harald/nixcfg
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
my nix configs
300 commits 2 branches 0 tags 10 MiB
Nix 96.1%
Shell 3.9%
Find a file
Harald Hoyer 3e1745954f refactor: update host binding and consolidate ACME domains 
- Change OpenWebUI host binding from 0.0.0.0 to 127.0.0.1 for security.
- Consolidate ACME certificates under internal.hoyer.world with extra domain names.
- Update Nginx virtual hosts to use the unified ACME host internal.hoyer.world.
2025-03-15 15:01:28 +01:00
.secrets fix(secrets): update sopsFile path for internetbs 2024-12-06 09:50:56 +01:00
homes feat: enable Syncthing service with tray support 2025-02-26 15:34:11 +01:00
lib nix fmt 2024-11-19 10:31:29 +01:00
modules feat(nixos): add systemctl-tui to default packages 2025-03-03 08:41:37 +01:00
overlays feat(overlays): add open-webui to unstable overlay 2025-01-30 13:56:19 +01:00
packages fix(nixos-hosts): use arithmetic comparison in argument loop 2025-02-26 15:42:15 +01:00
systems refactor: update host binding and consolidate ACME domains 2025-03-15 15:01:28 +01:00
.gitattributes remove required from .gitattributes 2024-11-29 15:45:57 +01:00
.gitignore gitignore result 2024-03-21 15:24:51 +01:00
.sops.yaml A new start 2024-03-21 15:00:36 +01:00
flake.lock chore: update flake inputs to latest versions 2025-02-26 15:35:01 +01:00
flake.nix chore: update flake inputs to latest versions 2025-02-26 15:35:01 +01:00
README.md chore: Update darwin-rebuild command in README 2024-07-19 13:39:45 +02:00

README.md

Install a system via nixos-anywhere

$ nix run github:numtide/nixos-anywhere -- \
  --flake 'git+https://git.hoyer.xyz/harald/nixcfg'.#hostname \
  root@hostname --no-reboot --tty -i $HOME/.ssh/id_ed25519
... enter disk password
$ ssh -t root@hostname systemd-cryptenroll /dev/luksdev --wipe-slot=tpm2 --tpm2-device=auto --tpm2-pcrs=1,15

nixos-rebuild remote git flake

$ nixos-rebuild --use-remote-sudo -L --show-trace --refresh --flake git+https://git.hoyer.xyz/harald/nixcfg boot

on darwin

$ darwin-rebuild -L --show-trace --refresh --flake git+https://git.hoyer.xyz/harald/nixcfg switch

home-manager remote git flake

$ nix --refresh run 'git+https://git.hoyer.xyz/harald/nixcfg' -- \
  switch -b backup --flake 'git+https://git.hoyer.xyz/harald/nixcfg'