NixOS Systems

This repository manages the configuration for my personal and work infrastructure using Nix Flakes. It unifies system administration (NixOS, nix-darwin) and user environments (Home Manager) into a single, declarative codebase.

Overview

systems/: Contains host-specific configurations.
common/: Shared modules, overlays, and configuration patterns.
images/: Flake for generating installation media (e.g., SD card images).

Active Systems

Hostname	Type	Hardware	Description
zw	NixOS	IBM ThinkPad	Primary work laptop. Uses manual ZFS partitioning.
homebee	NixOS	Beelink Mini S12	Home media server running Jellyfin.
jellybee	NixOS	Beelink U59 Pro	Mobile media server (RV) running Jellyfin. Uses `disko` for partitioning.

Note: older systems like z1, pi, and homepi are deprecated or inactive.

Secret Management

Secrets are managed using agenix and agenix-rekey. The master private key is stored in gopass under the entry systems/age.master.

Encrypt a new secret using the master public key:

echo "my-super-secret-password" | age -r age13sgljsr9srgxjxncl49qsn9dkkstcqct3ck9s7n2yu4lzelgp4uqcajgtj -o ./path/to/my-secret.age

Add to Nix configuration:

age.secrets.my-secret = {
  rekeyFile = ./secrets/my-secret.age;
  # mode = "600"; # Optional, default is 400
  # owner = "root"; # Optional
};

Rekey for specific hosts: This decrypts the secret using the master key (via gopass) and re-encrypts it for the target hosts.
```
nix run .#rekey
```

Installation

Standard Install (e.g., `zw`)

Boot into a NixOS installer (official or custom image).
Run sudo -i.
Establish networking (see below).
Prepare storage:
- For zw, use the script in systems/zw/nixos-zfs-setup.sh.
- Warning: This will wipe the defined DISK.
Mount and generate config:
```
nixos-generate-config --root /mnt
```
Install:
```
nixos-install --flake .#zw
```

Networking (Installer)

If using a minimal installer, you may need to manually configure Wi-Fi:

Start the supplicant: systemctl start wpa_supplicant

Run wpa_cli:

> add_network
0
> set_network 0 ssid "MY_SSID"
OK
> set_network 0 psk "MY_PASSWORD"
OK
> enable_network 0
OK

update-my-skills

Popularity

What's Inside

README

NixOS Systems

Overview

Active Systems

Secret Management

Installation

Standard Install (e.g., `zw`)

Networking (Installer)

Confidence

Similar Plugins

caveman

frontend-design

ui-design

claude-mem

marketing-skills

nanobanana

More by acaloiaro

adriano-voice

create-my-skills

adriano-voice-code-comments

version-control

Popularity

Health & Quality

More by acaloiaro

adriano-voice

create-my-skills

adriano-voice-code-comments

version-control

Similar Plugins

caveman

frontend-design

ui-design

claude-mem

marketing-skills

nanobanana

update-my-skills

Popularity

What's Inside

README

NixOS Systems

Overview

Active Systems

Secret Management

Installation

Standard Install (e.g., zw)

Networking (Installer)

Confidence

Similar Plugins

caveman

frontend-design

ui-design

claude-mem

marketing-skills

nanobanana

More by acaloiaro

adriano-voice

create-my-skills

adriano-voice-code-comments

version-control

Popularity

Health & Quality

More by acaloiaro

adriano-voice

create-my-skills

adriano-voice-code-comments

version-control

Similar Plugins

caveman

frontend-design

ui-design

claude-mem

marketing-skills

nanobanana

Standard Install (e.g., `zw`)