.
|
|
|
|
set -euo pipefail
|
|
|
|
source "$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)/lib.sh"
|
|
|
|
# --- Prerequisites ---
|
|
|
|
check_not_root
|
|
check_pacman
|
|
|
|
# --- Install paru (AUR Helper) ---
|
|
|
|
if ! command -v paru &>/dev/null; then
|
|
log "Installing paru..."
|
|
sudo pacman -S --needed --noconfirm paru
|
|
else
|
|
log "paru already installed."
|
|
fi
|
|
|
|
# --- Set up Moonarch package registry ---
|
|
|
|
log "Setting up Moonarch package registry..."
|
|
if ! grep -q '\[moonarch\]' /etc/pacman.conf 2>/dev/null; then
|
|
sudo tee -a /etc/pacman.conf > /dev/null <<'EOCONF'
|
|
|
|
[moonarch]
|
|
SigLevel = Required DatabaseOptional
|
|
Server = https://gitea.moonarch.de/api/packages/nevaforget/arch/$repo/$arch
|
|
EOCONF
|
|
log " + Moonarch repo added to pacman.conf."
|
|
else
|
|
log " ~ Moonarch repo already in pacman.conf."
|
|
fi
|
|
|
|
log "Importing Moonarch registry signing key..."
|
|
EXPECTED_FINGERPRINT="9B02C596A4652C40CA768E75B90C8B82EA30A131"
|
|
KEY_FILE=$(mktemp)
|
|
trap 'rm -f "$KEY_FILE"' EXIT
|
|
curl -sf https://gitea.moonarch.de/api/packages/nevaforget/arch/repository.key -o "$KEY_FILE"
|
|
if [[ ! -s "$KEY_FILE" ]]; then
|
|
err "Failed to download registry key (empty response)."
|
|
exit 1
|
|
fi
|
|
KEY_FPR=$(gpg --show-keys --with-colons "$KEY_FILE" 2>/dev/null | awk -F: '/^fpr/{print $10; exit}')
|
|
if [[ "$KEY_FPR" != "$EXPECTED_FINGERPRINT" ]]; then
|
|
err "Registry key fingerprint mismatch! Expected $EXPECTED_FINGERPRINT, got ${KEY_FPR:-<empty>}"
|
|
exit 1
|
|
fi
|
|
KEY_ID=$(gpg --show-keys --with-colons "$KEY_FILE" 2>/dev/null | awk -F: '/^pub/{print $5}')
|
|
if [[ -n "$KEY_ID" ]] && ! sudo pacman-key --list-keys "$KEY_ID" &>/dev/null; then
|
|
sudo pacman-key --add "$KEY_FILE"
|
|
sudo pacman-key --lsign-key "$KEY_ID"
|
|
log " + Registry key $KEY_ID imported and locally signed."
|
|
else
|
|
log " ~ Registry key already imported."
|
|
fi
|
|
rm -f "$KEY_FILE"
|
|
trap - EXIT
|
|
|
|
# --- Set up Moonarch custom paru repo (needed for first install bootstrap) ---
|
|
|
|
log "Setting up Moonarch paru repo..."
|
|
PARU_CONF="/etc/paru.conf"
|
|
if ! grep -q 'Mode.*p' "$PARU_CONF" 2>/dev/null; then
|
|
sudo sed -i '/^\[options\]/a Mode = arp' "$PARU_CONF"
|
|
log " + Mode = arp set in paru.conf."
|
|
else
|
|
log " ~ Mode already includes pkgbuilds."
|
|
fi
|
|
if ! grep -q '\[moonarch-pkgbuilds\]' "$PARU_CONF" 2>/dev/null; then
|
|
printf '\n[moonarch-pkgbuilds]\nUrl = https://gitea.moonarch.de/nevaforget/moonarch-pkgbuilds.git\n' \
|
|
| sudo tee -a "$PARU_CONF" > /dev/null
|
|
log " + Moonarch repo added to paru.conf."
|
|
else
|
|
log " ~ Moonarch repo already in paru.conf."
|
|
fi
|
|
|
|
paru -Syu --pkgbuilds --noconfirm
|
|
|
|
# --- Install moonarch-git (subsequent updates handled by moonarch.install hook) ---
|
|
|
|
log "Installing moonarch-git package..."
|
|
paru -S --needed --noconfirm moonarch-git
|
|
|
|
# --- User-level GTK4 symlinks for libadwaita apps ---
|
|
|
|
THEME_NAME="Colloid-Grey-Dark-Catppuccin"
|
|
THEME_GTK4="/usr/share/themes/$THEME_NAME/gtk-4.0"
|
|
|
|
if [[ -d "$THEME_GTK4" ]]; then
|
|
log "Creating user-level GTK4 symlinks for $THEME_NAME..."
|
|
USER_GTK4="$HOME/.config/gtk-4.0"
|
|
mkdir -p "$USER_GTK4"
|
|
ln -sf "$THEME_GTK4/gtk-dark.css" "$USER_GTK4/gtk.css"
|
|
ln -sf "$THEME_GTK4/gtk-dark.css" "$USER_GTK4/gtk-dark.css"
|
|
rm -f "$USER_GTK4/assets"
|
|
ln -s "$THEME_GTK4/assets" "$USER_GTK4/assets"
|
|
else
|
|
err "GTK4 theme not found: $THEME_GTK4 — libadwaita apps will use fallback theme."
|
|
fi
|
|
|
|
# --- gsettings for GTK theme and dark mode ---
|
|
|
|
log "Setting gsettings for GTK theme..."
|
|
gsettings set org.gnome.desktop.interface gtk-theme "$THEME_NAME"
|
|
gsettings set org.gnome.desktop.interface color-scheme 'prefer-dark'
|
|
gsettings set org.gnome.desktop.interface icon-theme 'Colloid-Grey-Catppuccin-Dark'
|
|
gsettings set org.gnome.desktop.interface font-name 'UbuntuSans Nerd Font 11'
|
|
|
|
# --- Zsh user config ---
|
|
|
|
if [[ ! -f "$HOME/.zshrc" ]]; then
|
|
log "No ~/.zshrc found — sourcing Moonarch defaults."
|
|
mkdir -p "$HOME/.zshrc.d"
|
|
echo "# Load Moonarch defaults, add custom overrides in ~/.zshrc.d/ or below" > "$HOME/.zshrc"
|
|
echo "source /etc/zsh/zshrc.moonarch" >> "$HOME/.zshrc"
|
|
fi
|
|
|
|
# --- Enable systemd user services ---
|
|
|
|
log "Enabling systemd user services..."
|
|
USER_SERVICES=(
|
|
"kanshi"
|
|
"stasis"
|
|
"cliphist-text"
|
|
"cliphist-image"
|
|
)
|
|
|
|
for service in "${USER_SERVICES[@]}"; do
|
|
if systemctl --user cat "${service}.service" &>/dev/null; then
|
|
systemctl --user enable "$service"
|
|
log " + $service (user)"
|
|
else
|
|
log " ~ $service (user) not found, skipped."
|
|
fi
|
|
done
|
|
|
|
# --- Enable systemd services ---
|
|
|
|
log "Enabling services..."
|
|
SERVICES=(
|
|
"NetworkManager"
|
|
"bluetooth"
|
|
"docker"
|
|
"greetd"
|
|
"systemd-timesyncd"
|
|
"ufw"
|
|
"auto-cpufreq"
|
|
)
|
|
|
|
for service in "${SERVICES[@]}"; do
|
|
if systemctl list-unit-files "${service}.service" &>/dev/null; then
|
|
sudo systemctl enable "$service"
|
|
log " + $service"
|
|
else
|
|
log " ~ $service not found, skipped."
|
|
fi
|
|
done
|
|
|
|
# --- Set shell to zsh ---
|
|
|
|
if [[ "$SHELL" != */zsh ]]; then
|
|
log "Setting default shell to zsh..."
|
|
chsh -s "$(which zsh)"
|
|
fi
|
|
|
|
# --- Enable firewall ---
|
|
|
|
log "Configuring UFW..."
|
|
sudo ufw default deny incoming
|
|
sudo ufw default allow outgoing
|
|
sudo ufw --force enable
|
|
|
|
# --- Boot parameters: add quiet to systemd-boot entries ---
|
|
|
|
log "Configuring boot parameters..."
|
|
for entry in /boot/loader/entries/*.conf; do
|
|
if [[ -f "$entry" ]] && [[ "$(basename "$entry")" != *fallback* ]] && ! grep -q 'quiet' "$entry"; then
|
|
sudo sed -i '/^options/ s/$/ quiet/' "$entry"
|
|
log " + $(basename "$entry") — quiet added"
|
|
fi
|
|
done
|
|
|
|
# --- Screenshots directory ---
|
|
|
|
mkdir -p "$HOME/Pictures/Screenshots"
|
|
mkdir -p "$HOME/Pictures/Wallpaper"
|
|
|
|
# --- Done ---
|
|
|
|
log ""
|
|
log "============================================"
|
|
log " Moonarch installation complete!"
|
|
log "============================================"
|
|
log ""
|
|
log "Next steps:"
|
|
log " 1. Reboot"
|
|
log " 2. Place wallpapers in ~/Pictures/Wallpaper/"
|
|
log " 3. rustup default stable"
|
|
log " 4. User overrides in ~/.config/ or ~/.zshrc.d/"
|
|
log ""
|