nix infra
emily
878c3e0b8f
Flake lock file updates:
• Updated input 'disko':
'github:nix-community/disko/8eb1b315eef89f3bdc5c9814d1b207c6d64f0046?narHash=sha256-yEB5SEHc%2Bo3WJpUPw455OdLy9A%2BgffvCJX8DZ7NCkuo%3D' (2024-05-09)
→ 'github:nix-community/disko/e972a78f4a49cd92075d64b6feeef64d26bf2996?narHash=sha256-DDXZOKK0C5YeZ/GTUj7HiT%2BoqYIt8%2BqTsldaDvhWHFc%3D' (2024-05-13)
• Updated input 'home-manager':
'github:nix-community/home-manager/c6ddd80fb1e5a286b3a5cb32ef94a2e4e346a9d3?narHash=sha256-wDIdf%2BU2o4BJG3AwHD6N88X9zcfurbRwWYwv5HlG7z4%3D' (2024-05-10)
→ 'github:nix-community/home-manager/44677a1c96810a8e8c4ffaeaad10c842402647c1?narHash=sha256-4pRuzsHZOW5W4CsXI9uhKtiJeQSUoe1d2M9mWU98HC4%3D' (2024-05-12)
• Updated input 'kyouma-www':
'git+https://git.bsd.gay/snaki/kyouma-net.git?ref=refs/heads/main&rev=ecbb3bd8bfcf080aa2f724c24c06ce4ef87db997' (2024-05-10)
→ 'git+https://git.bsd.gay/snaki/kyouma-net.git?ref=refs/heads/main&rev=49227bab05e6c23a8d79156bd28c8f9a65879486' (2024-05-13)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/f1010e0469db743d14519a1efd37e23f8513d714?narHash=sha256-doPgfj%2B7FFe9rfzWo1siAV2mVCasW%2BBh8I1cToAXEE4%3D' (2024-05-09)
→ 'github:nixos/nixpkgs/2057814051972fa1453ddfb0d98badbea9b83c06?narHash=sha256-5ZSVkFadZbFP1THataCaSf0JH2cAH3S29hU9rrxTEqk%3D' (2024-05-12)
• Updated input 'nixvim':
'github:nix-community/nixvim/f7f255afe22fcca0c07177c3707fd61fa0c85835?narHash=sha256-oREqXPEtuYbOdBKbsDQzr2V01EzK4kD8MTdwO9ljTnU%3D' (2024-05-07)
→ 'github:nix-community/nixvim/4530a35bad28a0e8b21905b0817a225e6387811c?narHash=sha256-pW8a12PHt/PUphG8Tn0nb%2BmfbTS7JS4YbThGPepCcb0%3D' (2024-05-13)
• Updated input 'sops-nix':
'github:Mic92/sops-nix/0dc50257c00ee3c65fef3a255f6564cfbfe6eb7f?narHash=sha256-ffOZL3eaZz5Y1nQ9muC36wBCWwS1hSRLhUzlA9hV2oI%3D' (2024-05-09)
→ 'github:Mic92/sops-nix/b6cb5de2ce57acb10ecdaaf9bbd62a5ff24fa02e?narHash=sha256-y1uMzXNlrVOWYj1YNcsGYLm4TOC2aJrwoUY1NjQs9fM%3D' (2024-05-12)
• Updated input 'sops-nix/nixpkgs-stable':
'github:NixOS/nixpkgs/b980b91038fc4b09067ef97bbe5ad07eecca1e76?narHash=sha256-tCxeDP4C1pWe2rYY3IIhdA40Ujz32Ufd4tcrHPSKx2M%3D' (2024-05-04)
→ 'github:NixOS/nixpkgs/8e47858badee5594292921c2668c11004c3b0142?narHash=sha256-q0OFeZqKQaik2U8wwGDsELEkgoZMK7gvfF6tTXkpsqE%3D' (2024-05-11)
• Updated input 'stylix':
'github:danth/stylix/197526923a2929b223bab3e36d3aa240f5f84870?narHash=sha256-zIrOcHX5iMc4/Z5TSOzSSdRlE4JzFAIlUGPO6f%2Bck1M%3D' (2024-05-09)
→ 'github:danth/stylix/b5f4ca49df372c3d26ce04b1554fb02a0107cc8d?narHash=sha256-xzUwP85yIYvVSKHY2MutzAt5/ZQwUzlhL5/Gfh7jySc%3D' (2024-05-12)
|
||
|---|---|---|
| config | ||
| lib/shinyflakes | ||
| modules | ||
| pkgs | ||
| secrets/services | ||
| .gitignore | ||
| .sops.yaml | ||
| flake.lock | ||
| flake.nix | ||
| README.md | ||
emilys Nix Infra
First deployment
remote hosts
$ nix run github:nix-community/nixos-anywhere -- --flake ".#<configuration>" root@<target-host>
desktops
$ nix --extra-experimental-features nix-command run github:nix-community/nixos-anywhere -- --flake "git+https://git.bsd.gay/snaki/nixfiles.git#<configuration>" --no-reboot --build-on-target root@127.0.0.1
$ nixos-enter
$ passwd <local-user>
reboot
$ git clone https://git.bsd.gay/snaki/nixfiles.git
$ colmena apply-local --sudo --node <node>
Deploy changes on ...
all hosts
$ colmena apply --on @production
routers only
$ colmena apply --on @router
Structure
nixfiles
├── config # NixOS configuration
│ ├── common # configuration applyed to all hosts (some settings might be influenced by machine-type)
│ │ └── users # user configuration
│ ├── hosts # configuration for specific hosts
│ ├── profiles # configuariotn for specific machine types
│ └── services # common service configuration
├── lib # helper functions
├── modules # NixOS modules
└── pkgs # nixpkgs overlays