rrvsh/pantheon
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
894 commits 3 branches 3 tags 5.4 MiB
Find a file
Mohammad Rafiq b9ad8ac2ca
chore: clean up tree-wide
2025-07-02 06:02:47 +08:00
homes/x86_64-linux/rafiq chore: clean up tree-wide 2025-07-02 06:02:47 +08:00
lib chore: clean up tree-wide 2025-07-02 06:02:47 +08:00
modules chore: clean up tree-wide 2025-07-02 06:02:47 +08:00
packages chore: clean up tree-wide 2025-07-02 06:02:47 +08:00
secrets chore: clean up tree-wide 2025-07-02 06:02:47 +08:00
systems/x86_64-linux chore: clean up tree-wide 2025-07-02 06:02:47 +08:00
.gitignore feat(packages/rebuild): improve rebuild script 2025-05-20 18:31:18 +08:00
.sops.yaml chore: clean up tree-wide 2025-07-02 06:02:47 +08:00
flake.lock build(flake.lock): update flake inputs 2025-07-02 02:37:17 +08:00
flake.nix chore: clean up tree-wide 2025-07-02 06:02:47 +08:00
hostSpec.nix feat: add hostSpec.nix to define host-specific configurations 2025-06-28 11:04:52 +08:00
README.md docs: add instructions for installing with disko 2025-06-30 03:24:20 +08:00

README.md

Planning

To-do

  • Copy over ~/.ssh/id_ed25519 and zellij status bar plugin confirmation
  • Migrate immich to apollo, point to helios
  • Migrate LibreChat to apollo, maintain db
  • Figure out wakapi
  • Add forgejo
  • Add simple blog

Versions

  • 1.0.0
    • Setup desktop as hypervisor with nixos and win11
      • Spare drive as steam library
      • GPU passthrough to either system
      • Always running, VMs spun down except when in use
    • Apollo as hypervisor
      • VMs for docker host, home-assistant, bare metal or containerised services
    • Automated backups for home and state directories
    • Ability to build VMs of all systems and implement integration tests
      • Staging VMs for ad-hoc testing
    • All servers set up with following services:
      • Git server
      • Chat app
      • Network shares
      • Federation with ActivityPub
      • Wakapi
    • Add a way to define services per host and refer to them by hostname
    • helios as file and db server, apollo as services and reverse proxy
  • 0.3.0
    • Integration tests for all services
    • Migrate services from helios

Modules

The nixosModules and homeModules exposed by this flake are slightly out of the norm.

Option declarations for user specific configuration are kept to:

  • homeModules for CLI
  • nixosModules for desktop

System configurations, to this end, should include the window manager, lockscreen, terminal etc. for that system.

These desktop programs will be configured in home-manager for each user, but those configurations consult the osConfig variable passed in by home-manager.

System Setup

The following files are required for system activation:

  • /persist/home/${mainUser}/.ssh/id_ed25519

This private key will be used by sops-nix to decrypt the secrets in this encrypted file. The secrets inside the yaml file should also be set, or otherwise removed alongside their declarations , found here and references.

# On the target machine
# Boot into the NixOS installer

sudo passwd

# On the host machine
deploy --user "rafiq" --ip "10.10.0.102" --hostname "apollo"

From a Local NixOS Installer

The installation may run out of space when installing from an install ISO. In that case, use Disko to format the drives first, then create a /mnt/tmp directory and set it as TMPDIR for nixos-install.

sudo su
nix --extra-experimental-features "nix-command flakes" run github:nix-community/disko/master -- --mode destroy,format,mount --flake github:rrvsh/pantheon#<HOSTNAME>
# Copy SSH key to /persist/home/rafiq/.ssh
mkdir /mnt/tmp
TMPDIR=/mnt/tmp nixos-install --flake github:rrvsh/pantheon#<HOSTNAME> --no-root-password
reboot

Impermanence

System and user state is stored under /persist. Anything not declared under {environment,home}.persistence is deleted on system boot.