update for hetzner

configuration.nix

@@ -2,20 +2,26 @@
   config,
   pkgs,
   lib,
+  modulesPath,
   ...
 }:
 let
-  # CHANGE THESE
-  domain = "git.example.com";
-  acmeEmail = "you@example.com";
+  domain = "garp.kyrus.dev";
+  email = "antoni.romanski@protonmail.com";
   sshKeys = [
-    "ssh-ed25519 AAAA...replace-with-your-public-key... user@host"
+    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMPqKKWflJRNTexs2VaMY3VgF7tPnR7MmxF4yQ6+U9VM hetzner"
   ];
 in
 {
   # ─── Boot ──────────────────────────────────────────────────────────
-  boot.loader.systemd-boot.enable = true;
-  boot.loader.efi.canTouchEfiVariables = true;
+  imports = [
+    (modulesPath + "/profiles/qemu-guest.nix")
+  ];
+
+  boot.loader.grub = {
+    efiSupport = true;
+    efiInstallAsRemovable = true;
+  };
 
   # ─── Networking ────────────────────────────────────────────────────
   networking.hostName = "garp";
@@ -45,7 +51,6 @@ in
   };
   console.keyMap = "de";
 
-  # SSH (needed for nixos-anywhere and later rebuilds)
   services.openssh = {
     enable = true;
     settings = {
@@ -80,7 +85,7 @@ in
 
   services.caddy = {
     enable = true;
-    email = acmeEmail;
+    email = email;
     virtualHosts.${domain}.extraConfig = ''
       reverse_proxy 127.0.0.1:3000
     '';
@@ -92,6 +97,7 @@ in
     btop
     tmux
     curl
+    config.services.forgejo.package
   ];
 
   # VM-only overrides (applied by `nixos-rebuild build-vm`)