andreijiroh.dev / nixops-config
NixOS + home-manager configs, mirrored from GitLab SaaS. gitlab.com/andreijiroh-dev/nixops-config
nix-flake nixos home-manager nixpkgs nix-flakes
1
fork

Configure Feed

Select the types of activity you want to include in your feed.

Update configurations as usual and add config for custom recovery ISO

Signed-off-by: Andrei Jiroh Halili <ajhalili2006@andreijiroh.dev>

andreijiroh.dev 5c82d933 dd002ed5

+82 -32
+5 -19
flake.lock
··· 159 159 }, 160 160 "home-manager": { 161 161 "inputs": { 162 - "nixpkgs": "nixpkgs_4" 162 + "nixpkgs": [ 163 + "nixpkgs" 164 + ] 163 165 }, 164 166 "locked": { 165 167 "lastModified": 1735774425, ··· 344 346 }, 345 347 "nixpkgs_5": { 346 348 "locked": { 347 - "lastModified": 1735471104, 348 - "narHash": "sha256-0q9NGQySwDQc7RhAV2ukfnu7Gxa5/ybJ2ANT8DQrQrs=", 349 - "owner": "NixOS", 350 - "repo": "nixpkgs", 351 - "rev": "88195a94f390381c6afcdaa933c2f6ff93959cb4", 352 - "type": "github" 353 - }, 354 - "original": { 355 - "owner": "NixOS", 356 - "ref": "nixos-unstable", 357 - "repo": "nixpkgs", 358 - "type": "github" 359 - } 360 - }, 361 - "nixpkgs_6": { 362 - "locked": { 363 349 "lastModified": 1682134069, 364 350 "narHash": "sha256-TnI/ZXSmRxQDt2sjRYK/8j8iha4B4zP2cnQCZZ3vp7k=", 365 351 "owner": "NixOS", ··· 377 363 "determinate": "determinate", 378 364 "home-manager": "home-manager", 379 365 "nixos-hardware": "nixos-hardware", 380 - "nixpkgs": "nixpkgs_5", 366 + "nixpkgs": "nixpkgs_4", 381 367 "vscode-server": "vscode-server" 382 368 } 383 369 }, ··· 399 385 "vscode-server": { 400 386 "inputs": { 401 387 "flake-utils": "flake-utils", 402 - "nixpkgs": "nixpkgs_6" 388 + "nixpkgs": "nixpkgs_5" 403 389 }, 404 390 "locked": { 405 391 "lastModified": 1729422940,
+20 -3
flake.nix
··· 1 1 { 2 - description = "Andrei Jiroh's NixOS configurations"; 2 + description = "Andrei Jiroh's NixOS and home-manager configurations"; 3 3 4 4 # try to be in-sync with the nix-channels 5 5 inputs = { 6 + # nixpkgs itself 6 7 nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable"; 8 + 9 + # home-manager 7 10 home-manager.url = "github:nix-community/home-manager/master"; 11 + # make sure to be in sync with our nixpkgs itself. 12 + home-manager.inputs.nixpkgs.follows = "nixpkgs"; 13 + 14 + # Determinate Nix 15 + determinate.url = "https://flakehub.com/f/DeterminateSystems/determinate/0.1"; 16 + 17 + # Community Extras 8 18 nixos-hardware.url = "github:NixOS/nixos-hardware/master"; 9 - determinate.url = "https://flakehub.com/f/DeterminateSystems/determinate/0.1"; 10 19 vscode-server.url = "github:nix-community/nixos-vscode-server"; 11 20 }; 12 21 ··· 19 28 vscode-server 20 29 }: { 21 30 nixosConfigurations = { 31 + recoverykit-amd64 = nixpkgs.lib.nixosSystem { 32 + system = "x86_64-linux"; 33 + modules = [ 34 + ./hosts/recoverykit/configuration.nix 35 + "${nixpkgs}/nixos/modules/installer/cd-dvd/installation-cd-minimal.nix" 36 + ]; 37 + }; 38 + 22 39 stellapent-cier = nixpkgs.lib.nixosSystem { 23 40 system = "x86_64-linux"; 24 41 modules = [ ··· 26 43 27 44 # load Determinate Nix and the rest 28 45 determinate.nixosModules.default 29 - vscode-server.nixosModules.default 30 46 home-manager.nixosModules.home-manager 47 + vscode-server.nixosModules.default 31 48 ]; 32 49 }; 33 50 };
+24
hosts/recoverykit/configuration.nix
··· 1 + # This NixOS configuration is for the custom recovery/installation media 2 + # using the minimal image here, probably built on GitHub Actions. 3 + 4 + { lib, nixpkgs, ... }: 5 + 6 + { 7 + imports = [ 8 + ../../shared/systemd.nix 9 + ../../shared/server/ssh.nix 10 + ]; 11 + 12 + # Import my SSH keys to the nixos user for remote access. 13 + config = { 14 + users.users.nixos = { 15 + openssh = { 16 + authorizedKeys.keys = with import ../../shared/ssh-keys.nix; [ 17 + personal.y2022 18 + personal.passwordless 19 + rp.gildedguy 20 + ]; 21 + }; 22 + }; 23 + }; 24 + }
+14 -6
hosts/stellapent-cier/configuration.nix
··· 81 81 # services.xserver.libinput.enable = true; 82 82 83 83 # Define a user account. Don't forget to set a password with ‘passwd’. 84 - # Might be obvious to some since I'm technically roleplaying as 84 + # Might be obvious to some since I'm technically roleplaying on my 85 + # old HP laptop my overseas Filipino dad gave me in 2024. 85 86 users.users.gildedguy = { 86 87 isNormalUser = true; 87 - description = "Gildedguy (Michael Moy)"; 88 + description = "Gildedguy (Michael Moy)"; # We're not impersonating the animatior here. 88 89 extraGroups = [ "networkmanager" "wheel" ]; 89 - packages = with pkgs; [ 90 - kdePackages.kate 91 - thunderbird 92 - ]; 90 + #packages = with pkgs; [ 91 + # kdePackages.kate 92 + # thunderbird 93 + #]; 94 + openssh = { 95 + authorizedKeys.keys = with import ../../shared/ssh-keys.nix; [ 96 + personal.y2022 97 + personal.passwordless 98 + rp.gildedguy 99 + ]; 100 + }; 93 101 }; 94 102 95 103 # home-manager specifics
+2 -4
shared/home-manager/main.nix
··· 26 26 # The home.packages option allows you to install Nix packages into your 27 27 # environment. 28 28 home.packages = with pkgs; [ 29 - # # Adds the 'hello' command to your environment. It prints a friendly 30 - # # "Hello, world!" when run. 31 - # pkgs.hello 32 - 33 29 # # It is sometimes useful to fine-tune packages, for example, by applying 34 30 # # overrides. You can do that directly here, just don't forget the 35 31 # # parentheses. Maybe you want to install Nerd Fonts with a limited number of ··· 42 38 # (pkgs.writeShellScriptBin "my-hello" '' 43 39 # echo "Hello, ${config.home.username}!" 44 40 # '') 41 + ## desktop apps ## 42 + 45 43 46 44 ## devtools ## 47 45 # https://httpie.io
+17
shared/ssh-keys.nix
··· 1 + # I managed my public SSH keys via this file, in addition 2 + # to my GitHub + GitLab + sourcehut 3 + 4 + { 5 + personal = { 6 + y2022 = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEXuD3hJwInlcHs3wkXWAWNo8es3bPAd2e8ipjyqgGp2 ajhalili2006@andreijiroh.dev"; 7 + passwordless = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDUnTexcVQTGT+UhX8MRPkMvM6FPuskbY2Dn0ScZ3+ot ~ajhalili2006 [passwordless key for sshfs]"; 8 + }; 9 + rp = { 10 + gildedguy = "ssh-rsa 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 gildedguy@andreijiroh"; 11 + }; 12 + 13 + infra = { 14 + gcp = "ssh-rsa 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 gildedguy@stellapent-cier"; 15 + aws = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICx7San3UCFg3+vr5a07MoNBM9egqAeKHnu4Jhpx3Zwx devlab.aws"; 16 + }; 17 + }