Dockerfile

FROM ubuntu:24.04

SHELL ["/bin/bash", "-euo", "pipefail", "-c"]
ENV DEBIAN_FRONTEND=noninteractive

# Minimal packages for installing Nix
RUN apt-get update \
 && apt-get install -y --no-install-recommends curl xz-utils sudo ca-certificates

# Ensure ubuntu user has passwordless sudo
RUN echo "ubuntu ALL=(ALL) NOPASSWD:ALL" >/etc/sudoers.d/90-ubuntu-nopasswd \
 && chmod 0440 /etc/sudoers.d/90-ubuntu-nopasswd

# Ubutu is the user with id=1000
USER ubuntu
WORKDIR /home/ubuntu
ENV USER=ubuntu
ENV NIX_BUILD_SHELL=/bin/bash

# Install Nix
RUN sh <(curl --proto '=https' --tlsv1.2 -L https://nixos.org/nix/install) --no-daemon --yes

# Enable flakes
RUN mkdir -p /home/ubuntu/.config/nix \
     && printf '%s\n' \
      'experimental-features = nix-command flakes' \
      'accept-flake-config = true' \
     >> /home/ubuntu/.config/nix/nix.conf

# Install packages
RUN /home/ubuntu/.nix-profile/bin/nix profile install \
      nixpkgs#less \
      nixpkgs#vim \
      nixpkgs#nano \
      nixpkgs#gdb \
      nixpkgs#starship \
      nixpkgs#direnv \
      nixpkgs#nix-direnv \
      nixpkgs#git \
      nixpkgs#ripgrep \
      nixpkgs#fd \
      nixpkgs#bat \
      nixpkgs#file \
      nixpkgs#tmux \
      nixpkgs#tealdeer \
      nixpkgs#tree \
      nixpkgs#delta \
      nixpkgs#rsync \
      nixpkgs#fzf

# Make Nix binaries available
RUN printf 'if [ -e /home/ubuntu/.nix-profile/etc/profile.d/nix.sh ]; then . /home/ubuntu/.nix-profile/etc/profile.d/nix.sh; fi # added by Nix installer\n' \
    >> /home/ubuntu/.bashrc

# direnv + nix-direnv setup
RUN mkdir -p /home/ubuntu/.config/direnv \
 && printf '%s\n' 'source "$HOME/.nix-profile/share/nix-direnv/direnvrc"' \
   > /home/ubuntu/.config/direnv/direnvrc

# Shell setup
RUN printf '%s\n' \
  'if command -v direnv >/dev/null 2>&1; then' \
  '  eval "$(direnv hook bash)"' \
  'fi' \
  'if command -v starship >/dev/null 2>&1; then' \
  '  eval "$(starship init bash)"' \
  'fi' \
  'alias ll="ls -alF"' \
  'alias la="ls -A"' \
  'alias l="ls -CF"' \
  >> /home/ubuntu/.bashrc