.tangled/assets/anything-but-windows.gif

reviewed

This is a binary file and will not be displayed.

.tangled/assets/i-love-reproducing-nix-btw.gif

reviewed

This is a binary file and will not be displayed.

.tangled/assets/powered-by-nixos.gif

reviewed

This is a binary file and will not be displayed.

+4 -56

README.md

reviewed

··· 4 4 <h1 align="center">Puzzlevision<br></h1> 5 5 <div align="center">Non-stop entertainment! The wackiest NixOS configuration to-date.</div> 6 6 <br> 7 7 - <div align="center"> 8 8 - <img src=".tangled/assets/powered-by-nixos.gif" width="88px" height="31px"> 9 9 - <img src=".tangled/assets/i-love-reproducing-nix-btw.gif" width="88px" height="31px"> 10 10 - <img src=".tangled/assets/anything-but-windows.gif" width="88px" height="31px"> 11 11 - </div> 12 12 - <br> 13 7 14 14 - ## 💡 Welcome to the 3rd iteration of this flake (new version again, yay :3) 15 15 - Any and all changes on this branch are officially part of the 3rd iteration of these NixOS dotfiles. 16 16 - 17 17 - NOTHING here is stable or in any way ready for production use, please keep that in mind, if you ever find yourself looking through the structure/code. 8 8 + > [!CAUTION] 9 9 + > Any and all changes on this branch are officially part of the 3rd iteration of these NixOS dotfiles. 10 10 + > NOTHING here is stable or in any way ready for production use, please keep that in mind, if you ever find yourself looking through the structure/code. 18 11 19 12 ## 🚀 Deployment 20 13 To deploy a system run the following command in your terminal of choice. ··· 30 23 sudo nixos-rebuild build-vm --flake .#hostname --accept-flake-config 31 24 ``` 32 25 33 33 - ## 🔑 Secrets Management 34 34 - Secrets are managed by the [sops-nix](https://github.com/Mic92/sops-nix) nixos/home-manager modules respectively. 35 35 - 36 36 - - General secrets are stored within the `secrets` directory. 37 37 - - System specific secrets are stored within their respective `systems/<system_type>/<system_name>/secrets` directory. 38 38 - - User secrets are stored within their respective `homes/<system_type>/<user_name>/secrets` directory. 39 39 - 40 40 - The following command may be used to convert the SSH host key of a new machine to an age key: 41 41 - 42 42 - ```sh 43 43 - nix-shell -p ssh-to-age --run 'ssh-keyscan example.com | ssh-to-age' 44 44 - ``` 45 45 - 46 46 - Additionally, the following command may be used to create a new sops secret file: 47 47 - 48 48 - ```sh 49 49 - nix-shell -p sops --run "sops secrets/example.yaml" 50 50 - ``` 51 51 - 52 52 - You may also encrypt arbitrary binary formats, like .cfg, using the following command: 53 53 - 54 54 - > [!IMPORTANT] 55 55 - > The original file location also HAS to match one of the sops creation rules, not just the output. 56 56 - > Yes, I know this is stupid, and yes, I've wasted way too much time dealing with this :3 57 57 - 58 58 - ```sh 59 59 - nix-shell -p sops --run "sops -e original_file.cfg > secrets/encrypted_file.cfg" 60 60 - ``` 61 61 - 62 62 - Finally, when adding new systems, make sure to update any required secret files with the following command: 63 63 - 64 64 - ```sh 65 65 - nix-shell -p sops --run "sops updatekeys secrets/example.yaml" 66 66 - ``` 67 67 - 68 26 ## 👷 CI/CD coverage 69 27 There will be CI/CD coverage based on the Spindle-Pipeline-System™, when I find the time. 70 28 71 29 ## 🏗️ Structure 72 72 - This flake follows an opinionated directory structure, described below. 73 73 - 74 74 - ``` 75 75 - flake.nix --> The flake. 76 76 - /systems --> NixOS configurations for various types of systems, using easy-hosts. 77 77 - /modules --> Modules that are mapped to their corresponding easy-hosts class (and home modules). 78 78 - /nixos --> (example) Modules specific to the nixos class configured in easy-hosts. 79 79 - /homes --> Directory for home-manager configurations, not specific to the system type. 80 80 - /lib --> A place for custom lib attributes exposed on the flake namespace (lib.puzzlevision.mkOpt). 81 81 - (more...) --> Additional directories have been considered (e.g. shells), but as of right now, they serve no use to me. 82 82 - ``` 30 30 + The folder structure of this flake will be documented here, once finalised. 83 31 84 32 ## 🎨 Credits 85 33 Parts of this flake were inspired by the likes of: