My configuration. Probably nothing to look for here.
97c575cf1a
Flake lock file updates:
• Updated input 'home-manager':
'github:nix-community/home-manager/62d536255879be574ebfe9b87c4ac194febf47c5?narHash=sha256-lYnT%2BEYE47f5yY3KS/Kd4pJ6CO9fhCqumkYYkQ3TK20%3D' (2024-12-01)
→ 'github:nix-community/home-manager/c7ffc9727d115e433fd884a62dc164b587ff651d?narHash=sha256-zjO6m5BqxXIyjrnUziAzk4%2BT4VleqjstNudSqWcpsHI%3D' (2024-12-07)
• Updated input 'nixos-hardware':
'github:NixOS/nixos-hardware/cceee0a31d2f01bcc98b2fbd591327c06a4ea4f9?narHash=sha256-fc6jTzIwCIVWTX50FtW6AZpuukuQWSEbPiyg6ZRGWFY%3D' (2024-12-03)
→ 'github:NixOS/nixos-hardware/e563803af3526852b6b1d77107a81908c66a9fcf?narHash=sha256-IS3bxa4N1VMSh3/P6vhEAHQZecQ3oAlKCDvzCQSO5Is%3D' (2024-12-06)
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/b681065d0919f7eb5309a93cea2cfa84dec9aa88?narHash=sha256-eq51hyiaIwtWo19fPEeE0Zr2s83DYMKJoukNLgGGpek%3D' (2024-12-03)
→ 'github:NixOS/nixpkgs/4dc2fc4e62dbf62b84132fe526356fbac7b03541?narHash=sha256-FillH0qdWDt/nlO6ED7h4cmN%2BG9uXwGjwmCnHs0QVYM%3D' (2024-12-05)
• Updated input 'nixpkgs-unstable':
'github:NixOS/nixpkgs/55d15ad12a74eb7d4646254e13638ad0c4128776?narHash=sha256-M1%2BuCoV5igihRfcUKrr1riygbe73/dzNnzPsmaLCmpo%3D' (2024-12-03)
→ 'github:NixOS/nixpkgs/d0797a04b81caeae77bcff10a9dde78bc17f5661?narHash=sha256-kEsTJTUQfQFIJOcLYFt/RvNxIK653ZkTBIs4DG%2BcBns%3D' (2024-12-05)
• Updated input 'nur':
'github:nix-community/NUR/8e6e9b8e2d04f0eea11dfa701f790bee797295b1?narHash=sha256-pzSHveN18sSTTrjE5KU2si3h7XEOawOMLcasgGPjRK8%3D' (2024-12-06)
→ 'github:nix-community/NUR/8b6de353ee0f4cb1d12fae5abf0b3003c51677c0?narHash=sha256-ZHjk/6caiSypWWPeN0PhRhDpgwvB36f2aLZYOtfBlzo%3D' (2024-12-07)
• Added input 'nur/flake-parts':
'github:hercules-ci/flake-parts/205b12d8b7cd4802fbcb8e8ef6a0f1408781a4f9?narHash=sha256-4pDvzqnegAfRkPwO3wmwBhVi/Sye1mzps0zHWYnP88c%3D' (2024-12-04)
• Added input 'nur/flake-parts/nixpkgs-lib':
follows 'nur/nixpkgs'
• Added input 'nur/nixpkgs':
'github:nixos/nixpkgs/d0797a04b81caeae77bcff10a9dde78bc17f5661?narHash=sha256-kEsTJTUQfQFIJOcLYFt/RvNxIK653ZkTBIs4DG%2BcBns%3D' (2024-12-05)
• Added input 'nur/treefmt-nix':
'github:numtide/treefmt-nix/49717b5af6f80172275d47a418c9719a31a78b53?narHash=sha256-JIPcz1PrpXUCbaccEnrcUS8jjEb/1vJbZz5KkobyFdM%3D' (2024-12-03)
• Added input 'nur/treefmt-nix/nixpkgs':
follows 'nur/nixpkgs'
• Updated input 'zig':
'github:mitchellh/zig-overlay/29b73c4ac9461ac6d1bd4c351b2993f1a7a2ea65?narHash=sha256-wbg0O4d4e06Z07VUW7HRDB2TCfu3CxEghFmMYHXSLOs%3D' (2024-12-06)
→ 'github:mitchellh/zig-overlay/40e32dd7e083eab4340acd17de47f13d883f257f?narHash=sha256-o4jsVKtInTA0CqwUUdcAxCYAgNLLNo30mLzz3qVc0eY%3D' (2024-12-06)
|
||
|---|---|---|
| hosts | ||
| modules | ||
| pkgs | ||
| secrets | ||
| shared | ||
| .envrc | ||
| .gitattributes | ||
| .gitignore | ||
| data.nix | ||
| flake.lock | ||
| flake.nix | ||
| LICENSE | ||
| README.md | ||
| secrets.nix | ||
Config
Flakes:
$ deploy --interactive '#fwminex'
$ nix build .#deploy.nodes.fra1-b.profiles.system.path
Other:
$ nix build .#nixosConfigurations.vno3-rp3b.config.system.build.toplevel
$ nix eval .#nixosConfigurations.fwminex.config.services.nsd
Encoding host-only secrets
Encode a secret on host:
rage -e -r "$(cat /etc/ssh/ssh_host_ed25519_key.pub)" -o secret.age /path/to/plaintext
Decode a secret on host (to test things out):
rage -d -i /etc/ssh/ssh_host_ed25519_key secret.age
Borg
BORG_PASSCOMMAND="cat /run/agenix/borgbackup-fwminex" borg --remote-path=borg1 list zh2769@zh2769.rsync.net:fwminex.servers.jakst-home-motiejus-annex2