mirror/github.com-tboerger-nixos-config
1
0
Fork 0
mirror of https://github.com/tboerger/nixos-config synced 2026-03-01 18:06:32 +01:00
Code Issues
344 Commits 1 Branch 4 Tags 9 MiB
Nix 98.5%
Shell 1.5%
master
Go to file
Thomas Boerger ea4cb5c24b
chore: apply new file formatting
2026-02-26 14:26:50 +01:00
.github feat: enable automerge for lockfile maintenance prs 2026-02-26 14:26:50 +01:00
machines chore: apply new file formatting 2026-02-26 14:26:50 +01:00
overlays chore: apply new file formatting 2026-02-26 14:26:50 +01:00
profiles chore: apply new file formatting 2026-02-26 14:26:50 +01:00
secrets chore: apply new file formatting 2026-02-26 14:26:50 +01:00
shared chore: apply new file formatting 2026-02-26 14:26:50 +01:00
.editorconfig feat: add more files to editorconfig 2026-01-19 11:18:38 +01:00
.envrc
.gitignore
.releaserc ci: improve workflows and release process 2026-01-06 16:26:26 +01:00
CHANGELOG.md chore: release 1.2.0 2026-01-26 08:01:03 +00:00
flake.lock chore(flake): updated lockfile [skip ci] 2026-02-23 08:14:10 +00:00
flake.nix chore: apply new file formatting 2026-02-26 14:26:50 +01:00
LICENSE
README.md feat: renamed forlders to machines and profiles 2024-11-24 16:13:14 +01:00

README.md

nixos-config

Build

Provisioning for my NixOS systems based on Nix.

Prepare

Copy /etc/ssh/ssh_host_ed25519_key.pub into secrets and rekey the secrets via agenix, you could also just execute ssh-keyscan ip_or_fqdn to fetch the current public keys. After pushing the rekeyed secrets execute the commands below.

Asgard

Bootstrap

sudo loadkeys de
sudo nix-shell --packages nixUnstable

nix --experimental-features "nix-command flakes" run github:nix-community/disko -- --mode disko --flake github:tboerger/nixos-config#asgard

mkdir -p /mnt/etc/ssh
cp /etc/ssh/ssh_host_* /mnt/etc/ssh/
nixos-install --no-root-password --root /mnt --flake github:tboerger/nixos-config#asgard

Updates

nix run github:serokell/deploy-rs github:tboerger/nixos-config#asgard

Utgard

Bootstrap

sudo loadkeys de
sudo nix-shell --packages nixUnstable

nix --experimental-features "nix-command flakes" run github:nix-community/disko -- --mode disko --flake github:tboerger/nixos-config#utgard

mkdir -p /mnt/etc/ssh
cp /etc/ssh/ssh_host_* /mnt/etc/ssh/
nixos-install --no-root-password --root /mnt --flake github:tboerger/nixos-config#utgard

Updates

nix run github:serokell/deploy-rs github:tboerger/nixos-config#utgard

Vanaheim

Bootstrap

sudo loadkeys de
sudo nix-shell --packages nixUnstable

nix --experimental-features "nix-command flakes" run github:nix-community/disko -- --mode disko --flake github:tboerger/nixos-config#vanaheim

mkdir -p /mnt/etc/ssh
cp /etc/ssh/ssh_host_* /mnt/etc/ssh/
nixos-install --no-root-password --root /mnt --flake github:tboerger/nixos-config#vanaheim

Updates

nix run github:serokell/deploy-rs github:tboerger/nixos-config#vanaheim

Yggdrasil

Bootstrap

sudo loadkeys de
sudo nix-shell --packages nixUnstable

mount /dev/disk/by-label/NIXOS_SD /mnt

mkdir -p /mnt/etc/ssh
cp /etc/ssh/ssh_host_* /mnt/etc/ssh/
nixos-install --no-root-password --root /mnt --flake github:tboerger/nixos-config#yggdrasil

Updates

nix run github:serokell/deploy-rs github:tboerger/nixos-config#yggdrasil

Security

If you find a security issue please contact thomas@webhippie.de first.

Contributing

Fork -> Patch -> Push -> Pull Request

Authors

License

Apache-2.0

Copyright

Copyright (c) 2021 Thomas Boerger <thomas@webhippie.de>