Nix config for my server
Find a file
2026-07-02 22:54:50 +02:00
secrets git backups 2026-07-02 22:54:50 +02:00
services git backups 2026-07-02 22:54:50 +02:00
.gitignore use overlays instead of extra params 2026-04-27 20:21:21 +02:00
.sops.yaml sops? sops! :) 2026-07-01 23:14:11 +02:00
configuration.nix sops? sops! :) 2026-07-01 23:14:11 +02:00
flake.lock sops? sops! :) 2026-07-01 23:14:11 +02:00
flake.nix sops? sops! :) 2026-07-01 23:14:11 +02:00
hardware-configuration.nix config (#1) 2026-04-25 23:32:31 +02:00
README.md sops? sops! :) 2026-07-01 23:14:11 +02:00

Nixer

This repository contains nix configuration for my NixOS server.

Using

Since some of the projects that are deployed are private, machine that evaluates this config needs access to my private git stuff. Easiest way of doing this, is by running nixos-rebuild on my dev machine, which has all the SSH keys set up, and using the remote builder functionality. Example command is:

nixos-rebuild switch --flake '.#nixer' --build-host root@116.202.25.234 --target-host root@116.202.25.234 --ask-sudo-password

Or, if you are on linux, you can just deploy it somewhere:

nixos-rebuild switch --flake '.#nixer' --target-host nixer --ask-sudo-password

Manual Things

Some things still have to be done manually instead of declarative. Most of the things are secrets:

  • set root password during install
  • set vidd password
  • for sparovec and lshop admin user might have to be created manually
  • for forgejo registration has to be enabled so that admin user can be created. After that, registration should be disabled!

Note

When building on my tower, --max-jobs 8 --cores 0 options yield fastest nix builds.