Skip to content

darioghilardi/dotfiles

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

220 Commits
.vscode
.vscode
 
 
docs
docs
 
 
homes
homes
 
 
lib
lib
 
 
modules
modules
 
 
provisioners
provisioners
 
 
secrets
secrets
 
 
shells/default
shells/default
 
 
systems
systems
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
flake.lock
flake.lock
 
 
flake.nix
flake.nix
 
 

Repository files navigation

Dotfiles

Nix based configuration for my machines.

Installation

  1. Install Nix using the Nix Installer.
  2. Clone this repository into ~/dotfiles (on MacOS install the command line tools when prompted, as git is not installed on a fresh MacOS installation).
  3. Run nix build for the machine to provision.
  4. Run darwin-rebuild switch --flake .
  5. After the first run just run the aliased commands to switch the configuration.

Secrets

Secrets are encrypted using agenix.

To create a new secret, add first an entry to secrets/secrets.nix, declaring which public key should be used to encrypt the secret. Then run:

RULES=secrets/secrets.nix agenix -e NEW_SECRET.age && mv NEW_SECRET.age secrets/

An editor will open, write the secrets content then save and quit.

Declare the secret in the configuration using:

age.secrets = {
  secret = {file = PATH_TO_SECRETS/SECRET.age;};
};

Use the secret with:

config.age.secrets.SECRET.path;

Hosts

The provisioners/ folder contains provision scripts for some hosts using Nixos.
Those scripts are intended to be run once and are able to partition and then install a minimal system with remote root ssh access. Further generations of those systems are deployed with deploy-rs and the flake in this project.

Credits

About

Dotfiles based on Nix.

Resources

Readme
Activity

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages