mirror of
https://github.com/alyraffauf/nixcfg.git
synced 2024-11-22 07:53:55 -05:00
Aly Raffauf
6b1be071f6
* home/sway: use wayland helpers * home/sway: reorg * home/sway: simplify string interpolation * home/sway: fix faulty helpers * home/sway: consolidate secondary modules * home/sway: cleanup * home/wayland: simplify screenshooter * home/sway: better random wallpaper handling * home/sway: move display configuration to hosts * home/sway: move touch config to hosts * hosts/petalburg: add sway bindings * home/wayland/helpers: save screenshots to config.xdg.userDirs.pictures * home/wayland/helpers: enable mako dnd while slurping * nix fmt |
||
|---|---|---|
| .. | ||
| common | ||
| fallarbor | ||
| lavaridge | ||
| mauville | ||
| petalburg | ||
| rustboro | ||
| README.md | ||
Hosts
Provisioning New Devices
- Create
hosts/$HOSTNAME/default.nixand other host-specific nix modules (e.g.disko.nix,hardware.nix, andhome.nix). - Add host to
nixosConfigurationsinflake.nix. - (OPTIONAL) Generate a
cert.pem,key.pem, and device ID for Syncthing withsyncthing -generate=$HOSTNAME. Find the device ID in the generatedconfig.xmland add it tonixosModules/services/syncthing/default.nix, encrypt the cert and key with agenix, and set them as appropriate in the host configuration. - Install NixOS from this flake. Secrets will not be available on first boot without a valid SSH private key.
- Copy the new system's public SSH key (
/etc/ssh/ssh_host_ed25519_key.pub) to the host configuration (secrets/publicKeys/root_$HOSTNAME.pub). - Add the new public key to
secrets/secrets.nixand rekey all secrets withagenix --rekey. - Rebuild the new system from git. Secrets will be automatically decrypted and immediately available in
/run/agenix/for NixOS and$XDG_RUNTIME_DIR/agenix/for users. - (OPTIONAL) Generate a new user SSH key and add it to
nixosModules/users/default.nixin order to enable passwordless logins to other hosts.