Find a file

Leyla Becker f8300aa033 added note to task		2024-09-19 09:25:10 -05:00
enviroments	moved defiant server configuration to server folder	2024-09-18 18:45:33 -05:00
hosts	added more options to leyla home mount	2024-09-19 09:24:56 -05:00
overlays	disabled overlay for jetbrains idea	2024-09-18 09:40:41 -05:00
pkgs	removed un needed comments	2024-09-03 00:44:44 -05:00
secrets	removed remote user	2024-09-02 21:20:30 -05:00
templates	ran statix linter	2024-09-17 16:49:59 -05:00
users	added twilight key to authorized keys	2024-09-18 13:26:18 -05:00
util	ran statix linter	2024-09-17 16:49:59 -05:00
.gitignore	added gitignore	2024-09-18 01:12:36 -05:00
.sops.yaml	regenerated age keys to use leylas credentials	2024-04-02 20:33:03 -05:00
flake.lock	managed vs code extensions though nix	2024-09-18 01:12:06 -05:00
flake.nix	managed vs code extensions though nix	2024-09-18 01:12:06 -05:00
install.sh	fixed sops age keyFile getting sent to instal target	2024-09-15 19:49:30 -05:00
README.md	added note to task	2024-09-19 09:25:10 -05:00
rebuild.sh	added user option to rebuild.sh	2024-09-17 18:25:10 -05:00

Hosts

Host Map

Hostname	Device Description	Primary User	Role
`twilight`	Desktop Computer	Leyla	Desktop
`horizon`	13 inch Framework Laptop	Leyla	Laptop
`defiant`	NAS Server	Leyla	Service
`emergent`	Desktop Computer	Eve	Laptop
`threshold`	Laptop	Eve	Desktop

sudo nixos-rebuild switch --flake .#hostname

./rebuild.sh

keys for decrypting password secrets for each users located at /var/lib/sops-nix/key.txt

updating passwords: sops secrets/secrets.yaml

./install.sh --target 192.168.1.130 --flake hostname

how the current config was set up https://www.youtube.com/watch?v=G5f6GC7SnhU

something about ssh keys for remotes

Look into this for fixing nixos-anywhere https://github.com/lucidph3nx/nixos-config/tree/main
Look into this for rotating sops keys https://technotim.live/posts/rotate-sops-encryption-keys/
Look into this for openssh known configurations https://search.nixos.org/options?channel=unstable&from=0&size=15&sort=alpha_asc&type=packages&query=services.openssh
Look into this for flake templates https://nix.dev/manual/nix/2.22/command-ref/new-cli/nix3-flake-init
Look into this for headscale https://carlosvaz.com/posts/setting-up-headscale-on-nixos/

nix flake update

allowUnfree should be enabled user side not host side (this isn't enabled at all right now for some reason???)
Move configs for pipe mouse, open rgb, and via keyboard to hardware config and install users side from those configs
have nfs binds and exports defined by same code
move services from defiant into own flake
made base domain in nas services configurable
vscode extensions should be in own flake (make sure to add the nixpkgs.overlays in it too)

GNOME default monitors per hardware configuration?
offline access for nfs mounts (overlay with rsync might be a good option here? https://www.spinics.net/lists/linux-unionfs/msg07105.html note about nfs4 and overlay fs)
Flake templates
Docker parity with existing NAS on defiant
NFS on defiant
firefox declarative???
figure out steam vr things?
Open GL?
util functions
openssh known hosts
limit boot configurations to 2 on defiant
rotate sops encryption keys periodically (and somehow sync between devices?)
zfs email after scrubbing
headscale server
mastodon server
tail scale clients
wake on LAN