1e2e2bdd35
grep -- '- &' .sops.yaml | cut -d'&' -f2 | grep _host | sed 's/_host//' | xargs -n2 clan secrets machines add
for i in secrets/*.yaml; do host=$(basename $i .yaml); clan secrets import-sops $i --machine $host --user makefu --prefix ${host}-;done
for i in secrets/*.yaml; do host=$(basename $i .yaml) ;clan secrets groups add-machine common "$host";done
37 lines
979 B
Nix
37 lines
979 B
Nix
{ config, pkgs, lib, self, ... }:
|
|
|
|
{
|
|
imports =
|
|
[ # Include the results of the hardware scan.
|
|
./hardware.nix
|
|
../../2configs/default.nix
|
|
# ../../2configs/nur.nix
|
|
|
|
# ../../2configs/nur.nix
|
|
../../2configs/home-manager
|
|
../../2configs/main-laptop.nix
|
|
../../2configs/editor/neovim
|
|
../../2configs/tools/core.nix
|
|
# ../../2configs/tools/all.nix
|
|
|
|
((import ../../2configs/fs/disko/single-disk-encrypted-zfs.nix ) { disk = "/dev/sda"; hostId = "f8b8e0a2"; })
|
|
# hardware specifics are in here
|
|
../../2configs/hw/bluetooth.nix
|
|
../../2configs/hw/network-manager.nix
|
|
|
|
|
|
# ../../2configs/rad1o.nix
|
|
|
|
../../2configs/zsh-user.nix
|
|
../../2configs/home-manager
|
|
../../2configs/home-manager/desktop.nix
|
|
../../2configs/home-manager/cli.nix
|
|
|
|
# still broken
|
|
# ../../2configs/tinc/retiolum.nix
|
|
# ../../2configs/sshd-totp.nix
|
|
];
|
|
|
|
nixpkgs.config.allowUnfree = true;
|
|
}
|