{ modulesPath, nixosModules, agenix, pkgs, config, ... }: {
  imports = [
    "${modulesPath}/virtualisation/amazon-image.nix"
    nixosModules.nano
    nixosModules.nettika
    nixosModules.promptmoji
    agenix.nixosModules.default
  ];

  nixpkgs.config.allowUnfree = true;

  nix.settings = {
    experimental-features = [ "nix-command" "flakes" ];
    trusted-users = [ "@wheel" ];
  };

  security.sudo.wheelNeedsPassword = false;

  users.defaultUserShell = pkgs.fish;

  networking = {
    hostName = "quasar";
    networkmanager.enable = true;
    firewall.allowedTCPPorts = [ 80 443 ];
  };

  environment.systemPackages = [ pkgs.htop ];

  age.secrets = {
    matrix-synapse-secrets = {
      file = ./secrets/matrix-synapse-secrets.yaml;
      mode = "400";
      owner = "matrix-synapse";
    };
  };

  services.postgresql.enable = true;

  services.caddy = {
    enable = true;
    virtualHosts = {
      "quasar.leaf.ninja".extraConfig = ''
        respond "quasar is online"
        header Strict-Transport-Security: "max-age=63072000; includeSubDomains"
      '';
      "consortium.chat".extraConfig = ''
        respond /.well-known/matrix/server <<JSON
          {
            "m.server": "matrix.consortium.chat:443"
          }
          JSON 200
        respond /.well-known/matrix/client <<JSON
          {
            "m.homeserver": {
              "base_url": "https://matrix.consortium.chat"
            }
          }
          JSON 200
        reverse_proxy localhost:8008
        header Strict-Transport-Security "max-age=63072000; includeSubDomains"
      '';
      "matrix.consortium.chat".extraConfig = ''
        reverse_proxy /_matrix/* localhost:8008
        reverse_proxy /_synapse/client/* localhost:8008
      '';
      "admin.consortium.chat".extraConfig = ''
        root * ${pkgs.synapse-admin}
        file_server
      '';
    };
  };

  services.matrix-synapse = {
    enable = true;
    settings = {
      server_name = "consortium.chat";
      database_type = "psycopg2";
      database_args.database = "matrix-synapse";
    };
    extraConfigFiles = [ config.age.secrets.matrix-synapse-secrets.path ];
  };

  programs.fish.enable = true;

  promptSymbol = "🌟";

  documentation.man.generateCaches = false;

  time.timeZone = "America/Los_Angeles";

  system.stateVersion = "24.05";
}