jml/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

feat: add new host and start modularizing system configuration

Browse source
This commit is contained in:
Jay Looney 2025-06-16 13:54:38 -05:00
parent ebe58addaa
commit 4a8c953223
22 changed files with 1050 additions and 288 deletions
Download patch file Download diff file Expand all files Collapse all files

16
hosts/lithium/README.md
View file

@ -2,10 +2,22 @@
This is my primary homelab host/NAS, previously powered by TrueNAS Scale/k3s.
## Manual Actions
Even with fully declarative Nix/Nixpkgs/NixOS at the end of the day there are
still some actions that need to be taken manually.
- secrets configuration (both for SOPS and git-agecrypt semi-secrets)
- kanidm user management
- tailscale auth key
- jellyfin configuration via web-ui
## Semi-Secrets
`semi-secret-vars.nix` is following a pattern I discovered here:
https://github.com/nyawox/arcanum/blob/4629dfba1bc6d4dd2f4cf45724df81289230b61a/var/README.md
`semi-secret-vars.nix` is using [git-agecrypt](https://github.com/vlaci/git-agecrypt)
and following a pattern I discovered here:
- https://github.com/nyawox/arcanum/blob/4629dfba1bc6d4dd2f4cf45724df81289230b61a/var/README.md
- https://github.com/vlaci/git-agecrypt
Essentially there are some details I won't want exposed in the repository, but
I do want them available to all my nix modules. The main one being the domain.