mirror/github.com-tboerger-nixos-config
1
0
Fork 0
mirror of https://github.com/tboerger/nixos-config synced 2024-11-26 07:43:45 +01:00
Code Issues
2cb1ad52fb
github.com-tboerger-nixos-c.../README.md
Thomas Boerger da814f3a98
chore: another big restructure
2022-11-10 16:01:39 +01:00

147 lines
3.6 KiB
Markdown
Raw Blame History

# nixos-config
[![Build](https://github.com/tboerger/nixos-config/actions/workflows/build.yml/badge.svg)](https://github.com/tboerger/nixos-config/actions/workflows/build.yml)
Provisioning for my NixOS systems based on [Nix][nix].
## Chnum
### Bootstrap
Copy `/etc/ssh/ssh_host_ed25519_key.pub` into [secrets](./secrets/secrets.nix)
and rekey the secrets via [agenix][agenix]. After pushing the rekeyed secrets
execute these commands:
```console
sudo loadkeys de
sudo nix-shell --packages nixUnstable
bash -c "$(curl -fsSL https://raw.githubusercontent.com/tboerger/nixos-config/master/scripts/chnum-partitions)"
mkdir -p /mnt/etc/ssh
cp /etc/ssh/ssh_host_* /mnt/etc/ssh/
nixos-install --no-root-password --root /mnt --flake github:tboerger/nixos-config#chnum
```
### Updates
If the repository had been cloned you could just execute `make switch`,
otherwise there is still this long option to update the deployment:
```console
nixos-rebuild switch \
--flake github:tboerger/nixos-config#chnum
```
## Asgard
### Bootstrap
Copy `/etc/ssh/ssh_host_ed25519_key.pub` into [secrets](./secrets/secrets.nix)
and rekey the secrets via [agenix][agenix]. After pushing the rekeyed secrets
execute these commands:
```console
sudo loadkeys de
sudo nix-shell --packages nixUnstable
bash -c "$(curl -fsSL https://raw.githubusercontent.com/tboerger/nixos-config/master/scripts/asgard-partitions)"
mkdir -p /mnt/etc/ssh
cp /etc/ssh/ssh_host_* /mnt/etc/ssh/
nixos-install --no-root-password --root /mnt --flake github:tboerger/nixos-config#asgard
```
### Updates
If the repository had been cloned you could just execute `make switch`,
otherwise there is still this long option to update the deployment:
```console
nixos-rebuild switch \
--flake github:tboerger/nixos-config#asgard
```
## Utgard
### Bootstrap
Copy `/etc/ssh/ssh_host_ed25519_key.pub` into [secrets](./secrets/secrets.nix)
and rekey the secrets via [agenix][agenix]. After pushing the rekeyed secrets
execute these commands:
```console
sudo loadkeys de
sudo nix-shell --packages nixUnstable
bash -c "$(curl -fsSL https://raw.githubusercontent.com/tboerger/nixos-config/master/scripts/utgard-partitions)"
mkdir -p /mnt/etc/ssh
cp /etc/ssh/ssh_host_* /mnt/etc/ssh/
nixos-install --no-root-password --root /mnt --flake github:tboerger/nixos-config#utgard
```
### Updates
If the repository had been cloned you could just execute `make switch`,
otherwise there is still this long option to update the deployment:
```console
nixos-rebuild switch \
--flake github:tboerger/nixos-config#utgard
```
## Midgard
### Bootstrap
Copy `/etc/ssh/ssh_host_ed25519_key.pub` into [secrets](./secrets/secrets.nix)
and rekey the secrets via [agenix][agenix]. After pushing the rekeyed secrets
execute these commands:
```console
sudo loadkeys de
sudo nix-shell --packages nixUnstable
mount /dev/disk/by-label/NIXOS_SD /mnt
mkdir -p /mnt/etc/ssh
cp /etc/ssh/ssh_host_* /mnt/etc/ssh/
nixos-install --no-root-password --root /mnt --flake github:tboerger/nixos-config#midgard
```
### Updates
If the repository had been cloned you could just execute `make switch`,
otherwise there is still this long option to update the deployment:
```console
nixos-rebuild switch \
--flake github:tboerger/nixos-config#midgard
```
## Security
If you find a security issue please contact thomas@webhippie.de first.
## Contributing
Fork -> Patch -> Push -> Pull Request
## Authors
- [Thomas Boerger](https://github.com/tboerger)
## License
Apache-2.0
## Copyright
```console
Copyright (c) 2021 Thomas Boerger <thomas@webhippie.de>
```
[nix]: https://nixos.org/manual/nix/stable/
[agenix]: https://github.com/ryantm/agenix
View Git Blame Copy Permalink