nix-config-tn/README.md

# jahanson's homelab

[Repository Documentation](https://truxnell.github.io/nix-config/)

## Thank you Truxnell

Thank you for a lot of the groundwork you laid for the base nixos configuration and a lot of modules!

## Getting started

To Install

```sh
nixos-rebuild switch --flake github:jahanson/nix-config-tn#HOST
```

## Goals

- [ ] Learn nix
- [ ] Services I want to separate from my kubernetes cluster I will use Nix.
- [ ] Approval-based update automation for flakes.
- [ ] Expand usage to other shell environments such as WSL, etc
- [ ] keep it simple, use trusted boring tools

## TODO

- [ ] Forgejo Actions
- [ ] Bring over hosts
  - [ ] git.hsn.dev
  - [ ] Telperion (network services)
  - [ ] Gandalf (NixNAS)
  - [ ] Thinkpad T470

## Checklist

### Adding a new node

- Ensure secrets are grabbed from note and all sops re-encrypte with task sops:re-encrypt
- Add to relevant github action workflows
- Add to .github/settings.yaml for PR checks

## Applying configuration changes on a local machine can be done as follows:

```sh
cd ~/dotfiles
sudo nixos-rebuild switch --flake .
# This will automatically pick the configuration name based on the hostname
```

Applying configuration changes to a remote machine can be done as follows:

```sh
cd ~/dotfiles
nixos-rebuild switch --flake .#nameOfMachine --target-host machineToSshInto --use-remote-sudo
```

## Hacking at nix files

Eval config to see what keys are being set.

```bash
nix eval .#nixosConfigurations.rickenbacker.config.security.sudo.WheelNeedsPassword
nix eval .#nixosConfigurations.rickenbacker.config.mySystem.security.wheelNeedsPassword
```

And browsing whats at a certain level in options - or just use [nix-inspect](https://github.com/bluskript/nix-inspect) TUI 

```bash
nix eval .#nixosConfigurations.rickenbacker.config.home-manager.users.jahanson --apply builtins.attrNames --json
```

Quickly run a flake to see what the next error message is as you hack.

```bash
nixos-rebuild dry-run --flake . --fast --impure
```

## Links & References

- [Misterio77/nix-starter-config](https://github.com/Misterio77/nix-starter-configs)
- [billimek/dotfiles](https://github.com/billimek/dotfiles/)
- [Erase your Darlings](https://grahamc.com/blog/erase-your-darlings/)
- [NixOS Flakes](https://www.tweag.io/blog/2020-07-31-nixos-flakes/)
Overhaul 2024-05-10 10:06:16 -05:00			`# jahanson's homelab`
feat: initial commit 2024-03-13 06:55:17 -05:00
feat: adguard home + powerdns plz (#100) * hack * feat: adguard + powerdns --------- Co-authored-by: Truxnell <9149206+truxnell@users.noreply.github.com> 2024-04-16 07:59:57 -05:00			`[Repository Documentation](https://truxnell.github.io/nix-config/)`

reduce, reuse, refine (#3) * reduce, reuse, refine * more refining and replacing * More refining * Removing unused code such as homepage and traefik * Remove homepage references. 2024-05-19 06:39:08 -05:00			`## Thank you Truxnell`

			`Thank you for a lot of the groundwork you laid for the base nixos configuration and a lot of modules!`

feat: initial commit 2024-03-13 06:55:17 -05:00			`## Getting started`

feat: GNOME tweaks 2024-03-15 04:11:01 -05:00			`To Install`

Overhaul 2024-05-10 10:06:16 -05:00			```sh
			`nixos-rebuild switch --flake github:jahanson/nix-config-tn#HOST`
feat: GNOME tweaks 2024-03-15 04:11:01 -05:00			```
feat: initial commit 2024-03-13 06:55:17 -05:00
			`## Goals`

			`- [ ] Learn nix`
Overhaul 2024-05-10 10:06:16 -05:00			`- [ ] Services I want to separate from my kubernetes cluster I will use Nix.`
			`- [ ] Approval-based update automation for flakes.`
feat: initial commit 2024-03-13 06:55:17 -05:00			`- [ ] Expand usage to other shell environments such as WSL, etc`
hack 2024-04-11 04:42:26 -05:00			`- [ ] keep it simple, use trusted boring tools`
feat: initial commit 2024-03-13 06:55:17 -05:00
			`## TODO`

