Reset from zero
This commit is contained in:
commit
7520235965
46 changed files with 1783 additions and 0 deletions
64
Justfile
Normal file
64
Justfile
Normal file
|
|
@ -0,0 +1,64 @@
|
|||
# Build the system config and switch to it when running `just` with no args
|
||||
default: switch
|
||||
|
||||
hostname := `hostname | cut -d "." -f 1`
|
||||
work_mac_impure := `if [ $(hostname) = "AMERMACC02G65A8MD6T" ]; then echo "--impure"; else echo ""; fi`
|
||||
|
||||
# Build the nix-darwin system configuration without switching to it
|
||||
[macos]
|
||||
build target_host=hostname flags="":
|
||||
@echo "Building nix-darwin config..."
|
||||
nix --extra-experimental-features 'nix-command flakes' build {{work_mac_impure}} ".#darwinConfigurations.{{target_host}}.system" {{flags}}
|
||||
|
||||
# Build the nix-darwin config with the --show-trace flag set
|
||||
[macos]
|
||||
trace target_host=hostname: (build target_host "--show-trace")
|
||||
|
||||
# Build the nix-darwin configuration and switch to it
|
||||
[macos]
|
||||
switch target_host=hostname: (build target_host)
|
||||
@echo "switching to new config for {{target_host}}"
|
||||
# if macOS updates and overwrites /etc/shells, nix will refuse to update it
|
||||
sudo mv /etc/shells /tmp/shells.bak
|
||||
./result/sw/bin/darwin-rebuild switch {{work_mac_impure}} --flake ".#{{target_host}}"
|
||||
|
||||
# Reload the skhd (hotkey daemon) service to apply new config. Workaround for config changes not being auto-detected.
|
||||
[macos]
|
||||
reload-skhd:
|
||||
launchctl stop org.nixos.skhd && launchctl start org.nixos.skhd && sleep 1 && skhd -r
|
||||
|
||||
# on asahi linux, we need to pass the --impure flag to read in firmware files
|
||||
rebuild_flags := `if [ -d /boot/asahi ]; then echo "--impure"; else echo ""; fi`
|
||||
|
||||
|
||||
# Build the NixOS configuration without switching to it
|
||||
[linux]
|
||||
build target_host=hostname flags="":
|
||||
nixos-rebuild build --flake .#{{target_host}} {{rebuild_flags}} {{flags}}
|
||||
|
||||
# Build the NixOS config with the --show-trace flag set
|
||||
[linux]
|
||||
trace target_host=hostname: (build target_host "--show-trace")
|
||||
|
||||
# Build the NixOS configuration and switch to it.
|
||||
[linux]
|
||||
switch target_host=hostname:
|
||||
sudo nixos-rebuild switch --flake .#{{target_host}} {{rebuild_flags}}
|
||||
|
||||
# Update flake inputs to their latest revisions
|
||||
update:
|
||||
nix flake update
|
||||
|
||||
# Garbage collect old OS generations and remove stale packages from the nix store
|
||||
gc generations="5d":
|
||||
sudo nix-env --delete-generations {{generations}}
|
||||
sudo nix-store --gc
|
||||
|
||||
# Add a machine's age key for SOPS
|
||||
sops-add machine_name target:
|
||||
bun tools/onboard-machine.js {{machine_name}} {{target}}
|
||||
sops updatekeys -y secrets/default.yaml
|
||||
|
||||
sops-generate-keys:
|
||||
sudo cat /etc/ssh/ssh_host_ed25519_key | ssh-to-age --private-key > .sops.keys
|
||||
cat ~/.ssh/id_ed25519 | ssh-to-age --private-key >> .sops.keys
|
||||
Loading…
Add table
Add a link
Reference in a new issue