ellmau/nixos
1
0
Fork 0
mirror of https://github.com/ellmau/nixos.git synced 2025-12-19 09:29:36 +01:00
Code Issues Projects Releases Wiki Activity
360 Commits 9 Branches 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Stefan Ellmauthaler abb6b00c25
flake.lock: Update 
Flake lock file updates:

• Updated input 'emacs-overlay':
    'github:nix-community/emacs-overlay/2fa6cca26891f696c13fe910bb659ecd69ed3842' (2023-01-02)
  → 'github:nix-community/emacs-overlay/868a2b036b1cc5a599cb8739fb8c6b696f455b39' (2023-01-10)
• Updated input 'nixos-hardware':
    'github:NixOS/nixos-hardware/ca29e25c39b8e117d4d76a81f1e229824a9b3a26' (2023-01-02)
  → 'github:NixOS/nixos-hardware/df029cfefc7494b399966cbb6b4fd692fa294fa3' (2023-01-10)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/6a0d2701705c3cf6f42c15aa92b7885f1f8a477f' (2022-12-30)
  → 'github:NixOS/nixpkgs/8c54d842d9544361aac5f5b212ba04e4089e8efe' (2023-01-08)
• Updated input 'nixpkgs-unstable':
    'github:NixOS/nixpkgs/677ed08a50931e38382dbef01cba08a8f7eac8f6' (2022-12-29)
  → 'github:NixOS/nixpkgs/aa1d74709f5dac623adb4d48fdfb27cc2c92a4d4' (2023-01-09)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/b35586cc5abacd4eba9ead138b53e2a60920f781' (2023-01-01)
  → 'github:Mic92/sops-nix/2253120d2a6147e57bafb5c689e086221df8032f' (2023-01-08)
• Updated input 'sops-nix/nixpkgs-stable':
    'github:NixOS/nixpkgs/feda52be1d59f13b9aa02f064b4f14784b9a06c8' (2022-12-31)
  → 'github:NixOS/nixpkgs/9f11a2df77cb945c115ae2a65f53f38121597d73' (2023-01-07)
2023-01-10 10:14:51 +01:00
common
Swayfy (#5)
2022-08-22 16:39:47 +02:00
lib
Swayfy (#5)
2022-08-22 16:39:47 +02:00
machines
Add slack to nucturne
2022-10-20 16:17:44 +02:00
modules
Update to nixOS 22.11
2022-12-07 12:20:33 +01:00
secrets
Use per-machine secrets for NetworkManager
2022-10-05 17:20:34 +02:00
templates
Swayfy (#5)
2022-08-22 16:39:47 +02:00
users/ellmau
Fix waybar config issue with redundant data on wifi connections
2022-09-07 12:21:37 +02:00
.dir-locals.el
Swayfy (#5)
2022-08-22 16:39:47 +02:00
.gitignore
Swayfy (#5)
2022-08-22 16:39:47 +02:00
.sops.yaml
Add stel-xps and nucturne to the wireguard network
2022-08-02 11:28:11 +02:00
default.nix
Swayfy (#5)
2022-08-22 16:39:47 +02:00
flake.lock
flake.lock: Update
2023-01-10 10:14:51 +01:00
flake.nix
Update to nixOS 22.11
2022-12-07 12:20:33 +01:00
README.md
Add firewall and update readme
2022-07-19 10:50:37 +02:00

README.md

Nix-configuration

Deploy on a new machine

  • setup the filesystem as you see fit
  • check out repository to /mnt/etc/nixos
  • run nixos-generate-config --root /mnt in /mnt/etc/nixos
  • create machines/<machine-name>/default.nix and configure the machine
  • move hardware-configuration.nix to machines/<machine-name>/hardware-configuration.nix
  • stage the machine-folder
  • run
  • nix-install --no-root-passwd --flake .#hostname --option experimental-features "nix-command flakes"

nix-sops

  • generate on your (sshd-enabled) machine a pgp key:
    • nix shell nixpkgs#ssh-to-pgp
    • sudo ssh-to-pgp -i /etc/ssh/ssh_host_rsa_key > /etc/nixos/secrets/keys/hosts/<hostname>.asc
  • add the fingerprint of the new key to the /etc/nixos/.sops.yaml file
  • Rekey the secrets with either
    • a master key
    • or after a git push on another machine with enough permissions to rekey
  • the flakes dev-shell (nix develop) allows to use sops <sops-file> as well as sops-rekey <sops-file> to manage the keys on the system
Description
No description provided
Readme 3.2 MiB
Languages
Nix 79.6%
Emacs Lisp 12.4%
Haskell 4.6%
CSS 3%
Shell 0.4%