Overhaul 2024-05-10 10:06:16 -05:00			`- [ ] Forgejo Actions`
feat: initial commit 2024-03-13 06:55:17 -05:00			`- [ ] Bring over hosts`
Overhaul 2024-05-10 10:06:16 -05:00			`- [ ] git.hsn.dev`
			`- [ ] Telperion (network services)`
			`- [ ] Gandalf (NixNAS)`
			`- [ ] Thinkpad T470`
hack 2024-04-11 04:42:26 -05:00
Feat: add probot settings ci & doc comments (#28) * fix: move to json5 * feat: probot repo settings sync --------- Co-authored-by: Truxnell <9149206+truxnell@users.noreply.github.com> 2024-03-27 01:39:44 -05:00			`## Checklist`

Overhaul 2024-05-10 10:06:16 -05:00			`### Adding a new node`
Feat: add probot settings ci & doc comments (#28) * fix: move to json5 * feat: probot repo settings sync --------- Co-authored-by: Truxnell <9149206+truxnell@users.noreply.github.com> 2024-03-27 01:39:44 -05:00
			`- Ensure secrets are grabbed from note and all sops re-encrypte with task sops:re-encrypt`
			`- Add to relevant github action workflows`
chore: cleanups (#40) * feat: add overlays * Auto lint/format * feat: fix dns01 firewall ports * chore: new keys for dns01 * fix: dupe key * chore: fix cfdyn * feat: add dns02 * fix: more server minimalism * fix: might fix deploy-rs build issues. * chore: fix dns02 addition --------- Co-authored-by: Truxnell <9149206+truxnell@users.noreply.github.com> Co-authored-by: truxnell <truxnell@users.noreply.github.com> 2024-03-30 01:58:53 -05:00			`- Add to .github/settings.yaml for PR checks`
Feat: add probot settings ci & doc comments (#28) * fix: move to json5 * feat: probot repo settings sync --------- Co-authored-by: Truxnell <9149206+truxnell@users.noreply.github.com> 2024-03-27 01:39:44 -05:00
feat: initial commit 2024-03-13 06:55:17 -05:00			`## Applying configuration changes on a local machine can be done as follows:`

			```sh
			`cd ~/dotfiles`
			`sudo nixos-rebuild switch --flake .`
			`# This will automatically pick the configuration name based on the hostname`
			```

			`Applying configuration changes to a remote machine can be done as follows:`

			```sh
			`cd ~/dotfiles`
			`nixos-rebuild switch --flake .#nameOfMachine --target-host machineToSshInto --use-remote-sudo`
			```

fix: wheelsudo 2024-03-24 02:50:38 -05:00			`## Hacking at nix files`

			`Eval config to see what keys are being set.`

			```bash
			`nix eval .#nixosConfigurations.rickenbacker.config.security.sudo.WheelNeedsPassword`
			`nix eval .#nixosConfigurations.rickenbacker.config.mySystem.security.wheelNeedsPassword`
			```

feat: add VW on fly (#116) 2024-04-22 23:49:41 -05:00			`And browsing whats at a certain level in options - or just use [nix-inspect](https://github.com/bluskript/nix-inspect) TUI`
feat: add firefox 2024-03-31 05:40:11 -05:00
			```bash
Overhaul 2024-05-10 10:06:16 -05:00			`nix eval .#nixosConfigurations.rickenbacker.config.home-manager.users.jahanson --apply builtins.attrNames --json`
feat: add firefox 2024-03-31 05:40:11 -05:00			```

fix: wheelsudo 2024-03-24 02:50:38 -05:00			`Quickly run a flake to see what the next error message is as you hack.`

			```bash
			`nixos-rebuild dry-run --flake . --fast --impure`
			```

feat: initial commit 2024-03-13 06:55:17 -05:00			`## Links & References`

			`- [Misterio77/nix-starter-config](https://github.com/Misterio77/nix-starter-configs)`
			`- [billimek/dotfiles](https://github.com/billimek/dotfiles/)`
			`- [Erase your Darlings](https://grahamc.com/blog/erase-your-darlings/)`
			`- [NixOS Flakes](https://www.tweag.io/blog/2020-07-31-nixos-flakes/)`