Find a file

Leyla Becker c38754530f ran linter		2024-11-25 15:01:55 -06:00
.hooks	switched to using dev shells for local development environment	2024-11-11 18:38:44 -06:00
const	switched to using dev shells for local development environment	2024-11-11 18:38:44 -06:00
home-modules	moved local to modules	2024-11-25 00:59:05 -06:00
homes	added nix language server and formatter to vscode	2024-11-25 15:01:00 -06:00
host-modules	added nix language server and formatter to vscode	2024-11-25 15:01:00 -06:00
hosts	moved environment/server into defiant config	2024-11-25 01:15:06 -06:00
modules	cleaned up configuration structure to have common modules folder	2024-11-24 22:29:00 -06:00
util	cleaned up configuration structure to have common modules folder	2024-11-24 22:29:00 -06:00
.envrc	switched to using dev shells for local development environment	2024-11-11 18:38:44 -06:00
.gitconfig	updated hooks folder location	2024-09-21 12:24:54 -05:00
.gitignore	switched to using dev shells for local development environment	2024-11-11 18:38:44 -06:00
.gitmodules	switched submodule files to non flake input	2024-09-24 02:30:54 -05:00
.sops.yaml	updated secrets files	2024-09-22 19:24:59 -05:00
flake.lock	updated flake.lock	2024-11-25 01:35:31 -06:00
flake.nix	removed unneeded code from flake.nix	2024-11-24 23:05:39 -06:00
install.sh	switched to using dev shells for local development environment	2024-11-11 18:38:44 -06:00
README.md	removed completed task from README.md	2024-11-25 01:39:22 -06:00
rebuild.sh	added show-trace option to rebuild	2024-10-03 15:38:03 +02:00
shell.nix	switched to using dev shells for local development environment	2024-11-11 18:38:44 -06:00

README.md

Hosts

Host Map

Hostname	Device Description	Primary User	Role
`twilight`	Desktop Computer	Leyla	Desktop
`horizon`	13 inch Framework Laptop	Leyla	Laptop
`defiant`	NAS Server	Leyla	Service
`emergent`	Desktop Computer	Eve	Desktop
`threshold`	Laptop	Eve	Laptop

Tooling

Rebuilding

./rebuild.sh

Updating

nix flake update

New host setup

./install.sh --target 192.168.1.130 --flake hostname

Updating Secrets

sops -c sops secrets/secrets_file_here.yaml

Inspecting a configuration

nix-inspect -p .

Notes:

Research topics

Look into this for auto rotating sops keys https://technotim.live/posts/rotate-sops-encryption-keys/
Look into this for openssh known configurations https://search.nixos.org/options?channel=unstable&from=0&size=15&sort=alpha_asc&type=packages&query=services.openssh
Look into this for flake templates https://nix.dev/manual/nix/2.22/command-ref/new-cli/nix3-flake-init
Look into this for headscale https://carlosvaz.com/posts/setting-up-headscale-on-nixos/
Look into this for home assistant configuration https://nixos.wiki/wiki/Home_Assistant https://myme.no/posts/2021-11-25-nixos-home-assistant.html
https://nixos-and-flakes.thiscute.world/

Tasks:

Tech Debt

join config for systemd.tmpfiles.rules and service directory bindings
monitor configuration in ~/.config/monitors.xml should be sym linked to /run/gdm/.config/monitors.xml (https://www.reddit.com/r/NixOS/comments/u09cz9/home_manager_create_my_own_symlinks_automatically/)
move applications in defiant/services.nix into their own flakes

New Features

offline access for nfs mounts (overlay with rsync might be a good option here? https://www.spinics.net/lists/linux-unionfs/msg07105.html note about nfs4 and overlay fs)
Flake templates - we need to add these to some kind of local registry??? nix flake show templates - https://nix.dev/manual/nix/2.18/command-ref/new-cli/nix3-flake-init
samba mounts
figure out steam vr things?
Open GL?
openssh known hosts
rotate sops encryption keys periodically (and somehow sync between devices?)
zfs email after scrubbing
mastodon server
tail scale clients
wake on LAN
ISO target that contains authorized keys for nixos-anywhere 4acc43ebc7/hosts/bootstrap/default.nix