chayleaf/dotfiles
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
my dotfiles
324 commits 2 branches 0 tags 12 MiB
Find a file
Exact
chayleaf 11a0956413
update
2025-08-29 21:40:37 +07:00
home update 2025-08-29 21:40:37 +07:00
pkgs update 2025-08-29 21:40:37 +07:00
system helix improvements and minor changes 2025-08-10 03:33:30 +07:00
.gitignore add Radxa Rock 5A; update inputs 2023-10-08 04:41:50 +07:00
COPYING COPYING: properly write out 0BSD 2023-10-19 19:30:48 +07:00
default.nix nixfmt 2025-06-24 03:37:53 +07:00
extra-builtins.nix update inputs 2025-08-06 09:50:46 +07:00
flake.lock update 2025-08-29 21:40:37 +07:00
flake.nix update inputs 2025-08-06 09:50:46 +07:00
lib.nix nixfmt 2025-06-24 03:37:53 +07:00
nixos-rebuild.py update inputs 2025-01-31 09:20:21 +07:00
overlays.nix update inputs 2024-01-30 19:39:14 +07:00
private.nix.sample server/certspotter: check tbs instead of pubkey 2023-10-26 02:02:48 +07:00
push.sh update inputs 2024-05-03 16:56:29 +07:00
README.md store secrets separate from this flake 2023-05-26 00:46:38 +07:00
update.sh store secrets separate from this flake 2023-05-26 00:46:38 +07:00

README.md

My Nix config

Home-manager config and modules are in ./home, NixOS config and modules are in ./system.

Secrets are fetched using a nix plugin at evaluation time to avoid using --impure. I plan to implement a more robust secrets system later though.

To install, simply run nixos-rebuild switch --flake . --option extra-builtins-file $(pwd)/extra-builtins.nix and home-manager switch --flake . --option extra-builtins-file $(pwd)/extra-builtins.nix, since this repo relies on build-time decryption of secrets using a Nix plugin (to be fair you won't be able to use it since you don't have the secrets, such as initial root password). If you don't have nix-plugins though, you can put the secrets in plaintext to /etc/nixos/private and add --impure flag to bootstrap the config.