ar
/
nibylandia
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
246 Commits
1 Branch
0 Tags
1.8 MiB
Nix 97.8%
Shell 1.4%
G-code 0.8%
 
 
 
Go to file
Ari Gerus def1f40aa6
CI / x86_64-linux (push) Successful in 1m7s Details
CI / aarch64-linux (push) Successful in 1m53s Details
rpi5: boots now automatically, with correct config 		2024-04-24 17:27:53 +02:00
.forgejo/workflows ci: typo 2024-03-26 08:38:11 +01:00
.github/workflows ci: typo 2024-03-26 08:38:11 +01:00
modules chore: fmt 2024-04-19 17:30:14 +02:00
nixos rpi5: boots now automatically, with correct config 2024-04-24 17:27:53 +02:00
overlays rpi5: boots now automatically, with correct config 2024-04-24 17:27:53 +02:00
pkgs rpi5: boots now automatically, with correct config 2024-04-24 17:27:53 +02:00
secrets ci: re-introduce github actions 2024-03-18 16:07:57 +01:00
.ci.sdImages.sh crimes 2023-10-23 15:39:48 +02:00
.ci.sh crimes 2023-10-23 15:39:48 +02:00
.gitignore scaffolding 2023-09-17 21:36:58 +02:00
README.md readme update 2023-12-01 22:36:58 +01:00
ci-secrets.nix chore: fmt 2024-03-20 11:19:16 +01:00
flake.lock chore: flake lock updates 2024-04-19 13:53:31 +02:00
flake.nix n/akamanto: use rpi4 for now, until we can at least debug rpi5 reliably 2024-04-03 21:01:59 +02:00
meta.nix meta: avoid repetition with targetHost 2024-02-18 13:43:54 +01:00
secrets.nix ci: re-introduce github actions 2024-03-18 16:07:57 +01:00

README.md

My personal NixOS infrastructure configurations

This repository contains configurations for Most™ of my NixOS machines.

All of the host configurations are deployable using deploy-rs, colmena, and plain old nixos-rebuild. See deploy.nodes and colmena crimes in flake outputs for details how. Initial host deploment, sadly, needs to happen manually (for now at least). Secrets are managed using agenix, instead of any deployment-tool-native secret manager.

General usage

Adding new module

$ echo -e "{ config, lib, pkgs, inputs, ... }:\n\n{\n}" > modules/new-module.nix

Adding new host

$ mkdir nixos/newhost
$ echo -e "{ config, lib, pkgs, inputs, ... }:\n\n{\n}" > nixos/newhost/default.nix
$ echo '{"publicKey": "…", "targetHost": "…", "system": "aarch64-linux"}' | jq -rM > nixos/newhost/meta.json

Exploring generated configurations

Colmena has a nice feature here called colmena repl. Go out there and explore nodes and its attributes.

Before you commit

To keep things clean, uniform, and working at least on some basic level, remember to:

$ nix flake check --no-build
$ nix fmt

Small bit of warning: nix fmt, with formatters as configured (deadnix specifically) will remove unused variables and such. Might be annoying when things are work-in-progress.

Deploying new configurations

There are multiple options here. You can use nixos-rebuild either locally:

$ sudo nixos-rebuild switch --flake .#microlith

remotely:

$ nixos-rebuild switch --target-host root@zorigami --build-host root@zorigami --flake .#zorigami

remotely using deploy-rs:

$ deploy .#scylla

or using colmena:

$ colmena apply --on khas

All of these should generally work, though I prefer to use deploy-rs on my router (because of magic rollback) when deploying bigger changes, and colmena in most cases, because it's faster. And if the changes you're about to deploy had a chance to be built by "CI", most stuff shouldn't need to be built locally.

Warnings about colmena and deploy being unknown flake outputs are known, and will stay here at least until schemas get implemented for these.

General notes

Feel free to use this as a basis for your own configuration flakes, but while I keep things here working for me, the general state might not reflect best practices. Use caution, and if you feel like you don't really understand something (and there are some code crimes commited here), don't feel obliged to use it just because it's already here.