steveej/infra
1
0
Fork 0
Code Issues 1 Pull requests 1 Projects Releases Packages Wiki Activity Actions
No description
1,471 commits 3 branches 0 tags 6.7 MiB
  • Nix 92.8%
  • Just 2.4%
  • Rust 2.1%
  • Vim Script 1.2%
  • Shell 0.8%
  • Other 0.7%
Find a file
Exact
Stefan Junker 91fb5b6db4 fat(zed): add starlark support
2026-02-11 17:29:41 +01:00
.git-crypt Add 1 git-crypt collaborator 2025-04-05 21:42:33 +02:00
.vscode chore: bump and reconfigure treefmt-nix, include just fmt 2025-02-14 16:49:27 +01:00
misc/x13s_bt_firmware feat: remove executable bit on x13s bt fw 2024-08-04 14:49:06 +02:00
nix fat(zed): add starlark support 2026-02-11 17:29:41 +01:00
oci/user-ubuntu feat(oci): add user-ubuntu with nix user install 2024-10-13 20:30:23 +02:00
rust feat(zed,rust,nix): add rhai-lsp extension for zed 2026-02-09 20:26:37 +01:00
scripts feat: introduce treefmt and fmt all 2024-11-15 11:45:00 +01:00
secrets chore: nix fmt 2026-02-04 09:55:51 +01:00
services/home-ch chore: bump and reconfigure treefmt-nix, include just fmt 2025-02-14 16:49:27 +01:00
vendor chore(git,vendor): track rhaiscript-lsp submodule 2026-02-09 20:25:46 +01:00
.envrc bump nix_direnv 2025-02-14 16:46:06 +01:00
.gitattributes use git-encrypt for secrets 2018-01-26 20:37:44 +01:00
.gitignore git: ignore /target everywhere 2025-12-15 22:27:32 +01:00
.gitmodules chore(git,vendor): track rhaiscript-lsp submodule 2026-02-09 20:25:46 +01:00
.sops.yaml feat(nixos/devices): add steveej-fw13 2025-12-05 15:52:13 +01:00
AGENTS.md chore: nix fmt 2026-02-04 09:55:51 +01:00
codebook.toml chore: add codebook 2025-12-04 12:10:10 +01:00
default.nix feat: introduce treefmt and fmt all 2024-11-15 11:45:00 +01:00
flake.lock feat(zed,rust,nix): add rhai-lsp extension for zed 2026-02-09 20:26:37 +01:00
flake.nix feat(zed,rust,nix): add rhai-lsp extension for zed 2026-02-09 20:26:37 +01:00
Justfile chore: nix fmt 2026-02-04 09:55:51 +01:00
README.md chore: nix fmt 2026-02-04 09:55:51 +01:00

README.md

steveej's infra

This repository helps me to manage all computer infrastructure. This is (mostly) achieved with the help of Nix.

In the unlikely case that you actually read this and have any questions please don't hesitate to reach out.

Left over from the initial road map

  • (Re-)document bootstrap process
    • a new machine
    • an install media
  • Design disaster recovery
  • Automatic synchronization of other state files
  • container migrations
    • ensure DDNS is updated before the containers are started

Bugs

  • home-manager leaves ~/.gnupg at 0755

Usage

(These are reminders for my future self)

just --list

Bootstrap

A new machine

TBD

Post-Install Setup

  • chmod --recursive g-rwx,o-rwx ~/.gnupg
  • gpg2 --edit-card; fetch
  • clone password-manager and infra repositories
  • gpg2: ultimately trust my own key

Swapping out a disk

TBD

Rebuilding an offline system

TBD

Gotchas

Locking nixpkgs to a cached version

I wanted to lock to a specific version because Zed was failing on the latest unstable.

I looked up the latest successful build on hydra an copied the store path: https://hydra.nixos.org/build/318407157#tabs-buildinputs

Actually locking it for one device:

$ cd nix/os/devices/steveej-fw13
$ nix flake update --override-input nixpkgs-unstable /nix/store/i77jvi0qh4kddj4hraizq1j0c028q05l-source