Skip to content

aos/nix-config

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

98 Commits
home
home
 
 
hosts
hosts
 
 
modules
modules
 
 
sops
sops
 
 
terraform
terraform
 
 
.gitignore
.gitignore
 
 
.sops.yaml
.sops.yaml
 
 
README.md
README.md
 
 
flake.lock
flake.lock
 
 
flake.nix
flake.nix
 
 
install.sh
install.sh
 
 
setup.md
setup.md
 
 
shell.nix
shell.nix
 
 

Repository files navigation

nix configs

Managing my systems and dotfiles using Nix.

Installation

  1. Set up Yubikey for GPG + SSH
export SSH_AUTH_SOCK="$(gpgconf --list-dirs agent-ssh-socket)"
  1. Clone repo
  2. Set up home-manager
nix run home-manager/master -- init
home-manager switch --flake .#aos
  1. nvim (install plugins)
nvim +PlugInstall +PlugClean! +qall

Run

home-manager switch --flakes .#aos@tower

Yubikey

  1. Import the public key: gpg --import gpg-public-key-$KEYID.asc
  2. Import trust settings: gpg --import-ownertrust < gpg-owner-trust.txt
  3. Insert yubikey into USB
  4. Import: gpg --card-status

Secrets

nix develop
sops sops/general/secrets.enc.yaml

If you want to edit with the SSH host key, you must generate a temporary age secret key

SOPS_AGE_KEY=$(ssh-to-age -private-key -i ~/.ssh/id_tower) sops sops/general/secrets.enc.yaml

TUI view

nix develop
nix-inspect -p .

Deploy

nixos-rebuild --flake .#pylon --target-host <host> switch

Generating an ISO

nix build ./hosts/minimal-iso#iso

About

dotfiles + systems using nix

Resources

Readme
Activity

Stars

3 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages