hd/cfg
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
197 commits 1 branch 0 tags 438 KiB
Find a file
Henri Dohmen 31bb2c0147
specify signing key for git
2026-04-03 15:08:22 +02:00
bin git tls cert 2026-01-31 13:09:05 +01:00
devshells maintenance 2025-11-01 11:58:11 +01:00
dotfiles/emacs emacs packages using nix 2025-11-23 13:30:43 +01:00
home major refactor 2025-12-23 23:05:32 +01:00
host update flake inputs and fw kernel 6.19 2026-04-03 01:08:53 +02:00
mod specify signing key for git 2026-04-03 15:08:22 +02:00
packages add supernote-tool 2026-01-08 12:45:46 +01:00
pgp update pgp id 2026-01-30 00:05:25 +01:00
pki git tls cert 2026-01-31 13:09:05 +01:00
secrets roam: add forgejo instance 2026-03-19 11:27:45 +01:00
var qbittorrent wip 2026-03-23 00:04:05 +01:00
.gitignore vm + cleanup 2026-02-06 20:06:09 +01:00
flake.lock update flake inputs and fw kernel 6.19 2026-04-03 01:08:53 +02:00
flake.nix bump syncstorage-rs to unstable, remove nixos-25.05 pkgs 2026-03-23 21:12:12 +01:00
lib.nix improve syncthing config 2025-12-30 14:49:21 +01:00
LICENSE qbittorrent wip 2026-03-23 00:04:05 +01:00
README.md README 2026-03-31 19:47:02 +02:00
secrets.nix roam: add forgejo instance 2026-03-19 11:27:45 +01:00

README.md

Nix Configurations

Repository structure:

  • host/
    One subdirectory per NixOS host, each containing its host-specific configuration.

  • mod/
    NixOS modules.

    • mod/common/: Modules enabled by default on all hosts.
    • mod/desktop/: Modules enabled on desktop hosts (i.e. hosts with hd.desktop.enable = true).

  • home/
    Home Manager modules. Home Manager is integrated into the system configuration via the home option defined in mod/desktop/default.nix.

  • bin/
    Helper scripts for generating parts of the configuration.

  • dotfiles/
    Raw configuration files deployed using Home Manager.

  • devshells/
    Nix development shells.

  • pki/
    Certificates used by the configuration.

  • secrets/
    Age-encrypted secrets managed and deployed via agenix.

  • var/ Shared constants and values used across the configuration.

TODO

  • WireGuard key: Manage /var/secrets/wg.key via agenix.
  • Forgejo: Provision the hd user (with email, admin flag) and SSH keys via a systemd service.
  • Firefox sync server (host/roam/firefox-sync.nix): Containerize.
  • systemd-resolved (mod/desktop/network.nix): Enable DoH.
  • Remote builder (mod/build-machines.nix): declarative SSH jump server.