39 lines
1.2 KiB
Org Mode
39 lines
1.2 KiB
Org Mode
#+title: My dotfiles
|
|
|
|
* Quick start for home-manger only (no need to pull this repo)
|
|
- Install nix using the https://github.com/DeterminateSystems/nix-installer
|
|
- Then run
|
|
#+begin_src shell
|
|
nix run nixpkgs#home-manager -- switch --flake git+https://gitlab.julian-mutter.de/julian/dotfiles.git#julian@quickstart
|
|
#+end_src
|
|
- Done
|
|
|
|
* Machine selection
|
|
=home-manager= automatically searches for =user= or =user@hostname= config in the flake, so specify one of those or you will have to manually specify them:
|
|
=home-manager switch --flake .#user@hostname=
|
|
|
|
* Manual symlinks
|
|
[[file:laptop-nix.conf]] was manually symlinked to file:/etc/nix/nix.conf
|
|
and [[file:flake.nix]] was symlinked to file:~/.config/home-manager/flake.nix
|
|
|
|
For deployment!!
|
|
|
|
* Secrets management with sops
|
|
Full documentation here: https://github.com/Mic92/sops-nix
|
|
|
|
** Edit secrets
|
|
#+begin_src sh
|
|
sops edit secrets/secrets.yaml
|
|
#+end_src
|
|
|
|
** Authorize new device
|
|
- Generate public key from ssh -> Private age key generation not needed
|
|
#+begin_src sh
|
|
ssh-to-age < /etc/ssh/ssh_host_ed25519_key.pub
|
|
#+end_src
|
|
- Add age public key to file:.sops.yaml
|
|
- Update keys
|
|
#+begin_src sh
|
|
sops updatekeys secrets/*
|
|
#+end_src
|